Combating Cyber Threats with VDP: A Federal Success Story

Logo
Presented by

Kent Wilson, Christian Cosans, David Mooney

About this talk

Government agencies and their contractors are held to the highest standards where cybersecurity is concerned. To meet those expectations, the US Cybersecurity and Infrastructure Agency (CISA), made vulnerability disclosure programs (VDPs) a requirement for all federal civilian agencies and launched the CISA VDP platform to help these agencies, federal contractors, and critical infrastructure providers strengthen their security posture by engaging the global ethical hacker community to voluntarily find and report vulnerabilities. Join us for this panel discussion to learn how in the first 18 months CISA : ✓Onboarded more than 40 agencies onto the VDP platform, built in partnership with Bugcrowd ✓Identified >1,300 unique valid disclosures ✓Remediated >1,000 vulnerabilities, an 85% remediation rate ✓Expanded the program to include a private bug bounty program to encourage additional reporting
Related topics:

More from this channel

Upcoming talks (1)
On-demand talks (56)
Subscribers (10196)
We are Bugcrowd. Since 2012, we’ve been empowering organizations to take back control and stay ahead of threat actors by uniting the collective ingenuity and expertise of our customers and trusted alliance of elite hackers, with our patented data and AI-powered Security Knowledge Platform™. Our network of hackers brings diverse expertise to uncover hidden weaknesses, adapting swiftly to evolving threats, even against zero-day exploits. With unmatched scalability and adaptability, our data and AI-driven CrowdMatch™ technology in our platform finds the perfect talent for your unique fight. We are creating a new era of modern crowdsourced security that outpaces threat actors. Unleash the ingenuity of the hacker community with Bugcrowd.