Adam Shostack: Recent Addition to the Continuum Security Advisory Board

Noted threat modeling expert Adam Shostack is proud to serve on the Continuum Security Advisory Board – a role that was made official in May of 2018. As a member of the Board, Shostack looks to contribute his considerable knowledge of and expertise in threat modeling and information security toward the development of solutions that make security a key component of the development lifecycle.

As Adam Shostack knows, Continuum Security is focused on building the tools information security and development professionals need to test and manage software security. Continuum’s aim is to develop processes and tools that integrate seamlessly within the normal development process – rather than as an addition with the potential to slow down development. Continuum is responsible for the IriusRisk Threat Modeling Program – a solution for creating threat models and managing application risks throughout the process of development.

Continuum officially announced Shostack to the Advisory Board last May.


Adam Shostack: A Closer Look at Threat Modeling

With the release of 2014’s Threat Modeling: Designing for Security, renowned threat modeling expert Adam Shostack looks not only to introduce software developers and security professionals to this now essential information security skill, but also to provide helpful lessons and tips for identifying, preparing for and preventing potential security threats well into the future.

Through Threat Modeling: Designing for Security, Adam Shostack aims to:

• Provide software and security developers an easy, accessible how-to guide for designing more secure systems and products.

• Show security professionals how to threat model – as well as to provide an exploration of various threat modeling approaches, such as software-centric, attacker-centric and asset-centric.

• Provide actionable advice that isn’t tethered to any specific programming language, operating system or software.

Threat Modeling: Design for Security is the only information security book to be selected as a finalist for the Dr. Dobbs Joly Award since Secrets and Lies and Applied Cryptography.

Adam Shostack: Answering the Tough Questions on Information Security

Adam Shostack and Andrew Stewart are the authors of 2008’s The New School of Information Security – a book that seeks not only to answer the tough questions about information security, but also to provide anyone from CIOs and IT managers to company security specialists a new way of thinking when it comes to identifying, addressing and resolving the most complex and urgent security problems facing the modern organization.

As experts in information security, Adam Shostack and Andrew Stewart offer unique insight into the challenges faced throughout the field of security – as well as:

• How to gather the evidence needed to make better decisions when it comes to information security.

• Why collaboration is so essential to improving cybersecurity in the current era, and how the industry can come together to take significant leaps forward.

• What security industry leaders can learn from other scientific fields when it comes to improving security.