Bug Bounty
Cyber Security Services module in BugBounty platform will allow organizations and business that want to have their network and infrastructure to be tested for vulnerabilities on an on-demand basis. This module is different from both bug bounty and researcher incentive modules. Many organizations release cyber security assessment requirements as RFP (request for proposals) to tender portals or to a select number of identified 3rd party suppliers. Such approaches are outdated specifically in the field of cyber security as we have seen from the many years of experience we have had in delivering these services to organizations.
How It Works
Every organizational risk appetite varies and therefore organizations that may want a system to be tested that support critical business functions may be willing to pay more to find vulnerabilities compared to system that may not be so critical. This unique and novel approach of pay per criticality and pay per vulnerability through bug bounty program is what sets us apart.
Crowdsourcing threat intelligence analysts to provide human-driven threat intelligence services, and work with existing threat intelligence vendors to provide enriched context of threats.
Ability to allow anonymous cyber-whistle blowing services. Every hacking group will have individuals that may be willing to disclose certain information for the great good.
Industry sector leaders can publish requirements for specific threat intelligence campaigns they may be concerned about impacting their industry for research purposes “the threat actors impacting the maritime industry as an example”.
BugBounty Threat Intelligence Module would work with well-known regulatory bodies such as (National and Regional CERT / SIRT teams Industry CERT / SIRT teams such as; ICS-CERT, FIRST Law Enforcement Agencies, Governments, CERTs)