Vulnerability management and software companies

Our guest for the third edition of the vulnerability series is Application Security Architect Joakim Tauren from the Nordic software company Visma. Visma employs the principle of responsible disclosure and the Bug Bounty programme. These make reporting vulnerabilities easy and confidential. In this article, Tauren talks about Visma’s approach to vulnerabilities and how Visma coordinates them from reporting to updates implemented to repair the fault.