Everything You Always Wanted to Know About Drupal Security* (*But Were Afraid to Ask)

What we should do if there is a bug or eventually a security issue that is discovered in an Open Source project?

We'll talk about previous examples from the last years: how Drupal Security Team managed to release security updates.
Why we should update our websites with at least highly critical updates ASAP?
How we should evaluate risk on a Wednesday evening when a contrib gets security updated?

And many other questions related to Drupal Security will be answered by a currently Provisional Member of the Drupal Security Team!