Name: DBT Crowdsourced Security and DevOps: A Few Things You Probably Didn't Know
Start: 2022-07-21T16:00:00Z
End: 2022-07-21T16:00:31.000Z
Location: BrightTALK
Rating: 0

We are Bugcrowd. Since 2012, we’ve been empowering organizations to take back control and stay ahead of threat actors by uniting the collective ingenuity and expertise of our customers and trusted alliance of elite hackers, with our patented data and AI-powered Security Knowledge Platform™. Our network of hackers brings diverse expertise to uncover hidden weaknesses, adapting swiftly to evolving threats, even against zero-day exploits. With unmatched scalability and adaptability, our data and AI-driven CrowdMatch™ technology in our platform finds the perfect talent for your unique fight. We are creating a new era of modern crowdsourced security that outpaces threat actors. Unleash the ingenuity of the hacker community with Bugcrowd. 

81% of security leaders call staying ahead of threat actors “a constant battle with an unsustainable cost.” We need to rethink how to meet security objectives, and with the chronic talent shortage, that includes activating the endless skill sets and diversity of the ethical hacker community to proactively reduce risk–not just react to threats we already know about. 

Join this webinar to learn:

-How augmenting your team with skilled, trusted hackers on demand can help find and prioritize vulnerabilities that traditional testing will miss
-What motivates hackers and why they are your best defenders when engaged correctly
-The specific types of programs/objectives for which hackers add the most value, and why 
-How to think about measuring success and ROI

The Greatest Cybersecurity Myth Ever Told: Why Hackers Are Our Best Defenders, And How They Augment Your Team

Join Abel from Skyscanner, alongside Matthias from Bugcrowd, as they answer your questions on the impact of bug bounty on company security. 

From understanding the enormous benefits of bug bounty to exploring the best practices for scaling these programs effectively, this session offers a comprehensive look into leveraging crowdsourced security solutions for maximum impact. 

We’ll dive into:

- Scaling your program and enhancing security posture: Gain practical insights into scaling your bug bounty program and improving your company’s security posture over time.
- The impact on security: Discover how the bug bounty program has significantly enhanced Skyscanner’s security by identifying and fixing vulnerabilities before bad actors could exploit them.
- Hacker and program owner perspectives: Hear from hackers like Matthias and program owners like Abel about what makes a bug bounty program successful and what both parties want to see.
- Future trends and best practices: Explore emerging trends in bug bounty programs and predictions for the future, including their role in mitigating threats and improving overall security.

Join us for an in-depth discussion and get actionable tips for optimizing your own bug bounty program to safeguard your organization’s security.

Skyscanner | Ask Me Anything: Bug bounty and security success

Join us on March 11, 2025, at 14:00 GMT for an inspiring and insightful discussion in celebration of International Women’s Day. This exclusive webinar brings together top female leaders in cybersecurity to share their journeys, challenges, and strategies for success in a traditionally male-dominated field.

Panelists:
- Einat Shimoni, CISO of Lusha
- Katie Paxton-Fear, Ethical hacker
- Liz Steininger, CEO of Least Authority
- Emily Ferdinando, CMO of Bugcrowd

This event is more than just a discussion—it’s a movement to empower and uplift women in cybersecurity. Whether you're an aspiring security professional, a student exploring career paths, or already in the field looking to break through barriers, this webinar is designed to provide real-world insights, career advice, and mentorship. Our panelists will share their personal experiences, the obstacles they've overcome, and the lessons they’ve learned in their journey to the top.

We encourage attendees to bring their questions! If you’re wondering how to start a career in cybersecurity, where to find opportunities, or how to navigate challenges as a woman in the industry, this is your chance to get guidance from those who’ve been there. Let’s work together to close the gender gap in cybersecurity and pave the way for the next generation of female leaders.

Don’t miss this empowering conversation—reserve your spot today!

Breaking barriers: Women leading in cybersecurity

Cybersecurity vulnerabilities can result in severe legal, financial, and reputational damage, affecting both enterprise and personal data. As the threat landscape evolves, Vulnerability Disclosure Programs (VDPs) have become essential for organizations looking to proactively manage risk. However, building a successful VDP requires strategic planning, the right tools, and a well-structured approach.

Join us for a webinar featuring Kent Wilson, VP of Global Public Sector at Bugcrowd; Casey Ellis, Founder of Bugcrowd; Conrad Long, OIS Security Operations Chief for the State of California; and John Cleveland, Deputy State Chief Information Security Officer of California, as they share insights on:
-Their experience implementing and managing a VDP with Bugcrowd
-Key metrics from California’s VDP, one of the most successful government programs
-Why VDPs are critical for compliance and cybersecurity maturity
-Seven key steps to successfully set up and manage a VDP

7 VDP best practices from the State of CA

Bugcrowd’s most popular report, Inside the Mind of a Hacker, is almost here! Join us for this breakdown of some of the most interesting findings from the report. This annual report provides valuable insights into the unique ways hackers are taking their security research and advice on how the cybersecurity community can benefit from these trends. This specific edition also shares research highlighting the ways 1300 hackers are using generative AI as a tool to make their hacking more valuable. 

Join Michael Skelton, Vice President of Operations at Bugcrowd, Erik De Jong, Hacker and Security Officer at Delta Fiber, and Erica Azad, Director of Content Marketing at Bugcrowd, in this webinar to learn:
-Age and education trends in hacking as a new generation of Gen-Z hackers hit the market.
-The real reasons why hackers spend their time on security research.
-Why hardware hacking is experiencing an unexpected resurgence.
-How hackers are approaching AI as a tool, a target, and a threat.

Inside the Mind of a Hacker 2024

Join Jordan & Philip from Reward Gateway, alongside Matthias from Bugcrowd, as they answer your questions on the impact of Pen Testing as a Service (PTaaS) on company security. 

From understanding the enormous benefits of PTaaS to exploring the best practices for scaling these programs effectively, this session offers a comprehensive look into leveraging crowdsourced security solutions for maximum impact. 

We’ll dive into:

- Scaling your program and enhancing security posture: Gain practical insights into scaling your PTaaS program and improving your company’s security posture over time.
- The impact on security: Discover how the PTaaS program has significantly enhanced Reward Gateway’s security by identifying and fixing vulnerabilities before bad actors could exploit them.
- Hacker and program owner perspectives: Hear from hackers like Matthias and program owners like Jordan and Philip about what makes a PTaaS program successful and what both parties want to see.
- Future trends and best practices: Explore emerging trends in PTaaS programs and predictions for the future, including their role in mitigating threats and improving overall security.

Join us for an in-depth discussion and get actionable tips for optimizing your own PTaaS program to safeguard your organization’s security.

Reward Gateway | Ask Me Anything: PTaaS and security success

The CISO role is evolving. The path to becoming a CISO, expectations of the role, and the path after the role is earned are varied. 

Bugcrowd recently released a new report, Inside the Mind of a CISO, which surveyed 209 security leaders globally to understand their biggest priorities and challenges. In this webinar, the author of the report is sitting down with Jason Haddix, former CISO and current CEO at Arcanum Information Security, to discuss his perspective on:
-How CISO roles and responsibilities are changing over time
-AI as a tool, a target, and a threat
-How an offensive security background has impacted his security strategy
-Advice for aspiring CISOs

Inside the Mind of a CISO

Join Kent Wilson, Vice President of Global Public Sector at Bugcrowd, to explore how crowdsourcing can revolutionize the Department of Defense's (DoD) cybersecurity posture. Discover actionable strategies drawn from Bugcrowd's expertise to learn how they can:

-Accelerate vulnerability discovery and mitigation
-Enhance the security of AI systems vital to DoD operations
-Foster knowledge transfer and collaboration within the cyber workforce
-Implement a strategic framework for ethical and secure crowdsourced engagement
-Secure a decisive advantage against asymmetric cyber threats

Don't miss this opportunity to learn how crowdsourcing can strengthen national defense in an era of unprecedented challenges.

Asymmetric Advantage: The Crowd as a Force Multiplier

Bugcrowd’s most popular report, Inside the Mind of a Hacker, is almost here! Join us for this breakdown of some of the most interesting findings from the report. This annual report provides valuable insights into the unique ways hackers are taking their security research and advice on how the cybersecurity community can benefit from these trends. This specific edition also shares research highlighting the ways 1300 hackers are using generative AI as a tool to make their hacking more valuable. 

Join Michael Skelton, Vice President of Operations at Bugcrowd, Erik De Jong, Hacker and Vulnerability Researcher at error32.io, and Erica Azad, Director of Content Marketing at Bugcrowd, in this webinar to learn:
-Age and education trends in hacking as a new generation of Gen-Z hackers hit the market.
-The real reasons why hackers spend their time on security research.
-Why hardware hacking is experiencing an unexpected resurgence.
-How hackers are approaching AI as a tool, a target, and a threat.

Join Andre and Benjamin from Axis Communications, alongside Matthias from Bugcrowd, as they answer your questions on the impact of bug bounty programs on company security. 

From understanding the enormous benefits of bug bounties to exploring the best practices for scaling these programs effectively, this session offers a comprehensive look into leveraging crowdsourced security solutions for maximum impact. 

We’ll dive into:

• Scaling your program and enhancing security posture: Gain practical insights into scaling your bug bounty program and improving your company’s security posture over time.
• The impact on security: Discover how the bug bounty program has significantly enhanced Axis Communications’ security by identifying and fixing vulnerabilities before bad actors could exploit them.
• Hacker and program owner perspectives: Hear from hackers like Matt and program owners like Andre and Benjamin about what makes a bug bounty program successful and what both parties want to see.
• Future trends and best practices: Explore emerging trends in bug bounty programs and predictions for the future, including their role in mitigating threats and improving overall security.

Join us for an in-depth discussion and get actionable tips for optimizing your own bug bounty program to safeguard your organization’s security.

Axis Communications | Ask Me Anything: Bug Bounties and security success

Security ROI is top of mind for security and business leaders who need to quantify the impact of their investment. Line of sight into security ROI has always been hard, and adoption of crowdsourced security with a "pay for results" economic model (aka, bug bounty) adds additional considerations -- but also opportunities to show a tangible impact on the bottom line.

Join our webinar featuring Paul Ciesielski, Chief Revenue Officer at Bugcrowd, and Jason Haddix, CEO and Hacker of Arcanum Information Security, as they discuss:
-The overall potential economic impact of bug bounty adoption
-How bug bounty potentially affects operational efficiency and traditional pen testing
-How to think about qualitative benefits

Calculating the ROI of Bug Bounty Engagements

Join Jack Edwards, Security Engineer at ITV, and Bugcrowd Technical Program Manager, Matthias Held, as well as Robin Morte, ethical researcher on Bugcrowd, as they answer your questions on the impact of Vulnerability Disclosure Programs (VDP) on company security. 

From understanding the enormous benefits of VDPs to exploring the best practices for scaling these programs effectively, this session offers a comprehensive look into leveraging crowdsourced security solutions for maximum impact. 

We’ll dive into:

1) Scaling your program and enhancing security posture: Gain practical insights into scaling your VDP and improving your company’s security posture over time.

2) The impact on security: Discover how the VDP has significantly enhanced ITV’s security by identifying and fixing vulnerabilities before bad actors could exploit them.

3) Hacker and program owner perspectives: Hear from hackers and program owners like George about what makes a VDPs successful and what both parties want to see.

4) Future trends and best practices: Explore emerging trends in VDPs and predictions for the future, including their role in mitigating threats and improving overall security.

Join us for an in-depth discussion and get actionable tips for optimizing your own VDP to safeguard your organization’s security.

ITV Ask Me Anything: Vulnerability Disclosure Programs & Security Success

Fewer than 10% of organizations have visibility into their evolving attack surface, yet nearly 70% have been compromised through an unknown or poorly managed asset. With that in mind, having constant access to up-to-date external attack surface intelligence about digital assets in motion isn’t optional. 

In addition, the most security-forward organizations will use that intelligence to amplify the impact and productivity of follow-on human-driven testing and drive contextual recommendations, creating continuous assurance that compliance and risk reduction requirements are being met over time.

Join us to discuss, among other things:

-How attack surface intelligence unlocks new capabilities such as continuous attack surface pentesting and dynamic scope for bug bounty
-The complementary roles of pen testing and crowdsourced testing
-Bugcrowd’s vision to give users data-driven insights and recommendations based on rich asset and vulnerability data – plus the ability to proactively act on them – for continuous risk assurance

Attack Surface Intelligence for Continuous Assurance: The Journey Begins

Security ROI is top of mind for security and business leaders who need to quantify the impact of their investment. Line of sight into security ROI has always been hard, and adoption of crowdsourced security with a "pay for results" economic model (aka, bug bounty) adds additional considerations -- but also opportunities to show a tangible impact on the bottom line.

Join our webinar featuring Paul Ciesielski and Jason Haddix as they discuss:
-The overall potential economic impact of bug bounty adoption
-How bug bounty potentially affects operational efficiency and traditional pen testing
-How to think about qualitative benefits

Join Skroutz CISO, George Papakyriakopoulos, and Bugcrowd Technical Program Manager, Matthias Held, as well as Robin Marte, ethical researcher on Bugcrowd, as they answer your questions on the impact of bug bounty programs on company security. 

From understanding the enormous benefits of bug bounties to exploring the best practices for scaling these programs effectively, this session offers a comprehensive look into leveraging crowdsourced security solutions for maximum impact. 

We’ll dive into:

1) Scaling your program and enhancing security posture: Gain practical insights into scaling your bug bounty program and improving your company’s security posture over time.

2) The impact on security: Discover how the bug bounty program has significantly enhanced Skroutz’s security by identifying and fixing vulnerabilities before bad actors could exploit them.

3) Hacker and program owner perspectives: Hear from hackers and program owners like George about what makes a bug bounty program successful and what both parties want to see.

4) Future trends and best practices: Explore emerging trends in bug bounty programs and predictions for the future, including their role in mitigating threats and improving overall security.

Join us for an in-depth discussion and get actionable tips for optimizing your own bug bounty program to safeguard your organization’s security.

Skroutz Ask Me Anything: Bug Bounties and security success

Crowdsourced security has its roots in the bug bounty movement, which emerged years ago. Since then, it's become much more versatile, enhancing numerous security workflows (pen testing, ASM, etc.), and for many adopters, joining the mainstream development lifecycle.

In this webinar, you'll learn:

- About integrating crowdsourcing with your existing dev and security processes
- Modern use cases for crowdsourced security that go beyond bug bounty
- The difference between generalist crowds and curated crowds
- How it contributes to continuous, shift-left security

DBT Crowdsourced Security and DevOps: A Few Things You Probably Didn't Know

Cyber Security

Cyber Crime

Bug Bounty

Cyber Threats

Cyber Vulnerabilities

Security

Security as a Service

DevOps

Crowdsourced Security

Bugcrowd

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The application development community features top thought leadership focusing on optimal practices in software development, SDLC methodology, mobile app development and application development platforms and tools. Join top software engineers and coders as they cover emerging trends in everything from enterprise app development to developing for mobile platforms such as Android and iOS.

Application Development

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

DBT Crowdsourced Security and DevOps: A Few Things You Probably Didn't Know

Presented by

About this talk

More from this channel