[C11] "Bug Bounty @ Swisscom"
by Florian Badertscher

Author: Florian Badertscher
Language: English
Country: Switzerland
Date & time: Thurs. 3. nov. - 16:00 to 16:45

For over a year now Swisscom runs its own Bug Bounty Program and has chosen to follow a different approach than many of the other well known programs. Learn what it takes to set up the program, keep it running in a highly diverse environment and deal with the different needs and limitations from a Telco, ISP and IT Services perspective. We will share insights into the program and the real value it delivers to the company, in addition to the vulnerabilities you learn about.

Biography: Before joining Swisscom in 2015 Florian Badertscher worked as a security analyst, penetration tester and teacher on various security topics such as analysis of mobile apps and platforms, web application security, analysis of networks, systems, concepts and architectures.
Working now in the CSIRT of Swisscom, besides his duties in incident management and incident response, he develops and runs various security programs and initiatives, for example the Bug Bounty Program for the Swisscom Group.