Threat Actor: A threat actor is a state, group or individual that has malicious intent. Neither method is 100% more effective than the other but they are just different means to accomplish the same goal. Additionally, it can be done from an asset perspective, where you identify what assets are important to your company, look at all the ways you can find for that asset to be compromised and then come up with security controls to prevent that from happening. Threat modeling can be done from an attacker’s perspective, where you gather information on what methods hackers are using to attack companies similar to your own and then plan your countermeasures for those methods. Threat modeling is a proactive process of identifying the risks and threats that are likely to affect your organization and then planning and implementing countermeasures to prevent those threats from negatively affecting the company.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |