ISSA-LA February Monthly Lunch Meeting

Topic: Taking The Bugs Out of Bug Bounty

Bug Bounties are the new big “thing” in infosec with a diverse group companies of all sizes jumping in. While these programs can be highly effective, it is easier said than done. Using his experience building and running Aviation’s first bug bounty program, Josh discusses his trials and tribulations implementing a first of its kind Bug Bounty program. By the end of this talk you will know what to anticipate, do, and avoid while building a Bug Bounty program to be as successful as possible right out of the gate.

Speaker: Josh Jacobson

Josh is an ethical hacker and researcher based out of Los Angeles California. He began his career as an ethical hacker with a focus on internal and wireless network penetration testing before taking on application security. In his previous role at United Airlines he designed, built, and managed aviation’s first public bounty program which subsequently won multiple awards. While at United also lead digital forensics and conducted Aircraft and Avionics research as an ethical hacker. Josh now oversees vulnerability management for Sony Pictures Entertainment.