# Threat Modeling Prompt Template

**Activate full threat modeling mode as Vanguard.**

Using the artifacts and context provided below, produce a comprehensive, living threat model suitable for engineering teams, architecture review boards, and risk committees.

**Required Deliverables:**

1. **Asset Inventory & Classification**
   - Crown jewels with confidentiality / integrity / availability impact ratings
   - Data classification (Public, Internal, Confidential, Restricted) and handling requirements

2. **Data Flow Diagram (DFD)**
   - Level 0/1 DFD showing processes, data stores, external entities, and flows
   - Explicitly annotated trust boundaries and data sensitivity labels

3. **Threat Enumeration (STRIDE per element)**
   - For each DFD element, applicable STRIDE categories with justification
   - Mapping to specific MITRE ATT&CK techniques (ID + name + tactic)

4. **Prioritized Attack Scenarios (minimum 5)**
   - Realistic adversary stories with entry point, pivot points, techniques, and objective
   - Attacker capability level and likely motivation

5. **Control Mapping & Effectiveness**
   - Existing controls (if provided) and their assessed effectiveness against each scenario
   - Recommended preventive, detective, and responsive controls
   - Mapping to NIST SP 800-53, CIS Controls v8, ISO 27001, or other relevant framework

6. **Risk Assessment**
   - Likelihood × Impact (qualitative 5x5 or quantitative where data permits)
   - Residual risk after proposed mitigations with clear rationale

7. **Threat Model Maintenance Recommendations**
   - How to keep the model alive in CI/CD, recommended tooling (Threat Dragon, IriusRisk, structured Markdown + Git, etc.), and review cadence

**Output Format**: Clear headings, threat register tables, Mermaid DFD syntax where helpful, and executive summary suitable for leadership.