About Us

From the outback to the valley, Bugcrowd is paving the way for crowdsourced security. Founded in 2012 in Australia by Casey Ellis, Bugcrowd is now based in San Francisco and is backed by Costanoa Venture Capital, Rally Ventures, Paladin Capital Group and Blackbird Ventures.

32,000+ security researchers have found over 65,000+ vulnerabilities for over 250 companies.

We Know What it’s Like

With extensive backgrounds in Information Security, we know what it’s like to be outnumbered by the bad guys. We created Bugcrowd to even those odds. Our reach is far, but our focus comes back to three things...

Bridge the gap between skilled security researchers and customers in need of effective and efficient security testing.

Be fast, effective, and fair to researchers and customers when processing submissions.

Provide crowdsourced security solutions to meet the needs of any sized company from any industry.

An Experienced Leadership Team

We take pride in the people we surround ourselves with - these are just a few of the people that fuel that pride.

  • Casey Ellis

    Casey Ellis

    Founder and CEO

    Casey Ellis

    Founder and CEO

    Casey has spent 12 years in information security, servicing clients ranging from startups to multinational corporations as a security and risk consultant and solutions architect. He's a career infosec guy turned career entrepreneur. Casey is "the guy who had the crazy idea" which became Bugcrowd. He is happy as long as he's got a problem to solve, an opportunity to develop, and a kick ass group of people to bring along for the ride.

  • Jonathan Cran

    Jonathan Cran

    VP of Operations

    Jonathan Cran

    VP of Operations

    With over 10 years of experience in security, Jonathan began his career in security assessment working as a penetration tester for Rapid7. From there, he joined the Metasploit development team, building a commercial version of the application aptly named Metasploit Pro. For security startup Pwnie Express, Cran served as architecture lead and CTO. Jonathan continues his pursuits to better the state of security assessment as Bugcrowd’s VP of Operations.

  • Brooke Motta

    Brooke Motta

    VP of Sales

    Brooke Motta

    VP of Sales

    Brooke is an accomplished executive with 14 years of expertise in start-ups, global sales, inside and outside sales management, and recruiting. Her experience includes Frontline Selling, Rapid7 and ThousandEyes. She is from Boston and now lives with her husband and two kids in San Francisco.

  • Chris Tilton

    Chris Tilton

    VP of Marketing

    Chris Tilton

    VP of Marketing

    Chris is a senior marketing leader with 17 years of enterprise security marketing experience. Over the course of his career he has managed almost every aspect of marketing function within both start-ups and established organizations. With a proven track record of implementing integrated go-to-market programs that drive revenue, deliver awareness and support sales goals at companies such as HP, Whitehat Security, Veracode and SPI Dynamics.

Our Investors

The folks who are supporting and promoting a safer Internet.

  • Costanoa Venture Capital

    Costanoa Venture Capital is an early stage investor focused on cloud-based services solving real problems for businesses and consumers by leveraging data and analytics. Costanoa provides early stage entrepreneurs with a combination of "right-sized" amounts of capital and value-added support from a high-quality institutional partner. 

  • Rally Ventures

    Rally Ventures partner with entrepreneurs focused on early-stage enterprise technology opportunities. They invest in high growth enterprise technology companies primarily at the Seed or Series A stage of financing with initial investments ranging from $100,000 to $4 million.  

  • Blackbird Ventures

    Blackbird Ventures is a venture capital firm that invests in inherently global Internet businesses formed by Australians. Blackbird Ventures itself is a collection of Australia's most successful startup founders and Silicon Valley's top investors who want to help you succeed on a global stage. 

  • Paladin Capital Group

    Paladin Capital Group is a leading multi-stage private equity firm that provides funding to growing companies. Across the globe, from Silicon Valley to Brazil, Paladin invests in best-of-breed companies with technologies, products, and services that meet the challenging demands of commercial, federal, and international customers.

  • Industry Ventures

    Industry Ventures is a leading investment firm that focuses on venture capital. The firm is the largest dedicated liquidity provider in the market for private shares and limited partnership interests. In addition, the firm invests in leading early stage venture capital funds and co-invests into their high growth portfolio companies.

  • Salesforce Ventures

    Salesforce Ventures—Salesforce’s corporate investment group—invests in the next generation of enterprise technology to help companies connect with their customers in entirely new ways. Portfolio companies receive funding as well as access to the world’s largest cloud ecosystem and the guidance of Salesforce’s innovators and executives. With Salesforce Ventures, portfolio companies can also leverage Salesforce's expertise in corporate philanthropy by joining Pledge 1% to make giving back part of their business model. Salesforce has invested in more than 150 enterprise cloud startups since 2009.


Board & Advisors

A big part of being Bugcrowd is about being involved in the security community. These industry leaders are helping us make this community a better place.

  • Nick Ellsmore

    Director, Delling Advisory

    Nick Ellsmore, Director of Delling Advisory, has a proven track record of successful business strategy development and execution in the information security industry. His previous companies, SIFT and Stratsec, received awards including the national “Business of the Year” in the Telstra Business Awards 2010, and “Employer of the Year” at the AISA Awards 2012.

  • Trey Ford

    Former Global Security Strategist at Rapid7

    Trey serves as the liaison between Rapid7 and the security research community and also works to educate the public on cybersecurity issues. Rapid7 is a leading security vulnerability solution provider and one of the fastest growing security companies in the world.

  • Don Listwin

    Venture Partner, Rally Ventures

    Don Listwin is a successful technology executive and board member operating in Silicon Valley for the past 30 years. Don was at Cisco Systems for the “right ten year\"s from 1990-2000 exiting as an EVP in the C-suite. Listwin then served as the CEO of Openwave, where he orchestrated a turn-around to rationalize several acquisitions and grew the Company from $250 million to $400 million and profitability.


  • Jeremiah Grossman

    Founder of WhiteHat Security

     Jeremiah possesses a unique combination of technology savvy, customer advocacy and personal passion for application security. A world-renowned web security expert, sought-after speaker and influential blogger, Jeremiah brings a literal lifetime of information security experience, both homegrown and from his days as Yahoo!’s information security engineer, to the role. The ultimate “WhiteHat,” Jeremiah is also founder of the Web Application Security Consortium. 

  • Art Coviello

    Former President of RSA Security

    The depth and breadth of Coviello's expertise and influence has made him a recognized leader in the security industry. Between joining RSA Security in 1995, and his retirement, Mr. Coviello was a driving force in the rapid financial growth of the company, as well as strengthening it's position in the e-security market through many strategic acquisitions and partnerships. Mr. Coviello is now a Venture Partner at Rally Ventures where he works with the Rally team to help source and evaluate investment opportunities with a focus on enterprise security companies.

  • Chris Raethke

    Co-Founder and Advisor

    Chris specializes in the design of systems that bridge security and development practices to enable companies to be more secure and build better software. He has over 17 years of experience across a broad range of software development areas, from cutting code to running projects. Closing the gap between security and development teams is his pet love and he regularly speaks at events on both security and development practices and projects.