I am a complete FNG when it comes to threat modeling, I actually came across this page while researching TrustOnCloud control catalog and saw this. I am confused what is the difference between TrustonCloud, NowSecure, IriusRisk and Toreon. To me it looks like TrustonCloud gives you the info with the assumption you know WTH you are doing with the CSPs, while the other 3 provide tools to create ThreatModels and provide consultancy services.
At least that is what I think I am seeing but not really knowing since this is all new to me. Any help would be greatly appreciated.