Revitalizing Product Security Through Bug Bounty Programs - Zephyr Health Case Study

Discover how implementing a private bug bounty program transformed the development culture at Zephyr Health in this insightful 37-minute talk. Explore the journey of motivating developers to prioritize security, led by Kim Green, CISO with over 25 years of experience in IT, data and product security, and compliance and risk management. Learn about building a security culture, leveraging crowdsourced security, and setting up an effective bug bounty program. Gain valuable insights into partnering with Bugcrowd, determining success metrics, and the overall impact of this initiative on Zephyr Health's product security landscape.

Introduction
About Zephyr Health
About the bug bounty program
Building a security culture
Crowdsourcing security
Setting up the program
Partnership with Bugcrowd
Bug bounty programs
Determining success