After over two years of running an outstanding bug bounty program with Bugcrowd, we'd like to give some recognition to one of our longest standing and committed customers--Aruba Networks. Since 2014, Aruba has successfully leveraged Bugcrowd's most skilled and trusted researchers through a private bug bounty program for their web applications and hardware devices. As Aruba scaled their operations, they prioritized product and application security, bringing on an all-star security team, multiple third-party testing engagements, and hiring independent security researchers to freelance. They turned to Bugcrowd to augment their existing efforts with a more focused private bug bounty program that allowed them to tailor their testing pool based on specific skill sets, have direct communication with a smaller group of testers, and harness the power of a public bug bounty program while retaining control. With this approach, Aruba has positioned themselves as thought leaders in application security, gained traction in their program, and seen high-quality findings from researchers. Their private bug bounty program has retained astounding traction over two years, receiving over 500 submissions from researchers around the world, and serving as a great model for others looking to implement a bug bounty program.