Webinar
How the Crowd Outperforms Traditional Security Testing
State of the art security programs have been turning to bug bounties to leverage a vast array of skill-sets and knowledge for years. Organizations like Google, Facebook and Mozilla utilize crowdsourced security testing with great results, and now smaller companies are following suit, oftentimes using intermediaries like Bugcrowd to manage their own programs.
State of the art security programs have been turning to bug bounties to leverage a vast array of skill-sets and knowledge for years. Organizations like Google, Facebook and Mozilla utilize crowdsourced security testing with great results, and now smaller companies are following suit, oftentimes using intermediaries like Bugcrowd to manage their own programs.
In this thirty minute webinar, you’ll learn why these programs work, when to deploy them, and how you can bring these new application security testing capabilities into your own organization. The speaker will analyze data comparing traditional security testing methods with crowdsourced initiatives, discuss real world examples from bug bounty programs and focus on cases where business logic flaws and high priority vulnerabilities were found, and why existing tests missed them.
Key takeaways:
-
Testing methods deployed by our crowd that help them find bugs the scanners miss
-
Examples of the high quality of bugs our crowd is finding, including P1's
-
Trends - which vulnerability types are found most often and why
-
What the ROI looks like with the pay for performance model
-
How crowdsourced security testing merges into the SDLC