1)How to Integrate threat modelling into jira work flows?
2)How/where to store the threat models so that can be easily be reviewed for future reference?
In my experience diagrams/pdfs become obsolete and no one views them in the future?
3)How to ensure all threats are covered ? How to know that we have threat modelled enough?
4)How is threat modelling different from a secure design review ?