Caitlin Condon
VP of Security Research
VulnCheck
About
Caitlin Condon is the VP of Security Research at VulnCheck, where she leads teams focused on initial access exploit development, coordinated vulnerability disclosure (CVD), and novel research initiatives. Caitlin has more than a decade of experience working with offensive security, engineering, and open-source teams on identifying and responding to emerging threats across organizational and national lines. She also chairs the CVE program’s Researcher Working Group.
Sessions
Same Side, Different Speeds: Rethinking Vulnerability Disclosure in the Age of AI
What you will learn:
Vulnerability discovery and development have progressed remarkably in recent years, aided and abetted by broad adoption of AI. The volume of new vulnerabilities and exploits flooding the technology ecosystem continues to grow, but many of the human-led systems designed to ingest, validate, and standardize those vulnerabilities have stagnated both technically and philosophically. This asymmetry contributes to antagonistic relationships between good-faith security researchers and technology suppliers, exacerbated by misaligned incentives that encourage quantity over quality and rapid discovery over deeper remediative action. This talk will explore steps that software suppliers and vulnerability researchers can take to improve bilateral disclosure experiences and deliver better outcomes in a rapidly changing security world — starting with an acknowledgment that they’re on the same side.