diff --git a/SECURITY.md b/SECURITY.md
new file mode 100644
index 0000000..eaeecea
--- /dev/null
+++ b/SECURITY.md
@@ -0,0 +1,7 @@
+# GitHub Security Policy
+
+Software security researchers are increasingly engaging with Internet companies to hunt down vulnerabilities. Our bounty program gives a tip of the hat to these researchers and provides rewards of $30,000 or more for critical vulnerabilities.
+
+If you’ve found a vulnerability, [submit it here](https://hackerone.com/github).
+
+You can find useful information in our [rules](https://bounty.github.com/#rules), [scope](https://bounty.github.com/#scope), [targets](https://bounty.github.com/#scope) and [FAQ](https://bounty.github.com/#faqs).