Everyday new vulnerabilities are discovered in IoT and IT products. Even a “perfect” product during design can have a flaw in a third-party library. All products are bound to have vulnerability which might not be spotted by your company during development. Sometimes, people from outside of your company may contact you about cyber vulnerabilities that they have discovered in your product. In the face of such situations, it is important to have a policy to guide such interactions.
Vulnerability Disclosure Policy is a requirement from cybersecurity standards such as the EN 303645 and the NIST 8259.
In this workshop, you will have an overview of what is a Vulnerability Disclosure Policy and get the step by step plan to set it up in your company.
Through this workshop, you will gain in-depth knowledge of what is a Vulnerability Disclosure Policy, learn who should be involved, how to deal with report and to build a Vulnerability Disclosure Policy for your company.
This workshop is 2.5 hour long and after the workshop you will be able to set up a Vulnerability Disclosure Policy in your company. This will ensure that your company is ready to handle the situation when someone from outside of the company reports a vulnerability they have found in your product.
Consumer trust is key when you manufacture or retail products that are part of everyone’s daily life
Bosnia and Herzegovina