Must see TV for anyone whose manager gives you a hard time when you mention spending time working on threat models or performing security reviews. http://www.thecoderoom.com/vegas/.
It casts our friends Keith Brown, John Viega, Rick Samona and Frank Swiderski as white knights called in to defend the famed hotel Plaza from an attack mounted by scrupulous hackers (Caleb Sima, Duane LaFlotte and Joel Scambray) that have already made away with $400K in cash…
After watching the video - which I guarantee you will get a kick out of - spend some time looking at the security practices site that JD Meier's put together. It includes topics such as :
- Threat modeling web applications
- Security Guidance for .Net 2.0
- Security Guidance Index
- and much more
See http://msdn.microsoft.com/practices/Topics/security/default.aspx for more information.