The talk will look at a number of different strategies for threat modelling.

Watch the video


Download the presentation slides (PDF)


This will include:

  • The role of threat modelling in the software development lifecycle and how it supports other DevSecOps processes
  • Some common approaches to threat modelling
  • Tools and techniques that can help with threat modelling
  • How to encourage and support the use of a "threat modelling mindset"

About the speaker

Roy Harrow, Information Security Analyst, Sainsbury's

Roy Harrow has experience in a wide range of areas in information security having worked as a security consultant, security architect at IBM and most recently as an information security analyst supporting engineering teams at Sainsbury's.

Roy has a number of security certifications, including CISSP, BCS MBCS CITP and some AWS cloud certifications.

Roy currently chairs the BCS DevSecOps group.

Our events are for adults aged 16 years and over.

BCS is a membership organisation. If you enjoy this event, please consider joining BCS. You’ll be very welcome. You’ll receive access to many exclusive career development tools, an introduction to a thriving professional community and also help us Make IT Good For Society. Join BCS today

For overseas delegates who wish to attend the event, please note that BCS does not issue invitation letters.


BCS is following government guidelines and we would ask attendees to continue to also follow these guidelines. Please go to for more information, advice, and instructions.

This event is brought to you by: BCS DevSecOps specialist group

Strategies for Threat Modelling - DevSecOps
Date and time
Tuesday 21 March, 6:00pm - 8:00pm
BCS, The Chartered Institute for IT
Ground Floor, 25 Copthall Avenue
This event is sold out