A look at crowdsourced security platform Bugcrowd (plus advice on how to get hired there)

Bugcrowd, the leading crowdsourced security platform, has only 200 official employees, but has a community of hundreds of thousands of white hat hackers known as “the Crowd.” The company combines its team with trusted hackers from around the world to create a human-based approach to risk reduction. Find out more about the company, including how to get hired, with Ladders’ rundown.

Bugcrowd rundown

Size: 200 employees

Industry: Computer & Network Security

Locations: The company’s headquarters are in San Francisco, California, but it also has a presence in London, Costa Rica, India, and Sydney.

Founded: 2011

Founder: Casey Ellis

CEO: Ashish Gupta

Ashish Gupta
Courtesy Bugcrowd

Mission: Bugcrowd’s mission is to get better results, reduce risk, and empower organizations to reduce secure products to market faster  “by combining the largest, most experienced triage team with the most trusted hackers around the world.”

How much do Bugcrowd employees make?

The average salary for a Bugcrowd employee is $115,714 per year. Ladders estimates are based on our calculations.

Bugcrowd jobs

Bugcrowd is currently hiring for a variety of open positions, including an Account Executive and a Senior Customer Marketing Manager to join the team in San Fransisco. Security Solutions Architect is a current open remote position. Find a full list of open roles on Ladders’ Bugcrowd Jobs page.

Company culture

Bugcrowd’s company culture has five core principles:

  • Build it like you own it.
  • Simple is strong.
  • Think like a hacker.
  • Respect is key.
  • Unquestionably happy customers.

“We regularly hear from both customers and researchers that Bugcrowd’s culture feels like a family, and we strive to maintain that internally as well,” CEO Ashish Gupta said. “We work together as a team, strive together for success, and achieve more together every day.”

According to Gupta, Bugcrowd creates an environment where someone can not only always have an impact, but also continuously learn through open and collaborative company-wide discussions.

What the CEO says it takes to get hired

“At Bugcrowd, we strive to provide a world-class interview experience for both the candidate and the interviewer,” Gupta said. “We put a lot of prep work into our interviews and we hope to see the candidate has done the same.”

Gupta likes to see candidates who are prepared, understand their audience, and are willing to challenge their interviewer. This challenging of an employer is important to Gupta because the company believes in human creativity and the use of it to solve everyday challenges.

Interviewers will be looking for five main traits during a conversation with a candidate:

  • Passion: How do your experiences and career aspirations link to the impact you want to have in the world and on our company?
  • Creativity: Can you think like a hacker — or outside of the box?
  • Strategic mindset: Have you created a point of view? Do you connect insights to measurable actions?
  • Resourcefulness: Do you creatively research and infer solutions to solve problems?
  • Respect: What are your key values and principles and do they align with ours? For instance, the company believes respect is key, do you?

In addition to trying to implement those traits into your interview, Gupta has three main pieces of advice:

  • Do your research and create a point of view. We like to know that you’re coming in prepared, understand your audience, and are willing to challenge us because we believe in human creativity and the use of it solve everyday challenges and yes, to also make the digitally-connected world a safer place.
  • Connect the dots. Link your point of view to how you can enhance our company by connecting your experience and career aspirations to the impact you want to have in the world. We like to hear that passion.
  • Think like a hacker. We want to know that you can think outside of the box, like our Crowd, and highly value creativity and ingenuity.
    And a bonus, never forget the power of professional courtesies, such as a thank you note following your interview.

Funding

The company has raised $48.7 million over five funding rounds. The latest round, a Series C, was announced on March 1, 2018 and was led by Triangle Peak Partners.

Employee benefits

  • Health, dental, vision, life, and disability insurance
  • Flexible spending account (FSA)
  • Supplemental life insurance
  • Mental health care
  • Accidental death & dismemberment insurance
  • 401K plan
  • Stock options
  • Maternity & paternity leave
  • Work from home
  • Dependent care
  • Family medical leave
  • Vacation & paid time off
  • Paid holidays
  • Sick days
  • Bereavement leave

Employee perks

  • Commuter checks & assistance
  • Company social events
  • Free lunch or snacks
  • Travel concierge
  • Job training

Bugcrowd employee reviews 2019

Reviews on Glassdoor range from one-star reviews titled “waiting to be gobbled up” to five-star reviews stating that the company is a “great company who cares about employees.”

“Awesome MGMT staff who cares about the work the employees do, listen to ideas and give space to do your job without being overbearing,” one reviewer wrote. “Great SF location! Close to Bart, Ferry, Transportation. Too many employee perks to mention. Makes you want to come to work each day and be a contributor to the success of the company.”

The company has a great rating on Glassdoor, with 80% of reviewers recommending the company to a friend and 100% of reviewers approving of the CEO.

What does Bugcrowd do?

The crowdsourced security platform works with companies to reduce cyber risks. The company has a wide network of hackers, called “The Crowd,” that companies can interact with to solve their cybersecurity issues. The company’s CrowdMatch technology can match the right team to a customer’s unique issue.

“We don’t ask our customers to compromise,” Gupta said. “Bugcrowd consistently ensures efficiency and quality by unlocking the creativity of humans on a platform that maximizes their ability to have an impact. We truly democratize crowdsourced security for both the researchers and customers.”

The company offers four main services:

  • Vulnerability Disclosure
  • Bug Bounty
  • Next Gen Pen Test
  • Bug Bash

“For as long as humans are writing software, developers and programmers are going to inadvertently make mistakes. This problem is perpetually accelerated by the pressure of speed to market,” Gupta said. “When humans unknowingly make coding mistakes, these mistakes can turn into vulnerabilities that can be exploited. That’s where Bugcrowd comes in, aiming to mitigate the fallout before these vulnerabilities are maliciously exploited by bringing human ingenuity back into the solution through our Crowd.”