HackerOne, Synack win DOD contracts to expand bug bounty program
October 20, 2016
The Department of Defense has awarded two contracts to expand its bug bounty program across a variety of its digital assets.
David Stegon was a staff reporter for FedScoop and StateScoop from 2011-2014.
The Defense Information Systems Agency is taking a “build fast and build big” approach to mobility with a subscription-based mobile environment expected to be up and running by fiscal year 2014, DISA Director Lt. Gen. Ronnie Hawkins said.
Speaking Friday at AFCEA DC’s Mobile Technologies Symposium at the Capital Hilton, Hawkins said the agency will take a spiraled approach to creating and getting users on the mobile environment over the coming year and a half with senior leaders already using secure mobile applications on devices in the first spiral of the project.
“We know that in order for this to work, we have to eat our own dog food, so to speak,” said Hawkins, during his opening keynote before more than 400 government and industry leaders in attendance. “We have slowly begun using mobile and will significantly increase our usage over the coming months."
For unclassified environments, Hawkins laid out the following adoption schedule:
Hawkins said the agency is working on a security requirements guide that will soon be available. The agency also has a number of requests for information on the street regarding the building of this mobile environment that DISA strongly encourages industry to give feedback on. He said there will also be a number of RFIs coming out in the near future along the same lines.
“We don’t suggest that we have all the talent at DISA,” Hawkins said. “I know we have our share, but industry has it as well, and we need your input.”
What Hawkins said the agency is looking for specifically from industry is security solutions, enterprise based cost models, develop and enable secure mobile applications for service members both in the field and in their home.