Ken Munro

Founder and Partner, Pen Test Partners

Mr. Munro is Founder and Partner at Pen Test Partners (www.pentestpartners). He regularly blogs and writes for various newspapers and industry magazines in an effort to get beyond the unhelpful scaremongering put about by many security vendors. He has become a voice for reform and legislative change in the largely unregulated IoT, briefing UK and US government departments as well as being involved with various EU consumer councils. He has been in the infosecurity business for 20 years.

Ken Munro's Events

Vulnerability Disclosure Programs: A Tale from Both Sides

Date: Tuesday, October 26

Presented by: Ken Munro, Founder and Partner, Pen Test Partners

The PCI has required its members to adhere to a Vulnerability Management Program since 2010 but we’re now seeing regulators call for Vulnerability Disclosure Programs (VDPs) across industries. A VDP puts in place procedures to aid the swift resolution of the issue before it becomes known and exploitable. In this session we explore the good and bad elements of a VDP, what NOT to do by citing a recent case study and provide a summary of what we think constitutes an effective disclosure framework.