**Note meeting also open to local BCS Chapter members and we look forward to welcoming you to this event. If you are BCS member or a member of the public please book via the eventbrite website (https://www.eventbrite.co.uk/e/isaca-winchester-february-meeting-2cpe-fantastic-0-days-and-where-to-find-them-with-rapid7-tickets-50754271392) **
Topic: Fantastic 0-Days and Where To Find Them
Date: Wednesday 20th February 2019
Time: 18:30 - 20:30
Location: Basingstoke Country Hotel, Scures Hill, Nately Scures, nr Hook, Basingstoke, RG27 9JS
Speaking Organisation: Rapid7
Event Running Order:
- 18:30 - 19:00 - Delegate Networking
- 19:00 - 20:00 - Chapter Presentation
- 20:00 - Close - Q&A, Chapter AOB and Delegate Networking
Description:
Despite decades of experience, vulnerability discovery and disclosure continues to be a nettlesome topic in information security, and questions persist on what to do with newly discovered vulnerabilities. When you find a vulnerability, who do you tell? How do you tell them? Does bug branding help? How much is too much technical detail? What happens when a bug has life-threatening implications? How do people even find bugs in the first place? What role do bug bounties play? What?s the story with open source projects? Does this abstract have too many question marks, or just enough? Join Tod Beardsley, Director of Research at Rapid7, as he relates his experiences with vulnerability discovery and disclosure and offers some advice on how to operate in this tricky nexus of technology, legality, psychology, and ethics