Bug Bounty Program
Atlassian recognizes bug bounty programs as one of the most powerful post-production tools available for detecting vulnerabilities in applications and services. The Atlassian Marketplace Bug Bounty Program is hosted on Bugcrowd, a SaaS platform built to crowdsource vulnerability discovery from a global pool of talented security researchers.
Security Self-Assessment Program
Atlassian’s Security Self-Assessment Program involves an annual security self-assessment that Atlassian reviews and approves. The approved application expires after one year and partners must re-apply with updated information each year. ThinkTilt has completed Atlassian’s Security Self-Assessment Program.
The program aims to encourage security mindfulness in three main areas:
The cloud partner has a clear data security policy. Data vulnerabilities are considered and handled.
Sensitive data handling
The cloud partner is mindful of the different types of data it handles and places extra security on sensitive data.
Backups and Disaster Recovery
The cloud partner backs up its data regularly and has a clear plan for data recovery in case of disaster.