Skip to content

Automation & Workflows

Workflows help teams maintain effective threat models by automating review and update tasks.

By connecting threat models, collections, and assigned users or teams, workflows ensure that models are reviewed, updated, and acted on as systems evolve.

Workflows are a key part of operationalizing threat modeling in Devici.

What Workflows Do

Workflows allow you to:

  • Assign responsibility for threat model reviews
  • Request updates when systems change
  • Automate task creation across collections
  • Integrate threat modeling into existing delivery processes

Workflows are always attached to a Collection and apply to all threat models within that collection.

Workflow Components

A workflow consists of:

  • A Collection of threat models
  • A Workflow Action (such as review or update)
  • One or more assigned users or teams
  • An optional output destination (Devici tasks, Jira, or Azure DevOps)

Once configured, workflows create tasks automatically based on user actions or schedules.

When to Use Workflows

Use workflows when you want to:

  • Enforce regular threat model reviews
  • Ensure updates are made after system changes
  • Distribute responsibility across a team
  • Integrate threat modeling into Jira or Azure DevOps

Workflows help move threat modeling from a one-time activity to a continuous practice.