http://www.cybersecurityos.net/tags/threat-modeling/Recent content in Threat Modeling on CybersecurityOSHugoen-usSun, 31 May 2026 00:00:00 +0000http://www.cybersecurityos.net/posts/os-weekly/threat-modeling-plain-english-engineering-teams/Sun, 31 May 2026 00:00:00 +0000http://www.cybersecurityos.net/posts/os-weekly/threat-modeling-plain-english-engineering-teams/<p>Most engineering teams know they <em>should</em> be doing threat modeling.</p> <p>Very few actually do it — and the ones who try often produce a document that gets filed away and never looked at again.</p> <p>The problem isn&rsquo;t motivation. It&rsquo;s that almost every guide to threat modeling is written for security teams, not engineering teams. The language is wrong. The framing is wrong. The process feels like a compliance exercise instead of something that makes the software actually harder to attack.</p>