Date:
Tuesday, January 19, 2016 - 11:30am
Topic:
How do you handle the bounty payment to researchers living in countries across the globe? How do you find the legitimate issues lost in the noise, hidden amongst duplicate reports, spam, and confusing written descriptions? Does your team have the resources to handle the continuously variable influx of new reports?
Speaker:
David Nichols is the director of the bug bounty services practice at NCC Group, a leading global information assurance firm which helps enable bug bounty and vulnerability reporting programs across industries. David was previously a security consultant at iSEC Partners, performing penetration tests against web applications and web services.