Bug Bounty Programs: Lessons learned from implementation in the financial services industry
Join financial services veteran, Jason Pubal, for this informative on-demand webinar on bug bounty implementation for financial services firms. Jason will review how in an agile and devops world, bug bounty programs help align information security with the new pace of product development and enhance a penetration testing program to be more focused and valuable.
Advice will also be provided for how to scale a bug bounty program for optimal success and how automation enables coverage of hundreds of applications.
- Vulnerability Management: How Bug Bounty and Vulnerability Management interact
- Agile Development & DevOps Deployment: How Bug Bounty enhances Penetration Testing
- Automation: How HackerOne’s API can be utilized to import known web application vulnerabilities into custom workflows, enabling coverage of hundreds of applications
With Jason’s unique experience in security operational and management practices, having worked with diverse technical teams to build the right security controls, and testing via audits and penetration tests, he is exceptionally qualified to deliver the material on bug bounties and their success in the secure SDLC.
About our Presenter
Jason Pubal, Director Application Security for a Financial Services Company
Jason Pubal is an information security professional with 15 years of experience. He works for a global payments technology company leading an application security team. Jason recently started their Bug Bounty program, and has gotten immense value from leveraging the crowd to root out complex vulnerabilities on highly visible applications. Jason holds a Master’s degree in Information Security Engineering from SANS Technology Institute.