Free Delivery on orders above £75 for our US and Europe customers
1 3

Security Architects - A fast paced threat modeling game

£22.00

Description

Security Architects is a fast, cooperative card game that teaches core application security concepts through play. Designed for 1 to 4 players, you work as a security team protecting a company system from evolving cyber threats.

The game is built around the STRIDE threat-modelling framework, with every decision reinforcing practical security concepts while keeping gameplay accessible and engaging.

Bulk Pricing

Automatically applied at checkout:

Buy Discount
5 or more decks 5% off
10 or more decks 10% off
20 or more decks 20% off
30 or more decks 30% off

Outcome

Unlike theoretical exercises, this game forces real decisions:

  • You can’t protect everything
  • Attacks come unpredictably
  • Trade-offs are constant

It mirrors the pressure of real-world security architecture in a fast, engaging format. Great for Security architects & engineers, DevSecOps teams, Training & workshops and University courses

🏆 Winner – CyberSec Game Challenge 2025

Security Architects was chosen as the Winner of the CyberSec Game Challenge 2025. It stood out for turning real world application security into fast, engaging gameplay, proving that learning security can be genuinely fun.

Specifications
  • Suits
    Components, Attacks, Protections, Events
  • # Cards
    115
  • Created by
    Adrian Sroka and Monika Skoczylas-Sroka

What's in the box

  • 15 System component cards (your architecture)
  • 48 Protection cards (your controls)
  • 36 Attack cards (mapped to STRIDE threats)
  • 12 Event cards (real-world scenarios)
  • 4 Threat modelling cards (strategic actions)

There is also a Reputation and Rounds tracker card to monitor game progression, plus Development and Production cards used in Shift Left mode to simulate real-world delivery pipelines.

How to play - A quick overview

Work together as a team of security architects to protect your company’s systems from cyber attacks.

  1. Set up the system - Lay out a few system components, each with known vulnerabilities (based on STRIDE threats).
  2. Strengthen your defences - Each turn, players add protection cards to secure vulnerabilities across the system.
  3. Face real-world threats - Draw random cards: Attacks target unprotected vulnerabilities; Events test your overall security posture; New components expand your system (and your risk)
  4. Manage your reputation - Every successful attack reduces your company’s reputation. If it drops to zero, you lose.
  5. Survive 6 turns to win - Keep your systems secure long enough to maintain trust and win as a team.

The game includes plays in around 20 minutes, making it ideal for learning, training, or team play.

Full Instructions

Game Modes

  • Regular Mode

    Classic cooperative gameplay. Build defences and respond to attacks.

  • Shift Left Mode

    Secure systems earlier in the lifecycle. Protect components before they go live.

  • Workshop Mode

    Use the cards to run real threat modelling sessions on your own architecture.

About the creators

Adrian Sroka and Monika Skoczylas-Sroka are the co-creators of Security Architects, a winning entry in the CyberSec Game Challenge 2025.

Adrian brings hands-on experience as a security consultant and trainer, while Monika focuses on building practical, engaging experiences through software and design. Together, they set out to make threat modelling more accessible and collaborative.
Back to top