HackerOne Recognized in PTaaS Space by Analysts While Revenue For PTaaS Product Grows By 200%

SAN FRANCISCO, Dec. 12, 2023 — HackerOne, the global leader in human-powered security, today announced it has been named a Leader in analyst firm, GigaOm's annual Radar Report in the Penetration Testing as a Service (PTaaS) category for the second year. HackerOne has also mentioned in the inaugural publication of the Gartner Innovation Insight: Penetration Testing as a Service report. For HackerOne, the release of this report marks a significant milestone in the growing acknowledgment and confidence in PTaaS within traditionally cautious and highly regulated industries. The speed and efficiency of the PTaaS model have encouraged sectors like financial services and government to actively and successfully transition from traditional pentesting methods.

For HackerOne, analyst mention cements the company’s position at the forefront of the PTaaS revolution, which amplifies the benefits of pentesting through the ease and efficiency of modern cloud-centric technology. HackerOne's PTaaS business has grown rapidly, with a 50% increase in the first three quarters of 2023 and a jump in revenue of nearly 200%. New customers can initiate a new pentest in four business days, with 86% receiving their first vulnerability report in less than one week. Additionally, 61% say they identify more vulnerabilities with HackerOne than traditional consultancies. Customers include Adobe, Agoda (part of Booking Holdings), Zebra Technologies, Wind River Systems, and more.

The GigaOm report delves into HackerOne's key PTaaS strengths, including “advanced bidirectional integrations with key SDLC [software development lifecycle] tools like Jira, GitHub, GitLab, AzureDevOps, and AWS. Particularly noteworthy is the integration with AWS Security Hub, illustrating HackerOne’s deep expertise with AWS technologies.” In addition, “HackerOne’s onboarding and scoping processes are crafted for efficiency, significantly reducing the need for frequent meetings,” and “HackerOne offers near real-time visibility into pentesting activities for clients through its portal. The solution also offers simple direct access to the pentesters as well as an assigned technical engagement manager (TEM).”

"We believe analyst recognition for modern pentesting delivered via PTaaS means many more enterprise organizations will benefit from its speed and flexibility,” said Mahesh Chukkapali, COO at HackerOne. "These are challenging times for many businesses. Understaffed IT teams are failing to keep up with increased cybercriminal activity, and there is rising pressure to meet compliance requirements. In this environment, PTaaS has emerged as an essential solution. It allows organizations to identify vulnerabilities with a speed and scale unmatched by traditional approaches while simultaneously maintaining, and surpassing, the quality of results typically associated with consultancies.”

Trust is integral to HackerOne’s offering. Pentesters on the platform are vetted by HackerOne’s Clear verification process and undergo a thorough criminal background screening annually. The vetting takes into account the pentesters’ certifications and other credentials, including OffSec Certified Professional (OSCP), Offensive Security Certified Expert (OSCE), Offensive Security Web Expert (OSWE), and Council of Registered Security Testers (CREST). Recently, HackerOne has also been accredited and approved as a CREST Penetration Testing service provider and is soon to feature in CREST’s approved partners list. 

Fuelled by customer demand and analyst recognition, HackerOne is significantly expanding its PTaaS capabilities with new features on the roadmap. The company has recently launched updates to its HackerOne Clear researcher verification service and its HackerOne Gateway zero trust network access (ZTNA). In 2024, in addition to increased support for non-standard and customized pentests, HackerOne customers can expect an enhanced user experience and increased self-service capabilities, including customized reports. 

Read the full GigaOm report here, and learn more about how you can use the information to make a buying decision on our blog. 

Read the Gartner report here.


About HackerOne 

HackerOne is the global leader in human-powered security. We leverage human ingenuity to pinpoint the most critical security flaws across your attack surface to outmatch cybercriminals. HackerOne’s Attack Resistance Platform combines the most creative human intelligence with the latest artificial intelligence to reduce threat exposure at all stages of the software development lifecycle. From meeting compliance requirements with pentesting to finding novel and elusive vulnerabilities through bug bounty, HackerOne’s elite community of ethical hackers helps organizations transform their businesses with confidence. HackerOne has helped find and fix more vulnerabilities than any other vendor for brands including Coinbase, General Motors, GitHub, Goldman Sachs, Hyatt, PayPal, and the U.S Department of Defense. In 2023, HackerOne was named a Best Workplace for Innovators by Fast Company.


Notes to editor


Gartner, Innovation Insight: Penetration Testing as a Service, Mitchell Schneider, Eric Ahlm,  William Dupre, Carlos De Sola Caraballo, 8 November 2023.

GARTNER is a registered trademark and service mark of Gartner, Inc. and/or its affiliates in the U.S. and internationally and is used herein with permission. All rights reserved.

Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.