Threat Mod Con

Threat Modeling Journeys - From 0 to 1, From Good to Great

November 8, 2025

9:15AM

Beverly Snow

About this session

Threat Modeling is a critical activity during any system development effort. Through dedicated individual efforts and collective information sharing such as you find at ThreatModCon the purpose and objectives of threat modeling have been demystified. But questions persist - how do I bootstrap a threat modeling program? When have I done enough? What's in it for me?

Continuing the tradition of the ThreatModCon unkeynote, we've assembled a group of experienced threat modelers to tell their tales of taking their threat modeling journeys "from 0 to 1" (and beyond).

Attend the unkeynote to gain fresh insight into starting fresh, both personally and organizationally, accelerating, and optimizing threat modeling programs to maximize achievement and minimize barriers. And in true ThreatModCon fashion, you can participate by joining the Q&A that follows the story telling.

About the speaker

About the speakers

Spandana Gorantla is a security engineer specializing in application and product security, currently focused on AI threat modeling. With a background spanning cloud and product security in fast-paced environments, she brings a practical and approachable lens to emerging security challenges.

Navneet Keshav is a Senior Threat Modeling Architect at Lenovo, specializing in secure-by-design and AI-assisted threat modeling. He leads Lenovo’s global threat modeling efforts, founded the Raleigh–Durham Threat Modeling Connect chapter, and holds a U.S. patent in technology.

Brook is the Author of Secrets Of A Cyber Security Architect (Auerbach, 2019) and Securing Systems: Applied Security Architecture and Threat Models (CRC Press, 2015), co-author of Building In Security At Agile Speed (Auerbach, 2021) and contributing author to Core Software Security (CRC Press, 2014). Brook is a passionate security architect with decades of technical leadership experience.

John Taylor, Senior Manager at Deloitte Global where he leads a high-impact, globe-spanning application security and design team dedicated to delivering security-ready applications without slowing the pace of business delivery. John has spoken at many industry events and webinars like TMCon2023.

Speaker

Speakers

Spandana Gorantla

Product Security Engineer, Adobe

Navneet Keshav

Sr. Threat Modeling Architect, Lenovo

Brook Shoenfield

CTO & Chief Security Architect, Resilient Software Security

John Taylor

Application Security and Design Leader, Deloitte

Need Webflow support? We’re all ears.