Forrester Study on the Total Economic Impact of Crowdsourced Pen Tests

According to a recent study, by 2022, crowdsourced security tests will be employed by over 50% of enterprises, up from less than 5% in 2018. However, is this growth actually making application security better? Are new tools and platforms keeping up with the speed of code deployments? Are organizations finding more critical vulnerabilities while reducing time spent completing pen tests? 

Based on Forrester's new Total Economic Impact (TEI) Report commissioned by HackerOne, Hacker-Powered pen tests show a 66% reduction in internal pen test effort and a 50% reduction in pen test duration. 

To learn more, join Forrester Analyst Amy DeMartine as she highlights trends in Application Security as well as Jonathan Lipsitz who will walk through the findings of the TEI Report. The presentation and subsequent live Q&A begins at 11:00 AM PST on June 18th. 

In this webinar, you’ll learn:

  • The ROI, cost savings, reduced internal effort and operational benefits quantified of HackerOne Challenge
  • Specific customer use cases that have led to improved compliance audits and improved testing flexibility
  • Key challenges with traditional pen tests surfaced by interviewees


About our Presenters

Jonathan Lipsitz

Jonathan Lipsitz is a principal consultant with Forrester's Total Economic Impact™️ (TEI) consulting practice. The TEI methodology focuses on measuring and communicating the value of IT and business decisions and solutions, as well as providing an ROI business case based on the costs, benefits, risk, and flexibility of investments. Prior to joining Forrester, Jonathan worked at Cambridge Technology Partners where he developed eBusiness strategies. As part of these projects, Jonathan developed detailed business cases to justify the investments and to firmly tie the technology efforts to business strategies. He holds a Bachelor of Science from Carnegie Mellon and an MBA from the American Graduate School of International Management (Thunderbird).

Amy DeMartine

Amy helps security and risk professionals transform their current software and application security practices to support continuous delivery and improvement, focusing on strong partnerships with application development, operations, and business teams. Her research covers topics such as proactive security design, security testing in the software delivery life cycle, protection of applications in production environments, and remediation of hardware and software flaws.

Related Events