Open for Business
Recently, I was talking to a friend who wasn't aware that I'm consulting, and so I wanted to share a bit about my new life, consulting!Recently, I was talking to a friend who wasn't aware that I'm consulting, and so I wanted to share a bit about my new life, consulting!
I’m consulting for companies of all sizes and in many sectors. The services I’m providing include threat modeling training, engineering and strategy work, often around risk analysis or product management.
Some of the projects I’ve completed recently include:
- Threat modeling training - Engineers learn how to threat model, and how to make threat modeling part of their delivery. Classes range from 1 to 5 days, and are customized to your needs.
- Process re-engineering for a bank - Rebuilt their approach to a class of risks, increasing security, consistently and productively across the org.
- Feature analysis for a security company - Identifying market need, what features fit those needs, and created a compelling and grounded story to bring the team together.
If you have needs like these, or other issues where you think my skills and experience could help, I'd love to hear from you. And if you know someone who might, I’m happy to talk to them.
I have a to-the-point website at associates.shostack.org and some details of my threat modeling services are at associates.shostack.org/threatmodeling.