Bug Bounty programs bring a new model for working with the security community to discover and address vulns in production applications.
This presentation covers strategies for making a bug bounty program an effective part of an SDLC, and provides techniques for making a program successful for researches and developers alike. From budgeting to communications, there are more concerns to building a successful program than just reviewing vulns.