Bug bounty programs may capture the majority of headlines in hacker-powered security today, but organizations must first open a channel for ethical hackers to alert them to potential vulnerabilities. It’s called a vulnerability disclosure policy (VDP), and it’s promoted extensively by voices as diverse as the U.S. Department of Justice to the European Commission to General Motors.

Download the guide to learn about what is a vulnerability disclosure policy, how can you launch your own and why organizations so adamant about VDPs.