All courses
Resource hub
Featured resource
Tech Upskilling Playbook 2025
Tech Upskilling Playbook

Build future-ready tech teams and hit key business milestones with seven proven plays from industry leaders.

Learn more
Hamburger Icon
  • Path icon Learning Path
    • Libraries: This path is only available in the libraries listed. To access this path, purchase a license for the corresponding library.
  • Security
    •

Threat Modeling

1 Course
1 Lab
2 Hours
Skill IQ

Threat Modeling aims to improve security through the practice of identifying threats, attacks vulnerabilities for the purpose of defining countermeasures to prevent or mitigate loss, damage or destruction of an application, system or data.

Get started

Content in this path

Threat Modeling path

Threat modeling is an engineering technique, or structured process, that can be used to help to identify potential threats, attacks, vulnerabilities and countermeasures that could impact your applications. These courses have been designed to help you to understand how to use threat modeling to shape your application's design, meet your company's security objectives and reduce risk.

Course

Threat Modeling Methodologies

  • by Peter Mosmans
  • 45m
  • Jun 04, 2025
Lab

Threat Modeling in Action

  • by Lee Allen
  • 1h 35m
  • Aug 04, 2025
Try this learning path for free
Access this learning path and other top-rated tech content with a free trial.
Free individual trial Free team trial
Have questions? Get them answered now.
Start a live chat
What You'll Learn
  • The fundamentals concepts of threat modeling and its purpose
  • How to apply threat, attack and risk classification systems
  • How to create data flow diagrams
  • How to an improved threat modeling process
  • How to create a threat model with the Microsoft Threat Modeling Methodology
  • How to create a threat model with the OCTAVE Methodology
  • How to create a threat model with the PASTA Methodology
  • Diagram threat models with the Microsoft Threat Modeling Tool
Prerequisites
  • Knowledge of application development
  • Knowledge of enterprise systems architecture, including platforms, networks, applications, databases and operating systems
  • Knowledge of fundamental information security concepts
Related topics
  • Software Development Lifecycle
  • Security Assessments/Testing
  • Source Code Analysis
  • Secure Coding
  • OWASP Top 10
Not sure where to start?
With over 500 assessments to choose from, you can see where your skills stand and receive adaptive learning recommendations to fill knowledge gaps in as little as 10 minutes.
Learn more

Learn with the best

Peter Mosmans
Peter Mosmans
Peter started out in the nineties as software engineer working on internet banking applications for various European financial institutions. After developing, he moved to the role of defending and designing systems and networks for high-availability websites. Since 2004 he started specializing in breaking: pentesting complex and feature-rich web applications. Currently he leads a global team of highly skilled penetration testers as lead pentester. He is a contributor to several open-source penet...
Lee Allen
Lee Allen
With over two decades of experience in the security industry, Lee is a seasoned professional with a proven track record of delivering top-notch security services to a diverse range of organizations. From Internet Service Providers and computer manufacturers to global pharmaceutical companies, public universities, and a major bank, Lee has worked with some of the biggest names in the industry. With experience as a leader of the penetration testing team at a large bank, Lee has developed deep expe...

Join our learners and upskill
in leading technologies