DEVOPSdigest

Bugcrowd announced the launch of Bugcrowd Classic Pen Test, the latest product powered by the Bugcrowd platform focused on providing customers with on-demand access to methodology-driven pen testing at a fixed price.

Leveraging Bugcrowd's global network of pen testers, Bugcrowd Classic Pen Test adds to the company's Pen Test Portfolio, helping organizations reduce testing timelines while meeting critical compliance requirements and adhering to security best practices.

Bugcrowd Next Gen Pen Test (NGPT), and now Classic Pen Test, both eliminate these challenges by providing immediate access to an on-demand global network of pay-per-engagement, or pay-per-finding pen testers, thoroughly vetted, intelligently matched, and expertly managed through the Bugcrowd platform. Bugcrowd Classic Pen Test programs can be launched in under 72 hours, and provide Day-1 visibility into incoming vulnerabilities as they are received and validated. To further support rapid remediation, SDLC integrations like JIRA, GitHub, and ServiceNow push prioritized vulnerabilities to the places where development teams work, so they can fix and ship secure products faster. Customers also benefit from always-on platform reporting in addition to a full methodology-based compliance report for ultimate program transparency and real-time visibility.

"Organizations with regulatory and compliance requirements, and dynamic development cycles, need rapid, reliable, and fully-integrated pen testing, whenever, and wherever it best fits their application security lifecycle," said Mark Milani, Global Head of Product and Engineering at Bugcrowd. "Classic Pen Test provides customers predictability within their security budgets and transparency in their security programs. Powered by Bugcrowd's platform, Classic Pen Test offers the same immediate access to the Crowd, same expert triage, management, and SDLC integrations as Bugcrowd NGPT."

Organizations can also choose add-ons like customized executive reporting, rush reporting, retesting, and even pen tester filtering by skill, geography, experience, and more. Other benefits to customers only possible through the Bugcrowd platform include:

- Fewer than 72 hours set up time: CrowdMatch skills-matching technology helps rapidly assemble the perfect team from thousands of available testers.

- Support for high-volume testing: Access to an always available pool of researchers powered by the crowd plus platform automation speeds resourcing and launch. Get fresh eyes on multiple targets at once.

- Real-time results and SDLC integrations: Receive vulnerabilities as they are submitted and validated rather than at the end of the assessment. SDLC integrations help fix fast.

- Methodology-driven and Always-on reports: Satisfy compliance requirements like PCI-DSS with options to expedite or enhance. Added platform views maximize transparency.

- Stackable pay-per-test bundles: Purchase blocks of testing pre- or post-scoping for maximum flexibility.

- Curated packages: Add-ons like retesting, executive reporting, and fast-track testing help create the right test for any engagement.