News

Public Cyber Testing Program Launched

by Samantha Reed - Chief Editor
written by Samantha Reed - Chief Editor 0 comments

Maryland Launches Vulnerability Disclosure Program to Bolster Cybersecurity

Maryland officials today launched a Vulnerability Disclosure Program (VDP) allowing cybersecurity researchers and residents to responsibly report potential security flaws in state websites and systems, aiming to proactively defend against growing cyber threats.

Administered by the Maryland Department of Information Technology (DoIT), the program applies to a broad network including executive branch offices, local governments, and organizations connected to networkMaryland, the state’s fiber-optic backbone. “Threat actors are constantly expanding their arsenal of tools and tactics to breach state and local systems — the State of Maryland must be proactive and aggressive in our response,” said DoIT Secretary Katie Savage in a statement. The VDP is a key component of the state’s broader effort to modernize its cybersecurity infrastructure, which has faced increasing challenges in recent years.

The program operates in partnership with Bugcrowd, a platform specializing in vulnerability disclosure and bug bounty programs. According to Acting Chief Information Security Officer James Saunders, this partnership leverages an established network of researchers and efficient triage workflows, “enhancing participation, increasing efficiency, and ensuring value for Maryland taxpayers.” DoIT’s Office of Security Management (OSM) will review reported vulnerabilities, prioritizing remediation in collaboration with affected agencies. A “Safe Harbor” provision protects good-faith researchers from prosecution, provided they adhere to program guidelines – a crucial element for encouraging participation. For more information on cybersecurity best practices, see the Cybersecurity and Infrastructure Security Agency website.

A binding operational directive issued October 21 requires all Maryland local governments and organizations using state-managed domains or networkMaryland services to participate in the VDP process. As of today, 23 reports have been submitted and validated since the program’s launch last week. Officials expect to publish anonymized data on vulnerability findings to ensure accountability and transparency.

DoIT officials stated they will continue to refine the program based on report volume and remediation timelines, with plans to expand vulnerability management to include bug bounties and “Hack the State” initiatives in the future.

Bio: Samantha Reed is the Chief Editor of Headlinez.News, where she leads the publication’s editorial vision and commitment to journalistic integrity. With more than 18 years in the newsroom, Samantha began her career as a political correspondent before moving into editorial leadership at national outlets in the U.S. and Europe. She is known for her sharp editorial insight, balanced reporting standards, and deep understanding of digital audience engagement. At Headlinez.News, Samantha ensures every story meets the highest standards of accuracy, ethics, and relevance in today’s fast-moving media landscape. Expertise: Investigative journalism, political analysis, newsroom leadership, editorial ethics, audience engagement. Location: Boston, Massachusetts, USA

You may also like

Switzerland Approves $120M Emergency Fund for Toddlers

Obamas Unveil Chicago’s Interactive Presidential Center as Community...

U.S.-Iran Hostility Pact Signed-But Key Terms Remain Unclear

Morawiecki Rejects Czarnek’s Plan to Halt Ukraine Aid

Europe Braces for Heatwave: France, Spain Hit with...

Osaka Cluster: 14 Staff Infection Confirmed in Tuberculosis...

Leave a Comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.

This website uses cookies to improve your experience. We'll assume you're ok with this, but you can opt-out if you wish. Accept Read More

Privacy & Cookies Policy