Architectural threat analysis combines strong architecture specification with threat analysis, enabling early discovery of risks and discussion of alternatives. How does a security team convince engineering to draft stronger architectural specifications? Can the security team be a co-author? If so, how? Join a discussion on how to use architecture specification to drive secure development.