Public Safety committee  I would like to point out that in recent years the behaviour of consumers has changed radically. Up until five years ago, our data used to be at large organizations who would have large teams who would help us consumers protect against data breaches and protect our privacy. I thi

Public Safety committee  There's a process called vulnerability coordination, where you would work together with the vendors themselves to coordinate that vulnerability, to disclose it to other organizations using the same vulnerability.

Public Safety committee  There has yet to be a government that is immune to cybersecurity threats. The U.S. has some of the most developed cyber-practices in the world, as does Canada, as Mr. Waterhouse pointed out. It is also home to the companies with the most mature security practices in the world. Ev

Public Safety committee  Good hackers come across new technology every day. They will have to familiarize themselves with new technology to be able to find security vulnerabilities in it or in the components that are built on top of technologies like 5G. With our diverse customer base, there are a lot of

Public Safety committee  All the hackers who have participated in the DOD-related programs were hand-selected by the DOD and HackerOne because of our expertise and track record. We complement what our customers and government are already doing. We have a proven track record in hacker-powered security, an

Public Safety committee  Yes, I'd be happy to take that. The U.S. government has spent a lot of money and time in securing its own systems. Our data shows that after it established a transparent process to work with the hacker community, over 5,000 security vulnerabilities were identified, for which hun

Public Safety committee  It is an ethical dilemma that I think is very important to cover. The problem that we've seen so far is with governments buying zero-day vulnerabilities, meaning vulnerabilities that are not known to the vendor who is there to patch them. These are currently being used in warfare

Public Safety committee  At the end of the day, a mature security organization is an organization in which every risk or vulnerability that is uncovered, regardless of its source, should be given the investment that would be needed protect the organization from the reported threat. We've seen many orga

Public Safety committee  One of the problems we've seen, especially with some of the more recent data breaches, is that centralization of data is becoming a problem. It makes it easier for the organization to protect itself against certain risks because it is only one component that they have to defend.

Public Safety committee  Artificial intelligence, in my opinion, is a very important technology that we should leverage as much as possible. At the end of the day, we believe that where people work, people will make mistakes. Artificial intelligence is not going to help protect us against these threats.

Public Safety committee  We believe that hacker-powered security is the key to empowering the world to build a safer Internet. Leveraging the hacker community is one of the components of a mature security organization. HackerOne leverages data to help organizations build a mature security organization an

Public Safety committee  I can take it. Thank you for that question. We believe there's strength in numbers, meaning there are more people on this planet who want to do good. Obviously, there are always going to be people who will have bad intentions, but HackerOne does not enable these criminals to do

Public Safety committee  Everybody who signs up for HackerOne has to provide information. As an example, we have to collect tax information to be able to pay them. Some of our customers require background checks of these people. Similar to the U.S. DOD, we conduct these background checks all around the w

Public Safety committee  Before I founded HackerOne, I used to be a penetration tester. One of the reasons we started the company to begin with was that we believed we needed a scalable model that would apply to every organization on this planet, and that would also be affordable for everybody on this pl

Public Safety committee  I can share some thoughts. The problem we've seen with small organizations is that it is always a trade-off of risks. There are checklists available, or policy documentation, around what to do as a small organization. Unfortunately, it is up to the organization to implement som