This piece is the final in a series of three blog posts on bug bounty programs and what are some considerations to think about when investing in or launching the program.
Last year, Okta announced that we launched a public bug bounty program with Bugcrowd. I’ve already written about the early considerations necessary to successfully implementing a…
This piece is the second in a series of three blog posts on bug bounty programs and what are some considerations to think about when investing in or launching the program.
In my last post, I discussed the benefits of experimenting with a private bug bounty program before launching a public bounty. Today I’ll share which teams you should involve in…
This piece is the first in a series of three blog posts on bug bounty programs and what are some considerations to think about when investing in or launching the program.
Bug bounty program delivery models range from self-managed input channels for receiving vulnerabilities, platform managed private programs with a small curated list of…