NAB crowdsources cyber security with bug bounty program

By on
NAB crowdsources cyber security with bug bounty program

Partners with Bugcrowd.

The National Australia Bank on Friday launched a bug bounty program in partnership with crowdsourced cyber security platform Bugcrowd to strengthen its cyber posture.

Vetted security researchers with an ‘Elite Trust Score’ on Bugcrowd will be able to work in live environments to help test the bank’s security.

NAB is the first of the ‘Big Four’ banks to include a bug bounty program in its security strategy as part of a proactive response to an era of ‘hyperconnectivity’ where new threats are constantly emerging, NAB executive enterprise security Nick Mckenzie said.

He said the controlled crowdsourcing methods would bring new perspectives to the bank’s cyber practice and rewards security researchers who uncover previously undisclosed vulnerabilities at the bank.

“Controlled, crowdsourced cyber security brings together uniquely skilled testers and security researchers with fresh perspectives to uncover vulnerabilities in our defences that traditional assessment might have missed,” McKenzie said in a statement.

“Diversity is a critical yet often overlooked factor in security and controls strategies.

“Moving to a ‘paid bounty’ gives us the ability to attract a wider pool of ethically-trained security researchers from across the globe,” he said.

Bugcrowd CEO Ashish Gupta said the partnership with NAB would help improve on its existing security strategy.

“In addition to being one of the first in Australian banking to use the power of a crowdsourced security model, NAB has deployed an impressive layered security approach that is now complemented by Bugcrowd’s crowd of security researchers and platform which assists in finding security vulnerabilities faster and gather actionable insights to increase their resistance to cyber attacks,” Gupta said.

Researchers working in NAB’s live environments won’t have access to any customer data, the bank said, and activities will not impact customers’ banking experience.

Other financial institutions to run bug bounty programs with Bugcrowd include Mastercard and Jack Dorsey’s payments processing provider Square.

Got a news tip for our journalists? Share it with us anonymously here.
Copyright © iTnews.com.au . All rights reserved.
Tags:
bug bountybugcrowdcrowdsourcecybercyber securityfinancefinanceitnabsecuritystrategy

Sponsored Whitepapers

Free eBook: Digital Transformation 101 – for banks
Free eBook: Digital Transformation 101 – for banks
Why financial services need to tackle their Middle Office
Why financial services need to tackle their Middle Office
Learn: The latest way to transfer files between customers
Learn: The latest way to transfer files between customers
Extracting the value of data using Unified Observability
Extracting the value of data using Unified Observability
Planning before the breach: You can’t protect what you can’t see
Planning before the breach: You can’t protect what you can’t see

Events

Most Read Articles

Services Australia sets changeover date for myGov

Services Australia sets changeover date for myGov
Google Cloud IoT Core goes on the end-of-life list

Google Cloud IoT Core goes on the end-of-life list
NBN Co proposes to axe CVC across all plans by mid-2026

NBN Co proposes to axe CVC across all plans by mid-2026
Wesfarmers to stand up offensive cyber security capabilities

Wesfarmers to stand up offensive cyber security capabilities

Digital Nation

Save the Date — Digital Nation Live launches on October 25
Save the Date — Digital Nation Live launches on October 25
Crypto losses to crime surge to $1.9 B in first half of 2022: Chainalysis
Crypto losses to crime surge to $1.9 B in first half of 2022: Chainalysis
Stakes are higher for cybersecurity in Web3: Gal Tal-Hochberg, CTO at Team8
Stakes are higher for cybersecurity in Web3: Gal Tal-Hochberg, CTO at Team8
Edge and IoT critical to Web3 infrastructure
Edge and IoT critical to Web3 infrastructure
CommBank’s mobile banking app beats ANZ, NAB, Suncorp and Westpac: Forrester
CommBank’s mobile banking app beats ANZ, NAB, Suncorp and Westpac: Forrester

Log In

  |  Forgot your password?