Help Center

Does HackerOne comply with the ISO standard for Vulnerability Disclosure?

Yes, the International Standards Organization created ISO 29147 Vulnerability disclosure to help guide organizations on how to receive vulnerability reports from parties outside your organization, and how to disseminate vulnerability advisories. The HackerOne platform enables your organization to easily implement and manage vulnerability disclosure and coordination processes. The platform provides auditable compliance with ISO 29147 (vulnerability disclosure) and enables seamless management of ISO 30111 (vulnerability handling).
 
 
HackerOne's Chief Policy Officer recorded a 20-minute video overview of the vulnerability disclosure standard (29147) and a related ISO standard on vulnerability handling (30111) to help organizations understand what is included and how the standards are related. Watch it here.
 
 
Have more questions? Submit a request
Powered by Zendesk