Case Study: Outscale strengthens continuous security with YesWeHack Bug Bounty

Outscale - Customer Case Study

3DS Outscale, the cloud subsidiary of Dassault Systèmes, needed a more effective way to find vulnerabilities than traditional penetration testing alone. As an ISO 27001-certified provider preparing for SecNumCloud and HDS requirements, the company wanted continuous security testing and a sovereign approach to data handling, which led it to choose YesWeHack for a bug bounty program.

With YesWeHack’s public bug bounty platform, Outscale first ran a private program, then gradually expanded to a public program covering its infrastructure service and customer portal. The approach delivered a continuous stream of findings, including significant vulnerabilities early on, and improved collaboration between security, SOC, and R&D teams. Outscale says bug bounty now complements penetration testing, supports agile remediation through tickets and user stories, and provides active security that helps reassure customers.

Outscale

Edouard Camoin

Chief Information Security Officer