How ClearPoint secured their systems with PTaaS and simplified SOC2 audits with HackGATE™

ClearPoint Strategy is a one-stop shop for organizations for transforming how they manage and measure their goals. ClearPoint’s software uses automation and AI to streamline complex processes with clear insights, so their customers can make data-driven decisions with confidence, and achieve sustainable growth.
Published on
May 6, 2024

About ClearPoint  

ClearPoint Strategy is a one-stop shop for organizations for transforming how they manage and measure their goals. ClearPoint’s software uses automation and AI to streamline complex processes with clear insights, so their customers can make data-driven decisions with confidence, and achieve sustainable growth.

Built by managers, for managers, ClearPoint offers a user-friendly platform that simplifies collaboration and enables teams to manage projects, OKRs, business reporting, and more — in one platform.

Transparent pentesting to ensure ongoing system protection

The ClearPoint team sought a reliable pentest as a service solution for two key reasons: they were dissatisfied with their previous provider's penetration testing quality and they recognized the need to proactively address the risk of data breaches and create a more secure data environment.

In their search for a trustworthy pentest provider to ensure the ongoing protection, the ClearPoint team turned to G2, where they discovered Hackrate and opted to try their Pentest as a Service solution.

Manual & automated security testing with integrated advanced analytics

Hackrate employs a hybrid approach to continuous security testing for ClearPoint. They run automated vulnerability scans for eleven months, continuously identifying potential weaknesses. Then, the remaining month is dedicated to in-depth manual testing by ethical hackers.

This comprehensive, combined approach ensures a more secure environment: Automated vulnerability scans are a staple of security testing for identifying common threats but they can give organizations a false sense of security, due to often missing critical weaknesses that require a human approach. Penetration testers, with their deep understanding of web application operations, leverage manual methods to uncover these very vulnerabilities that automated scans overlook.

The ClearPoint team monitors their pentests in HackGATE™, a security gateway designed to monitor ethical hacking projects. The platform provides the team with real-time vulnerability insights during testing and generates a detailed final report after pentest completion. This report serves a dual purpose: it shows valuable insights for the team to better understand their security posture and provides them with proof of the thoroughness of their security testing efforts, which is essential for SOC2 compliance audits.

As Angel Oh, Product Manager at ClearPoint explains:

“Hackrate has been instrumental in streamlining our security assessment process. Its reporting and collaboration features allow us to efficiently manage and track progress, ensuring we meet all compliance requirements.”

Improved security posture, time and costs saved, and better reporting

Hackrate’s testing approach has transformed ClearPoint's security strategy. By combining automated scans with manual penetration testing, the ClearPoint team doesn’t need to worry about continuous, comprehensive assessments — it’s all taken care of by the Hackrate team. Their Pentest as a Service offers a cost-effective alternative to hiring external researchers for vulnerability identification, resulting in significant savings.

The detailed reports generated by HackGATE™ have been essential for the team. Thanks to these reports, they are more confident in the quality of their pentests, have a better overview of their security landscape, and simplified compliance documentation.

“Hackrate's pentest and vulnerability scanning solutions significantly improve our security program, empowering us to proactively identify and address any security vulnerabilities with precision."

Schedule your demo today.
The company we discussed had nothing but positive feedback about using HackGATE on their recent security testing project – so why not give it a try?

Let's connect! Fill out the form below to get started.
Read about our privacy policy.
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.