Elevating public sector security: Insights from 3 crowdsourced programs

Cybersecurity has become a crucial component of public sector strategies, with a notable increase in targeted attacks and vulnerability submissions. Government agencies are leveraging the global reach of security researchers to bolster defenses, as demonstrated by Bugcrowd's recent FedRAMP Moderate Authorization, which confirms its capability to protect sensitive data. Bugcrowd's collaboration with CISA launched a crowdsourced vulnerability disclosure platform, significantly improving vulnerability detection and remediation across federal agencies such as NASA and Homeland Security, saving millions in potential costs. The Department of Defense has also partnered with Bugcrowd to conduct public adversarial testing of AI systems, setting a precedent for AI security testing. Meanwhile, the Office of the Minnesota Secretary of State has successfully implemented a Vulnerability Disclosure Program (VDP) through Bugcrowd, uncovering high-impact vulnerabilities and enhancing relationships with the security research community.