Date of meeting: April 21, 2017

Assessing a moving target will focus on providing qualitative approach to quantify risk when working with IoT devices. We will step through performing contextual risk assessment, data flows, threat modeling, vulnerability analysis with emphasis on OWASP IoT, qualification and quantification of the identified risks, and determining appropriate risk management actions. The presenter will share mostly free tools and techniques that can be adapted for any enterprise.