Bugcrowd Establishes Standard for Crowdsourced Security Workflow Management
August 06, 2019

Bugcrowd announced several updates to its Crowdcontrol platform to provide organizations with actionable security intelligence and deliver true ROI.

Security teams are strapped. Bugcrowd’s intelligent SaaS platform makes it easier for companies to find and fix faster.

- Work Queue functionality automatically organizes tasks due for completion according to priority and action type. Simplified work orchestration allows for quicker processing of valid vulnerabilities and rapid payouts to researchers for busy customers.

- New Self-Serve option enables easy program setup based on default best practices identified through thousands of Bugcrowd managed programs. Customers can sign up, outline targets, and select any desired skills from the Crowd directly through a user-friendly UI, enabling rapid ramp-up for any new Vulnerability Disclosure or Bug Bounty On-Demand Program.

- Introducing the industry’s only platform-enabled, premium service-level agreements (SLAs), Priority Triage and P1 24/7. Customers can opt-in to receive rapid, prioritized responses for all vulnerabilities regardless of severity or day, so they can focus on remediation.

In addition to enhanced workflow automation across programs, Bugcrowd’s Crowdcontrol platform updates also include new dashboards for advanced reporting and industry benchmarking. Through more dynamic, customized reporting, customers can monitor researcher engagement and program health against industry benchmarks including response time, payouts, and vulnerability processing. New activity tracking also enables customers to better monitor researcher engagement for full program visibility.

Bugcrowd is built for any compliance directive with its customizable reports and methodologies. Bugcrowd upholds the most rigorous standards of security for customers and researchers, achieving both SOC 2 Type 2 compliance and ISO 270001 certification.

The latest updates to Bugcrowd’s CrowdMatch technology make it even easier for organizations to connect with researchers that best suit their evolving security testing needs. Researchers will now be able to upload credential certificates such as those from AWS and Microsoft, and other relevant experience, for more robust profiles. Enriched skills profiles allow Bugcrowd to automatically identify, match, and verify the right resources for every program, regardless of size or scope.

“Bugcrowd is the only true SaaS platform built for crowdsourced security,” said Mark Milani, Global Head of Product and Engineering, Bugcrowd. “By providing any skill for any project, we’re changing the way organizations think about security at scale. Now thanks to enhanced workflow automation and advanced reporting, security teams can find and fix faster, and rapidly demonstrate true security ROI.”

More leading companies around the world, including Atlassian, Fitbit, HP, Indeed, Mastercard, Motorola, Jet.com, Square, Twilio, and more trust Bugcrowd for crowdsourced security.

Share this

Industry News

December 05, 2019

Parasoft announced the newest release of Parasoft C/C++test, the unified C and C++ development testing solution for enterprise and embedded applications.

December 05, 2019

Datadog announced Security Monitoring, a new product that enables real-time threat detection across the entire stack and deeper collaboration between security, developers, and operations teams.

December 05, 2019

Pulumi announced the availability of Pulumi Crosswalk for Kubernetes, an open source collection of frameworks, tools and user guides that help developers and operators work better together delivering production workloads using Kubernetes.

December 04, 2019

CloudBees announced a Preview Program for CloudBees CI/CD powered by Jenkins X, a Software as a Service (SaaS) continuous integration and continuous delivery solution running on Google Cloud Platform.

December 04, 2019

Rancher Labs announced the general availability of K3s, their lightweight, certified Kubernetes distribution purpose built for small footprint workloads, along with the beta release of Rio, their new application deployment engine for Kubernetes that delivers a fully integrated deployment experience from operations to pipeline.

December 04, 2019

WhiteSource announced a new integration with Codefresh, the Kubernetes-native CI/CD solution.

December 03, 2019

Styra is addressing one of the most significant enterprise blockers of Kubernetes: compliance. With Styra, enterprises can move Kubernetes clusters into production en masse while complying with traditional governance, audit, and compliance rules and regulations.

December 03, 2019

Nureva added 13 agile-themed templates to Span Workspace, Nureva’s expansive cloud-based digital canvas for visual planning and team collaboration.

December 03, 2019

Threat Stack announced support for AWS Fargate in the Threat Stack Cloud Security Platform.

December 02, 2019

Tricentis announced the publication of Enterprise Continuous Testing: Transforming Testing for Agile and DevOps, written by Tricentis Founder Wolfgang Platz and Cynthia Dunlop.

December 02, 2019

JFrog announced the availability of the popular JFrog Platform subscription package Cloud Pro X on AWS Marketplace.

December 02, 2019

MuleSoft will extend its Anypoint Runtime Fabric to run on Google Cloud.

November 26, 2019

NeuVector announced the immediate availability of its “Security Policy as Code” capability for Kubernetes services.

November 26, 2019

Agile Stacks announced the launch of KubeFlex, a new cloud-native software platform enabling zero-touch Kubernetes deployments in data centers and at the edge.

November 26, 2019

Bacula Systems announced significant enhancements to its backup module for Kubernetes clusters.