Having a unique experience of learning to do penetration testing and running a bug bounty program for one of the world's most popular open source php applications, Magento, allows me to give a unique insider view to bug bounty participants. Pain points of running a bug bounty program, triaging process, big payment deciders, why some issues take forever to get resolved, how can a pen tester better present their findings, etc...