In this op-ed, a senior security engineer for Shopify discusses what has made the company's bug bounty program so successful. (Hint: it's the not the payouts.)

"The bug was filed on Christmas Eve, and within 12 hours the Shopify team rolled out a fix to address the immediate issue."