all InfoSec news
Introducing Systems Thinking as a Framework for Teaching and Assessing Threat Modeling Competency
April 26, 2024, 4:11 a.m. | Siddhant S. Joshi, Preeti Mukherjee, Kirsten A. Davis, James C. Davis
cs.CR updates on arXiv.org arxiv.org
Abstract: Computing systems face diverse and substantial cybersecurity threats. To mitigate these cybersecurity threats, software engineers need to be competent in the skill of threat modeling. In industry and academia, there are many frameworks for teaching threat modeling, but our analysis of these frameworks suggests that (1) these approaches tend to be focused on component-level analysis rather than educating students to reason holistically about a system's cybersecurity, and (2) there is no rubric for assessing a …
academia analysis arxiv competency computing cs.cr cs.se cybersecurity cybersecurity threats engineers framework frameworks industry modeling software software engineers systems systems thinking teaching thinking threat threat modeling threats
More from arxiv.org / cs.CR updates on arXiv.org
Jobs in InfoSec / Cybersecurity
Information Security Engineers
@ D. E. Shaw Research | New York City
Technology Security Analyst
@ Halton Region | Oakville, Ontario, Canada
Senior Cyber Security Analyst
@ Valley Water | San Jose, CA
Consultant Sécurité SI Gouvernance - Risques - Conformité H/F - Strasbourg
@ Hifield | Strasbourg, France
Lead Security Specialist
@ KBR, Inc. | USA, Dallas, 8121 Lemmon Ave, Suite 550, Texas
Consultant SOC / CERT H/F
@ Hifield | Sèvres, France