Which of the following vulnerability management services, if any, do you use at your organization?

ArchitectureStrategy

HackerOne16%

Bugcrowd41%

Synack13%

Intigriti4%

We're not using a bug bounty platform right now.20%

Other (please comment below!)3%

574 PARTICIPANTS
4.7k viewscircle icon2 Comments
Sort by:
IT Manager in Constructiona year ago

I am aware of HackerOne but also Bugrowd has several interesting features. Where are you starting from?

CIO in Software4 years ago

Microsoft Defender for Endpoint and Other Microsoft Defender Products

Lightbulb on2

Content you might like

Do you have a system to apply patches in a repeatable way?

Yes37%

We're currently developing a system to apply patches.38%

No, but I expect that may change.16%

No, and I don’t expect that to change.7%

Other (please specify in the comments)

View Results

Experts say a new hacking group that has emerged recently named BlackMatter is using techniques that are similar to the DarkSide group that successfully hacked the Colonial Pipeline Co. earlier this year. Do you think they're the same group?

Yes BlackMatter is DarkSide returning under a new name.50%

No, BlackMatter is a different group from DarkSide.32%

I don't know17%

View Results

Our organization is subject to data retention requirements over very long periods (50 years or more). Do your organizations face similar constraints? If so, what long-term retention strategy have you implemented for these regulated data, and what technologies or solutions do you use to ensure their durability and compliance?

How are companies doing Unified Vulnerability Management? The idea is bringing all inputs (AppSec, DevSecOps, vm scanning, asset discovery etc) into one platform.  Instead of creating a homegrown solution, are there vendors that do this well, in your opinion?

Is red teaming a better way to demonstrate security needs to the board than traditional compliance audits?

Read More Comments