Description:
Explore the intricacies of running a bug bounty program in this 46-minute conference talk from AppSecEU 2016 in Rome. Delve into the reasons behind implementing bug bounties, their value, and the key players involved. Learn about offering rewards, setting up basic resources and environments, managing access, and fostering teamwork. Gain insights on handling the program post-launch, including the importance of speed, distinguishing between good and bad reports, and implementing a rating taxonomy. Discover validation horror stories and success stories, and understand the significance of marketing in bug bounty programs. Conclude with a Q&A session to address specific concerns and queries.
Running a Bug Bounty Program - What You Need to Know
Add to list
#Information Security (InfoSec)
#Cybersecurity
#Application Security
#Ethical Hacking
#Incident Response
#Business
#Project Management
#Program Management
#Social Sciences
#Psychology
#Behavioral Psychology
#Reward Systems
#Vulnerability Assessment
#Programming
#Software Development
#Software Testing
#Security Testing
#Vulnerability Management