Organisation: A large international car manufacturer
Context: Embedding threat modelling into a global application development programme
Objective: Establish a consistent, practical approach teams can use independently
Product Used: Elevation of Privilege card game
The Challenge
The organisation had made threat modelling a mandatory part of its application development process. While senior security leaders were familiar with formal methods and guidance, it was not practical or realistic to expect every engineer worldwide to study detailed threat-modelling literature or develop expertise individually.
The core challenge was how to introduce a standardised, accessible approach that development teams could use without relying heavily on central cybersecurity specialists.
The Approach
The company adopted the Elevation of Privilege card game as the baseline method for all teams. Because the game provides a clear, structured way to think about threats, it offered a consistent way to teach the fundamentals quickly and at scale.
They incorporated the game into their internal training programme, using it to:
- introduce the core concepts of threat modelling
- provide a repeatable process that teams could run themselves
- support engineers in applying threat thinking directly in their sprints
The goal was to build capability within teams rather than create reliance on a central function.
What They Did
As part of the global rollout, the organisation distributed branded decks across development sites to raise awareness and provide a tangible, easy-to-use tool. Teams were trained using the game, with the expectation that they could continue threat modelling within their own delivery cycles, supported, but not driven, by cybersecurity specialists.
Outcomes & Value
| Benefit | Impact |
|---|---|
| Consistent method across teams | Standardised threat modelling regardless of geography or product area |
| Reduced dependency on central security | Teams able to run sessions independently in their sprints |
| Faster adoption | Low learning curve, no specialist reading required |
| Increased awareness | Physical decks helped promote the initiative across the organisation |
This case illustrates how a simple, structured game can support large organisations that need to scale security practices quickly. By providing a shared, approachable method, teams can adopt threat modelling as part of everyday development rather than relying on specialist intervention.
