57 Bugcrowd Testimonials

"Bugcrowd does a wonderful job weeding out the noise so we can get to the real issues."

"An underrated benefit of Bugcrowd is the service their Application Security Engineers provide in triaging incoming reports. They free up our Security Engineering Team to focus attention on building security in by design and addressing issues directly with dev teams."

"By adding a managed bug bounty program through Bugcrowd, we are adding one more layer to our security program."

“The cybersecurity landscape is an ever evolving one, so we knew we had to do something different, something innovative with this year’s audit, and that is what Bugcrowd offered us.”

“It’s huge to be able to directly push vulnerabilities into our Jira queue. We don’t have to treat it any differently, depending on what part of our application is affected, a ticket is created and tasked to the team responsible for building it.”

"Bugcrowd’s team triages and reviews reported issues before they reach our internal teams, reducing our triage workload by at least 60%."

“Bugcrowd’s Vulnerability Disclosure Program is one of the best value-for-money services that we have. The annual cost of the program is the same cost of one traditional penetration test and the VDP has given us around a 100-fold increase in actionable intelligence.”

"When protecting against 21st century threats, you need a 21st century solution."

"The cybersecurity landscape constantly evolves, demanding fresh approaches to identifying and addressing unique vulnerabilities. This bug bounty program allows BigCommerce to expand diversity beyond our global workforce. By partnering with external researchers who have different backgrounds and experiences, we are confident that we can mature our company’s security practices and better protect our employees and customers."

“We decided to run a bug bounty program in order to get access to a wide variety of security testers. Hiring security researchers is very difficult in today’s market, and even if you can find one, chances are good that person will be a specialist in only one or two areas.”

“We want to be transparent with existing and potential customers with the lengths we go to in order to protect their privacy and security and are excited to tap on the expertise of thousands of Bugcrowd researchers.”

“In the tax preparation software industry, we deal with highly sensitive data for a large number of individuals. You can pretty much learn anything you want to know about an individual from their tax return. And because of that, we need to make sure the data stays completely secure, which starts with making sure the applications we’re developing are secure as well.”

“Bugcrowd identified solutions and workflows that fit nicely into our company and current process.”

“It’s a win-win situation—either the Crowd finds something we didn’t see, in which case we can fix it. Or they don’t find anything, which validates our efforts.”

"Bugcrowd hit the ground running and partnered with us throughout the process. We saw the first batch of vulnerabilities just a week after finalizing our approach."