Adam Featured on Inside MedTech Innovation
Learn from the past and advance your threat modeling skills!
After two decades of working on threat modeling, Adam had the opportunity to share the evolution of this critical security practice with Shannon Lantzy on her Inside MedTech Innovation podcast.
Adam and Shannon covered the journey from Microsoft's security crisis in the early 2000s through today's medical device cybersecurity landscape. Key topics included:
- How the auto-run vulnerability taught us that data can overcome organizational inertia (preventing 1M+ infections/month)
- The development of STRIDE methodology to scale threat modeling beyond expert-driven sessions
- FDA's systematic approach to incorporating threat modeling into medical device regulation
- Why "pouring concrete and wondering about properties" doesn't work in cybersecurity
- The fundamental difference between threat modeling and risk management
For startup founders: Adam's advice remains simple—start your threat modeling with a napkin. Think about what can go wrong from both medical and security perspectives before you write software or pour plastic molds.
The conversation touches on both technical evolution and organizational change management. Innovation and security aren't opposing forces when threat modeling is built into the design process from the start.
Thank you to Shannon Lantzy for guiding this thought-provoking discussion. Listen to the full episode on Spotify to hear the discussion in more detail. Don't let complexity scare you... start today!