<aside> 👋

Hey there! Security teams can use this Notion template to perform threat models and provide security recommendations for major new features or infrastructure changes.

For more context on the design of this threat modeling process, see https://alsmola.medium.com/scalable-threat-modeling-1189c519d54b

Questions or feedback? Let Alex know: https://alexsmolen.com

</aside>

Security Recommendations

<aside> ☝

This section comes first, because recommendations are the useful output for most readers. But, it should be completed last, after filling out the rest of the template.

Recommendations priority should be interpreted as:

High: Do this first, or get approval
Medium: Do this, or get approval
Low: Do this if you want

Once you’ve shared this document for review and feedback, you can track recommendations as tasks to ensure they’re completed.

</aside>

Recommendations

Project Description

Implementing Teams

Infrastructure Engineering

Documentation

Project Goals

<aside> 🏁

To determine Project Goals, read relevant documentation and ask these questions to stakeholders:

What are the intended outcomes of this project?
What are the success criteria?

Distill this into one-five bullet points below.

</aside>

Examples

Reduce infrastructure costs by >30% by reducing server counts
Use new third-party cloud service provider for storing product user data
Maintain SLO of 99.9% uptime for core features during migration

User Types

<aside> 👥

For User Types, read relevant documentation and ask these questions to stakeholders:

Who are the key actors interacting with this feature or infrastructure?
What roles or personas are involved in using, supporting, or being impacted by this system?
What are the primary needs, goals, and challenges for each user type?

Distill this into a list of key user types with descriptions of their roles and interactions with the system.

User Types are a database and can be reused between threat models.

</aside>