D I G I T A L D I A G N O S T I C S
Laurie Mercer , Security Architect at HackerOne
The report also highlighted a platformwide improvement in the time taken to remediate a vulnerability , with the average time dropping from 35.5 days in 2022 to 25.5 in 2023 . Encouragingly , it shows how the platform and ethical hacking community can drive efficiency within organisations , ensuring vulnerabilities are taken seriously and patched faster . Unsurprisingly , there are some salutary statistics on the costs that could be saved if the software wasn ’ t released with security flaws in the first place , indicating a saving of US $ 18K per missed bug on average across industries . standards – something that ’ s highly beneficial for regulated industries like healthcare . All of these programs harness the ingenuity and skill of the global ethical hacker community to identify elusive vulnerabilities that automated solutions fail to catch .
A recent report illustrates the potential of these solutions , highlighting that over 70 % of organisations have successfully used them and prevented a significant security incident . For the healthcare sector , this could represent savings in future recovery and remediation costs . With VDPs and BBPs , security teams can complement their own skills with a range of expertise and technical knowledge from hundreds of thousands of registered ethical hackers . Therefore , internal technical gaps through skills shortages or staff turnover can be augmented by external resources with an easily scalable model .
In addition , 91 % of organisations agreed that hackers provide more impactful and valuable vulnerability reports than scanning solutions – or AI tools . The majority measured success as a combination of the absence of incidents or breaches and estimated savings related to reputational damage and customer-facing incidents . It suggests that continuous humanpowered solutions , like VDPs and BBPs , combined with in-depth testing offered by programs like penetration testing , could be an important part of improving cyber-resilience at an acceptable cost .
Quickly scalable and enabling a continuously improving security posture , along with a model suitable for organisations with limited budgets , ethical hacking solutions must be worth some serious consideration . Especially by those responsible and accountable for protecting patient data and critical health services infrastructure . �
www . intelligenthealth . tech 65