Security Team Goes on a Vacation: Self-service threat modeling

Instead of a lunchtime social, this month we have a guest speaker lined up that you'll be eager to see. Welcome Jeevan Singh as he helps us explore self-service threat modeling!

Threat Modeling is an important part of every company’s Security Development Lifecycle, but as development teams grow bigger, Security will have to choose which features they want to Threat Model or they will become a bottleneck for the development organization.

What if I told you, you could have your cake and eat it too? It is possible to scale your threat modeling program to *every* feature and you don’t have to be a bottleneck to the development organization. What if I also told you that the Threat Models in this utopia are also of higher quality as well?

In this utopian world, Threat Modeling is no longer the Application Security team’s responsibility. The responsibility now lies with the development teams. Self-serve Threat Modeling is the way of the future.

• Slack @ #chapter-seattle
• [seattle-chapter@owasp.org](https://groups.google.com/a/owasp.org/g/seattle-chapter)