In this episode of the VulnWise Podcast, Scott Kuffer and Steve Carter talk to Rishika Hooda, a senior technical program manager at Google, who shares her extensive experience in cybersecurity, particularly in managing Android's patching and bug bounty programs. The conversation delves into the complexities of vulnerability management at scale, the importance of prioritization, and the challenges faced by large organizations in maintaining security. Rishika emphasizes the need for transparency, context, and effective communication within teams to enhance vulnerability management processes.
Key Moments
00:00 Introduction to Cybersecurity and Vulnerability Management
02:23 Understanding Android's Patching and Bug Bounty Programs
08:14 Challenges in Scaling Security Programs
14:27 Best Practices in Vulnerability Prioritization
19:32 The Complexity of Patching in a Global Ecosystem
20:03 The Process of CVE Publication and Transparency
22:42 Measuring Effectiveness of Vulnerability Management Programs
#patching #securityprogram #bugbounty #podcast
