Loading…
BSidesLV 2017 has ended
Back To Schedule
Tuesday, July 25 • 11:30 - 11:55
A Day in the Life of a Product Security Incident Response Manager

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
Public security incidents continue to plague software companies, and each public event brings with it a loss of reputation, customer confidence, and even market cap. We’ve all read headline after headline about vulnerabilities found in products with a PR quote from the software vendor saying they will issue a software update; but what happens leading up to the public disclosure? Who is working at the software vendor ensuring customers are safe?

We will go behind the scenes of a Product Security Incident Response Team (PSIRT) including definition of a PSIRT, its responsibilities, vulnerability lifecycles, emergency response events, customer support, researcher outreach, and other PSIRT duties. The talk will provide examples of the type of reports that PSIRT teams deal with on a daily basis, including reports from traditional end users, enterprise customers, researchers, and other sources.

The value of a PSIRT will be highlighted with recommendations for how to get started if your organization is looking to build a PSIRT, and thoughts on the various struggles associated with the endeavor

Presenters
avatar for Tyler Townes

Tyler Townes

Director, Security Program Management, BlackBerry
Tyler works at BlackBerry as the Director of Security Program Management. He is responsible for various programs across the Product Security organization including security advisory and communications, pentesting coordination and fulfillment, security quality measures, open source... Read More →


Tuesday July 25, 2017 11:30 - 11:55 PDT
Proving Ground (Florentine G) 255 E Flamingo Rd, Las Vegas, NV 89169