Rootconf 2019

Rootconf 2019

On infrastructure security, DevOps and distributed systems.

About Rootconf 2019:

The seventh edition of Rootconf is a two-track conference with:

  1. Security talks and tutorials in audi 1 and 2 on 21 June.
  2. Talks on DevOps, distributed systems and SRE in audi 1 and audi 2 on 22 June.

Topics and schedule:

View full schedule here: https://hasgeek.com/rootconf/2019/schedule

Rootconf 2019 includes talks and Birds of Feather (BOF) sessions on:

  1. OSINT and its applications
  2. Key management, encryption and its costs
  3. Running a bug bounty programme in your organization
  4. PolarDB architecture as Cloud Native Architecture, developed by Alibaba Cloud
  5. Vitess
  6. SRE and running distributed teams
  7. Routing security
  8. Log analytics
  9. Enabling SRE via automated feedback loops
  10. TOR for DevOps

Who should attend Rootconf?

  1. DevOps programmers
  2. DevOps leads
  3. Systems engineers
  4. Infrastructure security professionals and experts
  5. DevSecOps teams
  6. Cloud service providers
  7. Companies with heavy cloud usage
  8. Providers of the pieces on which an organization’s IT infrastructure runs – monitoring, log management, alerting, etc
  9. Organizations dealing with large network systems where data must be protected
  10. VPs of engineering
  11. Engineering managers looking to optimize infrastructure and teams

For information about Rootconf and bulk ticket purchases, contact info@hasgeek.com or call 7676332020. Only community sponsorships available.

Rootconf 2019 sponsors:

Platinum Sponsor

CRED

Gold Sponsors

Atlassian Endurance Trusting Social

Silver Sponsors

Digital Ocean GO-JEK Paytm

Bronze Sponsors

MySQL sumo logic upcloud
platform sh nilenso CloudSEK

Exhibition Sponsor

FreeBSD Foundation

Community Sponsors

Ansible PlanetScale

Hosted by

Rootconf is a forum for discussions about DevOps, infrastructure management, IT operations, systems engineering, SRE and security (from infrastructure defence perspective). more
Anant Shrivastava

Anant Shrivastava

@anantshri

Bug Bounties for organizations

Submitted Jun 11, 2019

This BOF session will be in continuation of the talk by Shadab. The main agenda behind the session is to bring out a discussion and help organizations get started with the bug bounties. Bug bounties in short are the easiest way to leverage the information security community and individuals in general to help shore up an organizations defences.

Who should attend

We expect the session to be useful for any organization or individual planning to run bug bounty programs, or already doing it and looking to see how others are doing it.

Key Takeaways

  1. Should you setup your own or go for crowd sourced platform ( pointers on when to choose what)
  2. what problems/struggles exist(technically/logistically) if you want to start your own especially in India
  3. points to take care while planning / launching and running a bug bounty
  4. how does leadership understand BB and what are ways to have their buy in and what’s their expectation and fear from it

Outline

This session will be run in an unorganized manner however some key points of discussion we think would be useful are:

  1. Should an organization be getting into bug bounty. if yes when do you know you are ready
  2. How to convince the management about launching bug bounties
  3. What would be a better choice going independent or joing a platform
  4. How do you decide payouts (money, swag, wall of fame)
  5. Real life challenges faced while running bug bounty programs
  6. How to handle bug triaging
  7. How to handle respectful communications and enforce rules

The discussion will revolve around bug bounties however we will not be covering bug hunting as part of this discussion.

Requirements

As this is discussion session we expect people to bring out the questions that matters to them. Experiances or hurdles faced during the discussion, pre launch or after launch. Bring out the pain points and we can try to brain storm on those together as a collective. The only limitation would be in going too specific as all organizations are unique with own workflows we will try to keep discussions to pointers and suggestions on a broader level.

Speaker bio

Shadab Siddiqui, Ankur Bhargava, Shubham Mittal, Anant Shrivastava will participate in this session

Comments

{{ gettext('Login to leave a comment') }}

{{ gettext('Post a comment…') }}
{{ gettext('New comment') }}
{{ formTitle }}

{{ errorMsg }}

{{ gettext('No comments posted yet') }}

Hosted by

Rootconf is a forum for discussions about DevOps, infrastructure management, IT operations, systems engineering, SRE and security (from infrastructure defence perspective). more