Efforts to tackle the looming threat of data breaches have seen businesses embrace hackers through crowdsourced security programs, or bug bounties. Bug bounties are used as a financial, or points-based, incentive for independent hackers to find security vulnerabilities within an organization’s infrastructure before cybercriminals do. This approach to security management has become a burgeoning marketplace, with at least half a million hackers now searching for bugs in exchange for cash or recognition. Despite this growth, bug bounties have faced criticism from some within the security community, while many businesses may still balk at the idea of paying hackers to break into their systems.
In this talk you’ll learn what a bug bounty program is, how it can benefit an organization, where it fits alongside other security tools, and the challenges in implementing it to improve your defense posture.