Subject	Predicate	Object
1tgnRUHb	a	Resource
		Answer
		Written answer
	answer has question	4QCNJ1ln
	answer has answering person	Caroline Fiona Ellen Nokes
	answer text	<p>Having a recognised process around handling vulnerability disclosures is an important part of any organisation’s security maturity. A bug bounty program similar to that rolled out in the US can be part of that process, but initially it is important to develop a mature way of receiving, triaging and remediating those vulnerabilities disclosed to UK Government. NCSC are currently running a private pilot for handling vulnerability disclosure ahead of rolling it out HMG-wide.</p>
	answer given date	2017-10-12
	answer has answering body	Cabinet Office
	written answer has answering body	Cabinet Office
Cabinet Office	answering body has written answer	1tgnRUHb
Cabinet Office	answering body has answer	1tgnRUHb
4QCNJ1ln	question has answer	1tgnRUHb
Caroline Fiona Ellen Nokes	answering person has answer	1tgnRUHb