https://jamesm.blog/security/ Recent content in Security on jamesm.blog https://jamesm.blog/papermod-cover.png https://jamesm.blog/papermod-cover.png Hugo en Wed, 20 May 2026 10:30:00 +0100 https://jamesm.blog/security/threat-modeling-for-engineers/ Wed, 20 May 2026 10:30:00 +0100 https://jamesm.blog/security/threat-modeling-for-engineers/ Most security work is reactive - a scanner flags an issue, someone patches it. Threat modeling is the opposite: a structured way to find design flaws before you write the code. Here is how it works, a worked example, and why it is the one security skill every engineer should have.