Latest news
An Ohio-based company is protecting first responders around the world
With support from JPMorganChase, Fire-Dex is providing protective equipment to firefighters in 100 countries and all 50 states.
Learn moreLatest news
Veteran’s Unconventional Path to Landing her Dream Job in Tech
U.S. Army Veteran Ashley Wigfall transitioned to a civilian role and charted her path to technologist through mentorship and skills training at the JPMorgan Chase tech hub in Plano, Texas.
Learn more
News
September 25, 2025
Generative AI is making headlines as it creates new risks and exacerbates existing ones – affecting areas from data privacy and security to potential malfunctions, vulnerabilities and new attack vector threat landscape grows more complex. As much as AI is creating more risks, it’s also helping tech teams build stronger cyber defense. JPMorganChase built the AI Threat Modeling Co-Pilot (AITMC), a solution that helps its engineers better model threats earlier and more efficiently in the software development lifecycle.
Traditionally, threat modeling required specialized expertise to identify potential threats and implement controls. However, the rapid growth of application estates, sophisticated threats and new standards necessitate scaling these efforts. AITMC addresses this by combining generative AI with expert feedback, frameworks, and industry best practices, ensuring accurate and effective threat modeling.
Throughout the development of AITMC, which included deep technical workshops and hackathons with enterprise architecture, early testers across JPMorganChase’s lines of businesses weighed in to ensure the solution meets the firm’s diverse needs.
By building trust and fostering collaboration, the AITMC is poised to improve the risk posture of every application firmwide. AITMC’s early adopters are already seeing the impact it has had on efficiency and threat discovery. The co-pilot has allowed users to create over 250 threat models, achieving a 20% efficiency increase in threat modeling execution. To date, AITMC has uncovered an average of nine additional novel threats per model. As the solution continues to mature, these numbers are expected to increase, further supporting customers across the firm.
The AITMC exemplifies the upsides of this impact using generative AI to detect novel threats in software development. One of the key benefits of the AITMC is its ability to shift left, providing insights to architects and developers earlier in the development process. This proactive approach reduces the cost of downstream remediation and enhances our overall security posture, using generative AI to pave the way for safer application environments.
For more information about JPMorganChase’s AI Threat Modeling Co-Pilot, visit here.
