On Project Zero's 90+30 vulnerability disclosure policy changes
Security Research and Disclosure: The Unauthorized Biography - Nullcon March 2021
NIST: Vulnerability Disclosure as a Requirement for Every Organization
Responsible Disclosure Programs with Katie Moussouris & Casey Ellis | 401 Access Denied Ep. 22
Establishing asset ownership in vulnerability reporting