Call for Papers & Call for Volunteers / VulnCon 2025

Call for Papers & Call for Volunteers

Overview

Please join us for the 2025 Vulnerability Management Ecosystem Collaboration, Ideation, and Action Conference (aka “VulnCon”) Co-Hosted by FIRST and the CVE Program. The conference will take place April 7th through 10, 2025. The location for the event will again be the University of North Carolina, McKimmon Center.

The purpose of the conference is to collaborate with various vulnerability management and cybersecurity professionals to develop forward leaning ideas that can be taken back to individual programs for action to benefit the vulnerability management ecosystem. A key goal of the conference is to understand what important stakeholders and programs are doing within the vulnerability management ecosystem and best determine how to benefit the ecosystem broadly.

Call for Papers

We are seeking session talks and training/workshops on the following topics:

Vulnerability Metadata - including sessions focused on CVE, CVSS, CWE, CSAF, EPSS, SSVC, VEX, EoX, and others, including Working Group, SIG, and other foundation read-report-outs
Managing Risk - including sessions on articulating and framing risk for stakeholders in the vulnerability ecosystem
Vulnerability Management’s Intersection with Global Public Policy & Regulation - What are current and emerging trends in the global regulatory space
PSIRT Service Framework - Introductory, intermediate, and advanced topics for product security teams and defenders
“State of…” Operations, Tooling, and the craft of product security, incident response, and ecosystem vulnerability management
Coordinated Vulnerability Disclosure - practices and challenges in sharing and reporting security vulnerabilities and exploits

VulnCon 2025 will have nearly 150 open speaking and/or training sessions available, so please consider submitting a session or education training to share with the ecosystem.

CFP Timeline

Call for Papers Closes: January 15, 2025
Acceptance Notifications: Notification waves to being February 14, 2025
Acceptance Due Date: February 28, 2025
Final Presentations Due: April 2, 2025

Speaker Privileges

To help keep registration fees reasonable for all, we do not offer special discounts for speakers or workshop presenters. There is no accommodation or travel support provided.

Submission Process

All proposals should be submitted via EasyChair using the link below. If you are new to EasyChair, a registration will be required before accessing the submission form. Please give yourself a mininum of 5-10 minutes to complete your submission. You are welcome to submit multiple proposals.

EasyChair Submission Form

If you have questions or need assistance with EasyChair, please email events@first.org.

Call for Volunteers

We are seeking motivated community members to join us and help us deliver this one-of-a-kind industry event. We are looking for volunteers for the following program committees:

Onsite & Virtual Experience Volunteers - Individuals that can help with on-site room and speaker logistics at the McKimmon Center as well as individuals interested in assisting our online attendees by assisting in our virtual chat rooms. Students are welcome to participate!
Marketing & Outreach Volunteers - Individuals that can assist in evangelizing and communicating the event both before, during, and after the conference.
Paper Review Volunteers - we’re seeking vulnerability ecosystem experts to assist us reviewing the expected over 300 talk submissions to help us curate the most amazing content for the event.
Networking & Fun Activities Planning Volunteers - A cornerstone of the value of these events is the networking and collaboration opportunities it provides. Help us craft unique, interesting, and engaging activities for our attendees.

If you are interested in joining us in helping deliver an amazing conference, please fill out the interest form at the link below.