This program really should have existed 10 years ago. However this should only be considered a bandaid. We must invest in proper IT infrastructure, human capital, and network security. A bug bounty program will help catch a few things that slip through the hole but will not significantly improve our systems. We need an overhaul for better quality in this department. We need massive overhaul and investments in the people that will drive this quality forward from the bottom-up and top-down.