Catawiki found that Bugcrowd stood out as a leader in the crowdsourced and offensive security market. It ultimately chose Bugcrowd because it offers a well-unified bug bounty and pen testing platform—one place to do it all. Catawiki was excited by the prospect of using pen testing results to directly enhance the bug bounty program.

The Minnesota Secretary of State is an executive-branch statewide office serving Minnesotans in the areas of business services, elections and voting, address confidentiality, and other functions of state government.

Tango’s priority was to secure sensitive transaction data for its clients while continuing to innovate. The company is committed to combating threats, bad actors, and security incidents.

Rapyd wanted to step up their security posture by making security testing continuous. They have an interesting use case for crowdsourced security, since their core business is so API-focused.

The public bug bounty program has not replaced any internal or external penetration testing schedules or private bug bounties. BigCommerce launched the new public bug bounty program to help evolve the company’s overall security measures.

More people find jobs on Indeed than anywhere else. Indeed is the #1 job site in the world and allows job seekers to search millions of jobs in more than 60 countries and 28 languages. Over three million employers use Indeed to find and hire new employees. More than 300 million unique visitors each month search for jobs, post resumes, and research companies on Indeed, and Indeed delivers 2.5 times more hires than other branded job sites combined.

TX Group AG is a media company headquartered in Switzerland. Through a portfolio of daily and weekly newspapers, magazines and digital platforms, as well as own printing facilities, it is the largest media group in the country. Since 2000, Tamedia has been listed on the Swiss Stock Exchange.

Amidst increased focus on cybersecurity in Australia, Monash has continued its legacy of leading with technology. It is the first university in Australia to implement a Vulnerability Disclosure Program and Bug Bounty Program, leading the way in higher education cybersecurity.

From self-parking cars to smart personal assistants, AI is changing the way we live. All AI systems rely on data as the lifeblood that enables them to learn, but as it's often of a personal or sensitive nature, this data must be secure.

National Australia Bank (NAB) is a financial services institution. We're here to serve customers well and help our communities prosper. Today, we have more than 32,000 colleagues at NAB, serving over eight million customers at more than 900 locations.

ExpressVPN helps customers stay safe on the internet and keep data shielded from prying eyes by enabling them to browse with a greater degree of anonymity and hide their IP address with best-in-class encryption, unlimited internet access, and ultra-fast VPN servers.

Wise, a global technology company building the best ways to move money worldwide, has adapted its security processes from a once traditional compliance-oriented penetration test to an innovative crowdsourced model.

Cloudinary is a SaaS technology company. The company provides cloud-based image and video management services.

Softdocs develops enterprise content management (ECM), e-forms and process automation solutions exclusively for the higher education and K-12 markets.

ActiveCampaign is a SaaS marketing technology platform that helps businesses meaningfully connect with customers using solutions designed to support the full engagement lifecycle by enabling Sales, Marketing, and Customer Success teams to create personalized workflows and experiences that drive customer adoption and growth.

Code.org is a nonprofit dedicated to expanding access to computer science in schools and increasing participation by women and underrepresented minorities.

SEEK is Australia's number one employment marketplace, bringing together a strong portfolio of online employment, educational, commercial and volunteer businesses.

Schoology brings together the best K-12 learning management system with assessment management to improve student performance, foster collaboration, and personalize learning.

TaxSlayer successfully completed more than 10 million state and federal e-filed tax returns in 2018 and processed $12 billion in refunds. TaxSlayer is highest rated for ease of use, speed of filing, best value and most trusted according to the 2017-18 American Online Tax Satisfaction Survey.

Kenna Security is a leader in vulnerability management, serving many Fortune 100 companies and nearly every major vertical. Being a top vulnerability management platform, the security of its own platform is top of mind to protect threat intelligence and customer’s data.

Outreach is a leading sales engagement platform, that automates and prioritizes customer touch points throughout the customer lifecycle, resulting in increased productivity for revenue teams. At Outreach, users’ security is paramount.

Motorola Mobility is one of the world’s largest consumer electronics and telecommunications companies. It has a robust security program across many departments and applications.

Printers, arguably the most common IoT devices on the market, touch and store some of the most sensitive data and yet these devices are often left out of the organization’s security policy. This is why security is a core pillar of HP’s product strategy.

InVision, the award-winning product design collaboration platform, prioritizes product security with a robust approach to vulnerability management. To stay ahead of malicious attackers, InVision has implemented a suite of industry leading security tools and practices such as web application firewalls, regular vulnerability scans, third-party penetration tests and more.

For a number of years, Atlassian was running its own incentivized vulnerability reporting program. While very successful, the team was finding that it was too hard to manage the sheer number and varying quality of incoming reports.

In early 2017 NETGEAR®, Inc. launched a public bug bounty program with Bugcrowd to help them stay in front of the latest threats and improve the security of the company's products.

Twilio, the cloud communications company out of San Francisco, CA, is an early adopter and innovator in the cybersecurity domain. Although they have consistently prioritized Product Security, they wanted to concentrate their efforts on the areas of greatest risk. To help augment their internal and external testing efforts, they turned to the crowd to start uncovering more vulnerabilities and learn from those findings.

Efficiency and effectiveness of the crowd is really why we bring them on… Because we have the crowd involved in the vulnerability management program, it’s helped in expanding of our team for a fraction of the cost. Now my internal resources are better utilized.

Fitbit is a great example of an IoT company thinking progressively about product security in a time that this is becoming increasingly important. To learn more about many of the initiatives Fitbit is taking in security testing, how they think about product security, and why they utilize Bugcrowd to assist in their security testing, check out our API Security and the IoT podcast.

FCA US has always made the security of their cars a top priority, standardizing and innovating security features since 1924 and, notably, in 1988 being the first automotive company to make airbags standard.

After evaluating their current testing capabilities and organizational goals, Aruba decided to harness the collective power of human intelligence through Bugcrowd’s more focused Ongoing Private Bug Bounty Program.

Instructure, from its inception, has proactively published the results of its annual security survey to add full transparency to its security posture.

For the Barracuda security team, working closer with the security research community was a great way for them to improve their overall security posture while exhibiting thought leadership.

Indeed - "A Bounty of Security" "'Do what’s best for the job seeker.' This has been Indeed’s guiding principle since the beginning.

(ISC)² has run a public bounty offering Kudos points and potential CPE credits for nearly two years.

Starting with a private, invite-only bug bounty program, Western Union and Bugcrowd were able to work together to slowly scale the company's bug bounty program over time. They eventually announced the launch of their public bug bounty program on March 11, 2015, becoming one of the first organizations in the financial sector to do so.