HOW IS CESPPA DIFFERENT?
As former security researchers, we understand that challenges such as long wait times for payment, non-responsiveness, and crowded programs can be frustrating. CESPPA solves these problems in several ways. First, we pay researchers when vulnerabilities are submitted, not when they are remediated by the customer. Second, we assign dedicated program managers to every customer program. This means that clients have a single point of contact at CESPPA, and avoid having to manage submissions from and general communications with hundreds of individual researchers. Lastly, the vast majority of our programs are not reserved for only “elite” researchers. Working with CESPPA means that researchers have greater accessibility to meaningful and lucrative programs.