Northern.tech makes solutions for updating, managing and automating IoT devices, datacenter servers, and everything in between. In this workshop we'll focus on how we improve the security of our software products. We'll take a look at the HackerOne bug bounty program we've been running for the last year, pentests performed by third party security consultants, use of tools and scanners, as well as general processes and approaches for creating and maintaining secure software.

After the presentation, there will be a capture-the-flag (CTF) style competition where teams compete to find the most flags and get the most points within a couple of hours. The challenges range from simple multiple choice questions, to more advanced programming and security related technical tasks.

This workshop is intended for students in their 3rd year or later, in programming, information security, or similar programs. Decent programming experience is expected.

We will meet in the foyer at IFI at 16:15, and then go to Forskningsparken togheter.