Better ROI from Software Development

#109: Security Briefing - Paying to be hacked

Continuing my mini-series on security, I discuss why you would paid to be hacked.

When you are spending so much time and money putting security in place, it seem counter-intuitive to then pay someone to try and break it.  But without that, how will you know if your defenses work?

I also introduce three ways of validating those defenses - penetration testing, bug bounties and red team/ blue team exercises.


Find this episodes show notes at:

Have an idea for an episode topic, or want to see what is coming up:

Episode source