Threat Modeling is a technique used to find flaws in the design of systems. Threat modeling requires some unique skills and broad knowledge about software security in general. This poses a challenge when trying to do threat modeling on a large number of applications. In this talk, we’ll discuss some options for how to do threat modeling at scale, and address some challenges that different development environments (waterfall, agile, CD) can pose when doing threat modeling at scale.