Related Links

HackerOne, the pioneer in human-powered security, announced Essential VDP — a free, entry-level tier of HackerOne Response, its Vulnerability Disclosure Program (VDP) product.

Any organisation can now establish a VDP with HackerOne to help address compliance requirements and maintain a direct channel for the global researcher community to report high-impact vulnerabilities.

Regulatory requirements

Adopting a vulnerability disclosure program ensures that an organisation is prepared to handle security vulnerabilities effectively,” said Jason DeBord, CISO, Ohio Secretary of State. “Our VDP gives us a communication channel with security researchers so they can report vulnerabilities before bad actors find them.”

A growing list of standards and regulatory requirements from governments recognise VDPs as essential security best practices, including NIST 800-53, ISO 27001, and the Product Security and Telecommunications Infrastructure Act (PSTI).

Cybersecurity risk

Thousands of pioneering organisations have already adopted, and continue to adopt, VDPs because they work. They are a proven and fundamental best practice that reduces cybersecurity risk,” said Ilona Cohen, Chief Legal and Policy Officer at HackerOne.

Improving access to VDPs will make it easier for individual organisations to meet compliance standards and collectively improve the safety of the internet for everyone.”

VDP on HackerOne’s platform

Essential VDP gives organisations new to vulnerability disclosure free access to set up a VDP on HackerOne’s platform with the tools to:

  • Launch quickly through a guided onboarding experience, which includes training, product documentation, templated disclosure guideline support, and integration with a HackerOne inbox for easier vulnerability tracking and remediation.
  • Access industry-pioneering policy guidance and best practices informed by the thousands of programs on the HackerOne Platform.
  • Address compliance requirements with in-platform attestation reports as proof that you maintain a VDP for common frameworks and mandates.

HackerOne Essential VDP

We found that handling reports via email was becoming difficult to manage,” said Arthur Weibe, Site Reliability Engineer, ADAMnetworks. “HackerOne Essential VDP resolves this issue by providing a structured way to track all reports from triage to resolution. We get better reports, and the team has better visibility.”

HackerOne continues to support thousands of programs for pioneering brands, including established VDPs for The Ohio Secretary of State, Department of Defence, John Deere, and Adobe.

Stay ahead in the era of intelligent security systems powered by Artificial Intelligence with our special e-magazine on AI in security.

Related videos

Insta DomainLink Secret™

Insta DomainLink Secret™
Wan 2.2-S2V demo video: Female singer

Wan 2.2-S2V demo video: Female singer
Dahua MultiVision Online Event - Look Wider, Protect Deeper

Dahua MultiVision Online Event - Look Wider, Protect Deeper

In case you missed it

How can physical security systems make schools safer?
How can physical security systems make schools safer?

Students deserve a safe and positive environment where they can learn and thrive. Teachers and administrators should be able to focus on their primary role of educating students be...

DNAKE smart intercom elevates Dickensa 27 security
DNAKE smart intercom elevates Dickensa 27 security

Dickensa 27, a modern residential complex in Warsaw, Poland, sought to enhance its security, communication, and convenience for residents through advanced intercom solutions. ...

Anviz transforms traditional property management into a smart reality, making digitisation more than just talk
Anviz transforms traditional property management into a smart reality, making digitisation more than just talk

The Middle East has recently expanded its real estate market as the region's economy grows and urbanisation accelerates. This trend has led to an increasing demand for smart securi...

Featured white papers
Artificial Intelligence in Security

Artificial Intelligence in Security

Download
Elevating security through multi-sensing solutions and large-scale AI

Elevating security through multi-sensing solutions and large-scale AI

Download
Open credential standards and the impact on physical access control

Open credential standards and the impact on physical access control

Download
Combining security and networking technologies for a unified solution

Combining security and networking technologies for a unified solution

Download
What is a universal RFID reader?

What is a universal RFID reader?

Download
Quick poll
How likely is it that companies will invest in cloud-based physical security solutions in the next 5 years?
More corporate news
Genetec Operations Centre revolutionises security operations

Genetec Operations Centre revolutionises security operations
FLIR: 15% discount on high-precision products

FLIR: 15% discount on high-precision products
Genetec's Security Centre 5.12 approved by SIRA Dubai

Genetec's Security Centre 5.12 approved by SIRA Dubai
Featured products
Hikvision DeepinViewX-Series bullet cameras with Guanlan AI models

Hikvision DeepinViewX-Series bullet cameras with Guanlan AI models
Dahua 4MP WizColor Vari-focal Bullet WizMind Network Camera

Dahua 4MP WizColor Vari-focal Bullet WizMind Network Camera
Anviz W2 Face Hybrid Biometric Time Attendance & Access Control Terminal

Anviz W2 Face Hybrid Biometric Time Attendance & Access Control Terminal