Ken Munro will be presenting: Vulnerability Disclosure Programs: A Tale from Both Sides
The PCI has required its members to adhere to a Vulnerability Management Program since 2010 but we’re now seeing regulators call for Vulnerability Disclosure Programs (VDPs) across industries. A VDP puts in place procedures to aid the swift resolution of the issue before it becomes known and exploitable. In this session we explore the good and bad elements of a VDP, what NOT to do by citing a recent case study and provide a summary of what we think constitutes an effective disclosure framework.
Register here.
