Ethical Hacker Justin Gardner( AKA Rhynorater) how a hacker thinks about your environment, or how a bad actor would ultimately try to break into your business or organisation, you need to leverage the power that exists within the crowd.

The best way to find a security threat is to have somebody ultimately come in and manually look for one. And that’ s really what separates our platform from a traditional vuln management platform, and there’ s plenty of those on the market, and again, they play an important role, but we believe that we’ re fundamentally different in the results and outcomes we help drive for our customers.

Justin Gardner AKA Rhynorater, Ethical Hacker

What initially attracted you to Bugcrowd’ s platform over other options?

Bugcrowd is one of the best bug bounty platforms out there because of its top-notch programs and its commitment to high-quality triage services. You can see from the way that each ticket is dealt with that the team truly cares about the hackers that power The Crowd.

What differentiates Bugcrowd’ s approach from a hacker’ s perspective – especially around communication, payouts and professionalism?

Bugcrowd has excellent communication with hackers, both on their reports and out of band. They do a great job engaging with the community and are always available if an issue pops up in a bug bounty report. The payout process with Bugcrowd is always quick and painless, and Bugcrowd’ s programs boast some of the highest bounties available. Bugcrowd staff are always professional and does a great job standing up for the hacker in even the most difficult of circumstances.

Dave Gerry, CEO, Bugcrowd

How is Bugcrowd using AI to enhance its platform’ s accuracy and scalability?

AI has hit every part of our business. For a long time, we’ ve been leveraging Machine Learning to match exactly the right hacker at exactly the right time with the right customer problem through our CrowdMatch technology. And since then, we’ ve baked this into everything from sales and go-to-market. Sales reps are using it for automated messaging and emails and helping them scale and do what they do every day.

Our development teams are leveraging AI to become more productive and efficient. We’ re leveraging AI for customers with some of the offerings that I talked about earlier. But we are also helping to start thinking about, how does AI help vulnerability verification and some of the triage work that we do to help customers get visibility into vulnerabilities as quickly as possible

One of the challenges in our space is that when somebody – a hacker on our platform for instance – identifies a vulnerability, you need to make sure that gets back to the customer as quickly as possible so they can remediate it and / or, at least in the interim, mitigate the threat that comes with that vulnerability.

The faster we can triage and verify whether it’ s a real vulnerability, understand how critical it is, and determine how the customer should think about fixing it in their environment, the better.

So we’ re starting to look at how we can leverage AI to do some of that work faster and to enable and empower our manual team of triagers – the humans – to focus on the most critical vulnerabilities, while allowing AI to filter out some of that noise.

With AI-driven cyberthreats accelerating, how is Bugcrowd helping organisations respond faster and smarter?

What’ s really interesting in the market today is that threat actors are increasingly more sophisticated.

52 WWW. INTELLIGENTCISO. COM