Case Study: InvestorKeep secures sensitive financial data and accelerates SOC 2 compliance with HackerOne Pentest

Investorkeep Secures A Mountain Of Financial Data With Hackerone Pentest

InvestorKeep is a financial tracking platform that stores large volumes of sensitive investor and partner data, so security—and demonstrable compliance like SOC 2—are business priorities. With a small internal security team, the company needed an expert, comprehensive test of its attack surface to tighten controls and build trust with customers and financial institutions.

InvestorKeep engaged HackerOne Pentest for a focused two-week engagement that paired hand-selected researchers with its security and engineering teams. The engagement uncovered 10+ verified vulnerabilities, delivered continuous reports and tailored remediation guidance, enabled immediate fixes and retests, and helped the company implement controls that support SOC 2 readiness—leading InvestorKeep to plan ongoing hacker-powered security, including future pentests and a possible bug bounty.

InvestorKeep

Jack Watroba

Cloud Infrastructure Architect