FinDEVr LD 2017 / HackerOne

Presenter Profile

HackerOne is the #1 bug bounty and vulnerability disclosure platform, connecting organizations with the world’s largest community of trusted hackers. More than 800 organizations, including The U.S. Department of Defense, General Motors, Intel, Uber, Twitter, Square, GitHub, Nintendo, Kaspersky Lab, Lufthansa, Panasonic Avionics, Qualcomm, Square, Starbucks, Dropbox and the CERT Coordination Center, trust HackerOne to find critical software vulnerabilities before criminals can exploit them. HackerOne customers have resolved more than 43,000 vulnerabilities and awarded more than $16M in bug bounties. HackerOne is headquartered in San Francisco with offices in London, Seattle, Los Angeles, North Carolina, and the Netherlands.

Presentation

Tapping Hackers to Improve Security

Bug bounty programs are popping up all over the place as more and more companies embrace collaborating with friendly hackers to find vulnerabilities before cyber criminals have a chance to exploit the same bugs for nefarious purposes. Today, most fintech companies are running these programs in private. Whether you run an active bug bounty program, or if your security@ email address is routed to /dev/null, this session will help attendees shed blind dogma and walk away armed with an analytical approach towards building an effective vulnerability disclosure program.

What You’ll Learn

  • How external hackers can help assess and quantify your security posture
  • Why a bug bounty program isn’t right for you
  • The building blocks of a vulnerability disclosure program and how to measure its impact on your software development lifecycle

Presenter

Michiel Prins, Co-Founder

linkedin.com/in/michiel3  |  @michielprins  |  michiel@hackerone.com  |  +1.510.274.0867

Michiel Prins co-founded HackerOne, the #1 bug bounty and vulnerability disclosure platform, connecting organizations with the world’s largest community of trusted hackers. He is an information security expert, hacker and developer. Michiel has been finding critical software vulnerabilities in technology for over 10 years.


More Videos: FinDEVr LD 2017