Is Bug Bounty the new CISO must-have for offensive security?
Wed, Jul 29, 2020 · 4:00 PM
ABOUT THIS WEBINAR
CISOs face pressure to reduce costs while maintaining and improving security. In other words, they’re challenged to do more with less. Bug bounty is an alternative solution to “traditional” approaches (pen-tests), solving this dilemma by addressing cost and time optimisation. Joining us are 4 IT Security leaders sharing their insights on the new strategy for cybersecurity and top tips for staying secure online.
What does “offensive security” mean to you, and how does Bug Bounty fit into the big picture?
What are the top three (or more) common misperception you believe the industry may have regarding to Bug Bounty?
Comparing to a traditional penetration testing, what are the major benefit (e.g., cost, skill set, scalability, quality control etc.) that a Bug Bounty program can offer to a company? Do you see bug bounty as a substitution, or an add-on for more effective cyber governance?
If a company would like to participate in a bug bounty program, what are the available alternatives you would recommend them to consider (e.g., subscribing to reputable bug bounty platform, or host their own bug bounty program)?
When participating in a Bug Bounty program, what are the major challenges a participant should expect and manage?