The foundation of effective cyber resilience.
Understanding the threats you face is a fundamental step towards designing, implementing, and testing an effective security solution. CYSIAM's Threat Modelling methodology maps out how your organisation looks from the outside, but also where you may be vulnerable from within. An external threat could be identified due to the work you do or who you do it for, or if you work in a country of interest to a hostile state threat actor. Internal threats are much harder to foresee, but must be considered in order to prepare effective mitigation strategies.
Threats can also be associated with the technology you use, which may well be critical to your operations. Knowing what to protect and it what circumstances it could be compromised will inform your protection and detection capabilities, allow you to exercise your incident response plans in appropriate scenarios, and provide critical information to responders should the worst happen.