Our Status

(tick) Marketplace Bug Bounty Program

(tick) Security Self-Assessment Program

Bug Bounty Program

Atlassian recognizes bug bounty programs as one of the most powerful post-production tools available for detecting vulnerabilities in applications and services. The Atlassian Marketplace Bug Bounty Program is hosted on Bugcrowd, a SaaS platform built to crowdsource vulnerability discovery from a global pool of talented security researchers.

Security Self-Assessment Program

Atlassian’s Security Self-Assessment Program involves an annual security self-assessment that Atlassian reviews and approves. The approved application expires after one year and partners must re-apply with updated information each year. ThinkTilt has completed Atlassian’s Security Self-Assessment Program.

The program aims to encourage security mindfulness in three main areas:

  1. Data security
    The cloud partner has a clear data security policy. Data vulnerabilities are considered and handled.

  2. Sensitive data handling
    The cloud partner is mindful of the different types of data it handles and places extra security on sensitive data.

  3. Backups and Disaster Recovery
    The cloud partner backs up its data regularly and has a clear plan for data recovery in case of disaster.