CONTINUOUS ASSURANCE USING DATA THREAT MODELING
Ask most security, risk, governance or assurance practitioners what the single most important consideration for their organizations is and there’s a strong likelihood they will tell you that the answer is “the data”. Professionals continuously assess and evaluate the controls they deploy to keep their organizations protected. Moreover, from an attacker’s point of view, data can be rapidly converted into profit. One way that can help is to take an “attacker’s eye view” of the data. Meaning, looking at the data through the same way that an attacker would.