Bug bounty and responsible disclosure programs permit benevolent researchers to discover and report security issues that affect the confidentiality, integrity and availability of client data and company information, and provide an incentive for disclosing these vulnerabilities first.
Originally pioneered by technology giants such as Yahoo!, Google and Microsoft, they are now commonplace at companies such as United Airlines and more, adding value for companies of all sizes and across industries.
Comtech harnesses the collective creativity of thousands of trusted hackers and testing methodologies to robustly test your applications, offering comprehensive real-time reporting of security risks known to the security community and available resolutions. We leverage our platform’s world-wide security community to locate critical vulnerabilities so they can be remedied before criminals can exploit them.
Privately disclosed security vulnerability reports from curious minds around the world are available for consumption as a service, tailored to the technological composition of your applications and infrastructure.
Comtech has the capability to effectively secure potentially sensitive government data that may come into our possession during any government disclosure processes. We follow agency data protection policies and NIST 800-53 Rev 4 security and privacy controls. We effectively secured Controlled Unclassified Information (CUI) for our federal government clients which include GSA and FAA.