Threat Modeling Intensive (222) is the most popular course at Shostack + Associates, and this is the self-paced version.
Participants will complete 7 chapters including: 1 preparation, 5 knowledge and skills, and an optional chapter. The six core chapters each include a set of video lectures (about 5 minutes each) and exercises to build the skills covered in the lectures. There is also one chapter with and additional reading and two videos of 45 minutes each.
After taking this class, participants will have a depth of knowledge and skills to consistently and efficiently utilize:
- The Four Question Framework,
- Data Flow Diagrams,
- STRIDE and Kill Chains
These techniques will help participants to identify threats and mitigation techniques (such as controls and risk management), accurately document results, and turn threat analysis consistently and efficiently into more secure products. As a result participants will eventually champion threat modeling within their organization.
Enrollment in this course is active for 30 days.
Estimated time to complete is 14-16 hours.