Download PDF version Contact company
Related Links

HackerOne, the pioneer in human-powered security, announced Essential VDP — a free, entry-level tier of HackerOne Response, its Vulnerability Disclosure Program (VDP) product.

Any organisation can now establish a VDP with HackerOne to help address compliance requirements and maintain a direct channel for the global researcher community to report high-impact vulnerabilities.

Regulatory requirements

Adopting a vulnerability disclosure program ensures that an organisation is prepared to handle security vulnerabilities effectively,” said Jason DeBord, CISO, Ohio Secretary of State. “Our VDP gives us a communication channel with security researchers so they can report vulnerabilities before bad actors find them.”

A growing list of standards and regulatory requirements from governments recognise VDPs as essential security best practices, including NIST 800-53, ISO 27001, and the Product Security and Telecommunications Infrastructure Act (PSTI).

Cybersecurity risk

Thousands of pioneering organisations have already adopted, and continue to adopt, VDPs because they work. They are a proven and fundamental best practice that reduces cybersecurity risk,” said Ilona Cohen, Chief Legal and Policy Officer at HackerOne.

Improving access to VDPs will make it easier for individual organisations to meet compliance standards and collectively improve the safety of the internet for everyone.”

VDP on HackerOne’s platform

Essential VDP gives organisations new to vulnerability disclosure free access to set up a VDP on HackerOne’s platform with the tools to:

  • Launch quickly through a guided onboarding experience, which includes training, product documentation, templated disclosure guideline support, and integration with a HackerOne inbox for easier vulnerability tracking and remediation.
  • Access industry-pioneering policy guidance and best practices informed by the thousands of programs on the HackerOne Platform.
  • Address compliance requirements with in-platform attestation reports as proof that you maintain a VDP for common frameworks and mandates.

HackerOne Essential VDP

We found that handling reports via email was becoming difficult to manage,” said Arthur Weibe, Site Reliability Engineer, ADAMnetworks. “HackerOne Essential VDP resolves this issue by providing a structured way to track all reports from triage to resolution. We get better reports, and the team has better visibility.”

HackerOne continues to support thousands of programs for pioneering brands, including established VDPs for The Ohio Secretary of State, Department of Defence, John Deere, and Adobe.

Download PDF version Download PDF version

Related videos

DNAKE S-series video door phone

DNAKE S-series video door phone
Install in minutes, no tech required: DNAKE intercom kit IPK04 & IPK05

Install in minutes, no tech required: DNAKE intercom kit IPK04 & IPK05
Case study: Gunes Park Evleri̇, Turkey

Case study: Gunes Park Evleri̇, Turkey

In case you missed it

How does security innovation impact the skillsets operators need?
How does security innovation impact the skillsets operators need?

Technology automates tasks, streamlines processes, and improves efficiency in various fields, including physical security. But the success of today’s latest technologies depe...

How can manufacturers and integrators mitigate the risks of port forwarding?
How can manufacturers and integrators mitigate the risks of port forwarding?

Port forwarding is a networking technique that allows incoming traffic on a specific port number to be redirected to a particular device or application on a local network. Open por...

ASSA ABLOY's mobile unlocking innovation wins award
ASSA ABLOY's mobile unlocking innovation wins award

ASSA ABLOY’s innovative new mobile access solution has won yet another prestigious industry award. At October’s Detektor International Awards, ABLOY CUMULUS received t...

Featured white papers
Palm vein recognition

Palm vein recognition

Download
The key to unlocking K12 school safety grants

The key to unlocking K12 school safety grants

Download
Selecting the right network video recorder (NVR) for any vertical market

Selecting the right network video recorder (NVR) for any vertical market

Download
Physical access control

Physical access control

Download
Cybersecurity for enterprise: The essential guide to protecting your business

Cybersecurity for enterprise: The essential guide to protecting your business

Download
Quick poll
What's the primary benefit of integrating access control with video surveillance?
More corporate news
Genetec Operations Centre revolutionises security operations

Genetec Operations Centre revolutionises security operations
FLIR: 15% discount on high-precision products

FLIR: 15% discount on high-precision products
Genetec's Security Centre 5.12 approved by SIRA Dubai

Genetec's Security Centre 5.12 approved by SIRA Dubai
Featured products
Verkada Command Connector for Camera Integration & Cloud Management

Verkada Command Connector for Camera Integration & Cloud Management
Hikvision’s One-Stop SMB Solutions: Customisable, All-in-One Packages for Installers

Hikvision’s One-Stop SMB Solutions: Customisable, All-in-One Packages for Installers
Hikvision PTZ Cameras Optimised with 7 Advanced Technologies for Superior Surveillance

Hikvision PTZ Cameras Optimised with 7 Advanced Technologies for Superior Surveillance