Wednesday

Room 1

10:20 - 11:20 (UTC+02)

Talk (60 min)

Gamify Your Security: Setting Up an Internal Bug Bounty

An internal bug bounty has several advantages over external bug bounty programs. It prevents the excess noise you get from all the script kiddies, it's based on your budget, and it helps the security team be more effective by creating goodwill.

In this interactive talk you'll learn best practices for setting up an internal bug bounty at your company and get some ideas for how to make it fun!

Jillian Ratliff

Jillian provides application security training for software engineers, so they have the skills to write secure code in any language. With over 10 years of AppSec experience, she has worn many hats: penetration tester, consultant, code reviewer, and threat modeler! However, her favorite hat to wear has always been that of a teacher, and that’s why she founded Gold Hat Security in 2019.