Don't do flashy things first. Build a security process, THEN do a bug bounty." #AppSecUSA @mrzarquon @nullfinch @BillWeiss

 — @carolinewmwong