ThreatModeler has announced the general availability of ThreatModeler® Nexus™, an agentic threat modeling platform engineered to bring architecture-aware security into modern application development. Serving as the first comprehensive platform release following the corporate merger between ThreatModeler and IriusRisk, the platform leverages specialized AI agents to establish an enterprise system of record for secure software design.
The Nexus platform coordinates a multi-agent ecosystem grounded by the “Secure Design Graph” a unified dataset consolidating decades of threat, control, and compliance intelligence inherited from both merged entities. Within this framework, a System Mapping Agent extracts architecture blueprints directly from code artifacts, a Graph Agent contextually maps those components to the client’s unique environment, and a Reporting Agent automatically builds audit-ready compliance documentation. This combination of deterministic constraints and AI acceleration allows security teams to systematically track vulnerabilities in automated code generation, reducing traditional modeling friction by up to 50%. Concurrently, ThreatModeler is partnering with Knox Systems to pursue FedRAMP authorization to safely deliver these agentic capabilities to heavily regulated public sector environments.
Also Read: Rubrik Partners with Amazon Bedrock AgentCore to Reinforce Enterprise AI Agent Security
Highlighting the structural change in software engineering as AI-written code grows rapidly, Ben Oster, Chief Product Officer at ThreatModeler, stated: “Finding flaws in code is cheap now. A frontier model can do it in minutes. The hard part moved to confirming what actually matters, catching what is missing, and proving it to the board. That takes a governed framework and a system of record, not another prompt. That is what ThreatModeler Nexus is built to be.”
Underscoring the strategic milestone realized by combining the intellectual property of the two industry pioneers, Kevin Gallagher, CEO of ThreatModeler, concluded: “This is the platform the merger was for. Two companies brought together a decade of work each, and the result is a Secure Design Graph no one else can rebuild from the outside. Launching it alongside partners across delivery and the public sector is the clearest signal of where this company is headed.”