Laurie Mercer, security engineer at HackerOne, reveals what it takes to launch a successful bug bounty program.
Nobody wants to pay a juicy GDPR fine. Yet the more information that is available through internet-connected services, the greater the risk of a data breach. The quickest and most efficient way to find vulnerabilities in internet-connected systems is to run a bug bounty program.
The question I hear the most when talking to companies wanting a bug bounty program is “how do I get started?”
Here are four questions to ask yourself to understand how to get started:
Also of interest: Could veterans be the answer to the cyber skills shortage problem?