Hi [[ session.user.profile.firstName ]]

Beyond the Bounty - The Real Value for Hackers & Organizations

HackerOne’s Laurie Mercer will be joined by Jacob Mattsson, Security Lead at online gaming company Kindred Group, who recently went public with their bug bounty program, Baden Delamore, Product Security Lead at Deliveroo and up and coming hacker, Katie Paxton-Fear a.k.a @InsiderPHD.

3 Key Takeaways:

- How bug bounty insights have informed Kindred’s development processes
- What motivates the best bug hunters and keeps them coming back to your program
- Learn best practises of running a successful bug bounty program
Recorded Apr 8 2021 59 mins
Your place is confirmed,
we'll send you email reminders
Presented by
Laurie Mercer, Jacob Mattson, Baden Delamore, Katie Paxton-Fear
Presentation preview: Beyond the Bounty - The Real Value for Hackers & Organizations

Network with like-minded attendees

  • [[ session.user.profile.displayName ]]
    Add a photo
    • [[ session.user.profile.displayName ]]
    • [[ session.user.profile.jobTitle ]]
    • [[ session.user.profile.companyName ]]
    • [[ userProfileTemplateHelper.getLocation(session.user.profile) ]]
  • [[ card.displayName ]]
    • [[ card.displayName ]]
    • [[ card.jobTitle ]]
    • [[ card.companyName ]]
    • [[ userProfileTemplateHelper.getLocation(card) ]]
  • Channel
  • Channel profile
  • How to Perform Effective Web Application Security Assessments Apr 30 2021 11:00 am UTC 60 mins
    Leanne Shapton - Portswigger, Joel Noguera - Hacker & Pentester, Cindy Ho - HackerOne
    Security reviews and assessments can take a lot of effort and still not provide the results you are looking for, especially in the face of ever-expanding web portfolios and supply chain risk. Application security teams are already stretched thin. But doing automation right and knowing where and what to look for can save you time and money - and make your organization more secure. HackerOne - curator of the world’s largest ethical hacker community - and PortSwigger - creators of Burp Suite, the world’s leading toolkit for web security testing - bring you key learnings that will help you develop best practices and ensure you’re getting the most from your investments in web security.

    This workshop will provide tips from two perspectives: Leanne Shapton - application security engineer at Shopify and Joel Noguera, white hat ethical hacker. Topics include:

    - Shopify’s approach to incorporate security into product review processes to support the development of their app-store and marketplace
    - How automated vulnerability scanning complements penetration testing, bug bounty programmes and other security processes
    - Advice for how security teams can partner with software developers
    - How to balance automation with human intuition
    - How to identify weaknesses faster to spend more time on what matters
  • Secure Your Attack Surface Recorded: Apr 13 2021 33 mins
    Arjun Kolady, Security Solutions Engineer, HackerOne
    When acceleration of your digital program and the pace of innovation ramps up, your need for security also increases. Maintaining an expanding attack surface demands continuous coverage that can be obtained by hacker-powered security.

    Join Arjun for this webinar where he'll cover the problems facing expanding companies deal with, the solutions and benefits to a crowdsourced security plan and tips how to scale your approach.

    HackerOne was started by hackers and security leaders who are driven by a passion to make the internet safer. Our platform is the industry standard for hacker-powered security. We partner with the global hacker community to surface the most relevant security issues of our customers before they can be exploited by criminals.
  • Beyond the Bounty - The Real Value for Hackers & Organizations Recorded: Apr 8 2021 59 mins
    Laurie Mercer, Jacob Mattson, Baden Delamore, Katie Paxton-Fear
    HackerOne’s Laurie Mercer will be joined by Jacob Mattsson, Security Lead at online gaming company Kindred Group, who recently went public with their bug bounty program, Baden Delamore, Product Security Lead at Deliveroo and up and coming hacker, Katie Paxton-Fear a.k.a @InsiderPHD.

    3 Key Takeaways:

    - How bug bounty insights have informed Kindred’s development processes
    - What motivates the best bug hunters and keeps them coming back to your program
    - Learn best practises of running a successful bug bounty program
  • Incorporating Pentesting In Your Overall Security Strategy Recorded: Mar 18 2021 61 mins
    April Rassa - HackerOne, Justin Berman - Dropbox, George Gershow - Sumo Logic
    In this webinar, learn why your traditional penetration test tools and methods aren't keeping pace with your digital transformation. With hacker-powered pentests, obtain unparalleled speed, coverage and transparency. Secure your entire software lifecycle and satisfy compliance requirements.

    HackerOne was started by hackers and security leaders who are driven by a passion to make the internet safer. Our platform is the industry standard for hacker-powered security. We partner with the global hacker community to surface the most relevant security issues of our customers before they can be exploited by criminals.
  • Meet the Hackers Who Hack For Good Recorded: Feb 1 2021 56 mins
    HackerOne Network
    Meet the Hackers who #HackForGood. During this panel discussion, you will learn what motivates ethical hackers, how they became ethical hackers and how they use their skills to help businesses maintain a strong security posture.
  • Contemplating the Future of Collaboration & Security (NOAM) Recorded: Dec 17 2020 16 mins
    Michiel Prins, Co-Founder, HackerOne, Amanda Berger, VP of Customer Success, HackerOne
    HackerOne VP of Customer Success Amanda Berger will recap learnings and reflections from Security@ 2020, securing ecosystems not assets, and Chief Product Officer G Vives will discuss product roadmap, vision, and what lies ahead for the future of collaboration and cybersecurity.
  • A Hacker's Guide to Shopify's GraphQL API (NOAM) Recorded: Dec 17 2020 29 mins
    Jennifer Newton, Senior Application Security Engineer at Shopify
    Shopify uses GraphQL for both their developer-facing and undocumented APIs. They noticed that bugs in new functionality can go unreported. Learn how the team created the roadmap for researchers on how to effectively discover new functionality in Shopify APIs, and how they can get started testing it.
  • How A Bug Becomes A Fix (NOAM) Recorded: Dec 17 2020 39 mins
    Robin Lunde, LINE, Youngsung Kim, LINE, Ron Chan, Hacker, Prash Somaiya, HackerOne
    From testing to vulnerability report, to validation, to CVSS, to security team, to developer...now what? In this session LINE will trace the path of a bug from hacker to fix and feed it back into the SDLC, and all the communication that happened along the way.
  • Fireside Chat: Shifting the Culture of Cybersecurity (NOAM) Recorded: Dec 17 2020 43 mins
    Justin Berman, Head of Security, Dropbox, Amanda Berger, SVP of Customer Success, HackerOne
    Cybersecurity is an industry built on a foundation of firewalls, black boxes, and a shield mentality. Yet, innovation and agility breeds in a culture of openness and shared knowledge. This fireside chat will cover how leaders and security teams bridge security defense with industry collaboration."
  • Contemplating the Future of Collaboration & Security (EMEA) Recorded: Dec 17 2020 16 mins
    Michiel Prins, Co-Founder, HackerOne, Amanda Berger, VP of Customer Success, HackerOne
    HackerOne VP of Customer Success Amanda Berger will recap learnings and reflections from Security@ 2020, securing ecosystems not assets, and Chief Product Officer G Vives will discuss product roadmap, vision, and what lies ahead for the future of collaboration and cybersecurity.
  • How A Bug Becomes A Fix (EMEA) Recorded: Dec 17 2020 39 mins
    Robin Lunde, LINE, Youngsung Kim, LINE, Ron Chan, Hacker, Prash Somaiya, HackerOne
    From testing to vulnerability report, to validation, to CVSS, to security team, to developer...now what? In this session LINE will trace the path of a bug from hacker to fix and feed it back into the SDLC, and all the communication that happened along the way.
  • Fireside Chat: Shifting the Culture of Cybersecurity (EMEA) Recorded: Dec 17 2020 43 mins
    Justin Berman, Head of Security, Dropbox, Amanda Berger, SVP of Customer Success, HackerOne
    Cybersecurity is an industry built on a foundation of firewalls, black boxes, and a shield mentality. Yet, innovation and agility breeds in a culture of openness and shared knowledge. This fireside chat will cover how leaders and security teams bridge security defense with industry collaboration."
  • A Hacker's Guide to Shopify's GraphQL API (APAC) Recorded: Dec 17 2020 29 mins
    Jennifer Newton, Senior Application Security Engineer at Shopify
    Shopify uses GraphQL for both their developer-facing and undocumented APIs. They noticed that bugs in new functionality can go unreported. Learn how the team created the roadmap for researchers on how to effectively discover new functionality in Shopify APIs, and how they can get started testing it.
  • Fireside Chat: Shifting the Culture of Cybersecurity (APAC) Recorded: Dec 17 2020 43 mins
    Justin Berman, Head of Security, Dropbox, Amanda Berger, SVP of Customer Success, HackerOne
    Cybersecurity is an industry built on a foundation of firewalls, black boxes, and a shield mentality. Yet, innovation and agility breeds in a culture of openness and shared knowledge. This fireside chat will cover how leaders and security teams bridge security defense with industry collaboration."
  • How A Bug Becomes A Fix (APAC) Recorded: Dec 17 2020 39 mins
    Robin Lunde, LINE, Youngsung Kim, LINE, Ron Chan, Hacker, Prash Somaiya, HackerOne
    From testing to vulnerability report, to validation, to CVSS, to security team, to developer...now what? In this session LINE will trace the path of a bug from hacker to fix and feed it back into the SDLC, and all the communication that happened along the way.
  • Contemplating the Future of Collaboration & Security (APAC) Recorded: Dec 17 2020 16 mins
    Michiel Prins, Co-Founder, HackerOne, Amanda Berger, VP of Customer Success, HackerOne
    HackerOne VP of Customer Success Amanda Berger will recap learnings and reflections from Security@ 2020, securing ecosystems not assets, and Chief Product Officer G Vives will discuss product roadmap, vision, and what lies ahead for the future of collaboration and cybersecurity.
  • Quantifying Risk: Tackling Cybersecurity Amidst Change (NOAM) Recorded: Dec 16 2020 47 mins
    Larkin Ryder, CISO, Slack, Alex Rice, HackerOne, Benjamin Vaughn, CISO, Hyatt
    In an industry that’s been fighting for resources for years, security leaders are tasked with doing more with even fewer resources than before. When making the case for security, how do you measure and market success? What is ROI in security terms? Lack of breach, testing coverage, number of fixes?
  • Beyond the Checkbox: Leveraging Compliance Frameworks to Improve Security (NOAM) Recorded: Dec 16 2020 50 mins
    Nicole Perloth, The New York Times Jesse Kinser, LifeOmic Allyson O'Malley, Salesforce Katie Paxton-Fear, Bug Bounty Hunter
    Many organizations across the take a checkbox approach to meet the bare minimum of the required controls to meet data protection standards and prove compliance. This talk will discuss how to use compliance frameworks in a way that actually improves your organizations’ security posture.
  • Open Innovation: Prioritizing Diversity & Inclusion (NOAM) Recorded: Dec 16 2020 30 mins
    Marten Mickos, CEO, HackerOne, Molly Ford, Salesforce
    This talk will cover recent research shows that less than 25% of the cybersecurity workforce identifies as female, and Black representation as low as 3% (male or female). Minorities reaching security leadership positions are few and far between. Culture in cybersecurity is ripe for change.
  • Quantifying Risk: Tackling Cybersecurity Amidst Change (EMEA) Recorded: Dec 16 2020 47 mins
    Larkin Ryder, CISO, Slack, Alex Rice, HackerOne, Benjamin Vaughn, CISO, Hyatt
    In an industry that’s been fighting for resources for years, security leaders are tasked with doing more with even fewer resources than before. When making the case for security, how do you measure and market success? What is ROI in security terms? Lack of breach, testing coverage, number of fixes?
HackerOne
HackerOne powers the world’s leading bug bounty and vulnerability coordination platform. More than 700 organizations trust HackerOne to find their critical software vulnerabilities before criminals can exploit them. HackerOne has the world's largest community of trustworthy hackers to help improve your organization's defense. Customers include General Motors, Adobe, Uber, the U.S. Pentagon, Salesforce, Twitter, Yahoo!, Dropbox, Square, LinkedIn, Snapchat, Airbnb, New Relic, Qualcomm, Nintendo, Intel and the CERT Coordination Center.

Embed in website or blog

Successfully added emails: 0
Remove all
  • Title: Beyond the Bounty - The Real Value for Hackers & Organizations
  • Live at: Apr 8 2021 2:00 pm
  • Presented by: Laurie Mercer, Jacob Mattson, Baden Delamore, Katie Paxton-Fear
  • From:
Your email has been sent.
or close