The State of Vulnerability Discovery - How Bug Bounties Are Actually Making a Difference

  • Friday, 21 Oct 2016 11:00AM EDT (21 Oct 2016 15:00 UTC)
  • Speakers: John Pescatore, Casey Ellis, David Baker

Bug bounty programs are moving from the realm of novelty towards becoming best practice.
While bug bounty programs have been used for over 20 years, widespread adoption by enterprise organizations has just begun to take off within the last few. Bug bounty programs have increased 210% percent since 2013.*
Bug bounties provide an opportunity to level the cybersecurity playing field, strengthen the security of products, and cultivate a mutually rewarding relationship with the security researcher community.
Join Bugcrowd, SANS, and a customer panel as we discuss the momentum behind crowdsourced security.


  • What it's like to run a bug bounty program
  • By the numbers: The maturity of the bug bounty economy
  • Motivations of a hacker