Final Week to get an iPad Pro or Surface Pro with Online Training!

Webcasts

To attend this webcast, login to your SANS Account or create your Account.

The State of Vulnerability Discovery - How Bug Bounties Are Actually Making a Difference

  • Friday, October 21st, 2016 at 11:00 AM EDT (15:00:00 UTC)
  • John Pescatore, Casey Ellis, and David Baker
This webcast has been archived. You can view the webcast presentation and download the slides by logging into your SANS Portal Account or creating an Account. Click the Register Now button after you have logged in to view the Webcast.

Sponsor

  • Bugcrowd

You can now attend the webcast using your mobile device!

Overview

Bug bounty programs are moving from the realm of novelty towards becoming best practice.
While bug bounty programs have been used for over 20 years, widespread adoption by enterprise organizations has just begun to take off within the last few. Bug bounty programs have increased 210% percent since 2013.*
Bug bounties provide an opportunity to level the cybersecurity playing field, strengthen the security of products, and cultivate a mutually rewarding relationship with the security researcher community.
Join Bugcrowd, SANS, and a customer panel as we discuss the momentum behind crowdsourced security.

Agenda:

  • What it's like to run a bug bounty program
  • By the numbers: The maturity of the bug bounty economy
  • Motivations of a hacker

Speaker Bios

John Pescatore

John Pescatore joined SANS as director of emerging security trends in January 2013 after more than 13 years as lead security analyst for Gartner, 11 years with GTE, and service with both the National Security Agency, where he designed secure voice systems, and the U.S. Secret Service, where he developed secure communications and voice systems "and the occasional ballistic armor installation." John has testified before Congress about cyber security, was named one of the 15 most-influential people in security in 2008 and remains an NSA-certified cryptologic engineer.


Casey Ellis

As CEO and founder of Bugcrowd, Casey Ellis brings over 14 years of information security experience to lead the company's technology vision and strategic operation. Prior to Bugcrowd, he served as chief security officer at ScriptRock. A former penetration tester, Casey has taken on the role of "white hat" to connect organizations large and small with the power of Bugcrowd's platform for a revolutionary approach to cybersecurity. Casey has presented at several top security shows including Black Hat, DefCon, RSA, DerbyCon, BSides, Converge, SOURCE Conference and the AISA National Summit.


David Baker

Currently the CSO at Okta, David Baker is a proven Information Security Professional with over 15 years experience in computational research, information security and corporate information technology. Solid experience in start-up business strategy, leadership, and growth. Active participant and contributor in the Information Security field, having presented at Agora, RSA, and to representatives of the White House, DOE, and DHS.

Need Help? Visit our FAQ page or email webcast-support@sans.org.

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.