After releasing the Bug bounty program, we realised some vulnerabilities in our application. We will be fixing it in April and will make the program live again in May. Bug Bounty program is currently paused at Zigsaw
We are categorising suggestions in 2 categories
- User Feedback
- Bug Bounty Program
At Zigsaw we believe that feedback from our users is invaluable in helping us improve our job-portal platform. As a token of our appreciation for your time and effort in providing feedback, we are pleased to offer rewards through our user feedback program.
To participate in our user feedback program, simply share your thoughts and suggestions about our platform by sharing an email at email@example.com We encourage you to be as detailed and specific as possible, and to include any suggestions or ideas that you believe would enhance the value offered by Zigsaw.
The scope of feedback is unlimited and can include everything related to sales, marketing, product, technology OR anything that affects how Zigsaw (or its representatives) interact with companies OR Job-seekers. Below are some just some areas where users can provide feedback, suggestions or ideas.
- User Interface and User Experience: Users can provide feedback on the user interface and experience, including ease of use, accessibility, and overall design.
- Job Posting and Search: Users can provide feedback on the job posting and search functionalities, including search filters, job descriptions, and overall job matching.
- Application and Interview Process: Users can provide feedback on the application and interview process, including resume upload, communication, and interview scheduling.
- Customer Service and Support: Users can provide feedback on the customer service and support provided by the job portal, including response time, helpfulness, and overall satisfaction.
- Sales and Marketing: Users can provide feedback on the sales and marketing efforts of the job portal, including advertising, promotional campaigns, and outreach strategies. These strategies could be centred around employers OR Job-seekers OR both
- User Engagement: Users can provide feedback on how the job portal can better engage with users, including newsletters, notifications, job alerts, and other engagement strategies.
- New Features and Functionality: Users can provide feedback on potential new features and functionalities that can be added to the job portal to improve the overall user experience.
- Other Suggestions and Ideas: Users can provide feedback on any other suggestions or ideas that they believe can help improve the job portal platform OR our offered services or anything that makes the company better.
P.S. Even suggestions going beyond the above scope would be considered for the reward program if our team believes that your idea increases the value we create for our users.
In return for your feedback, we offer the following rewards:
- Accepted feedback will be shared on our social media handles and due-credit would be provided to the person providing the feedback
- Regular updates on how we are implementing your feedback to improve the platform
- Prizes for monthly winners include gift cards, tech gadgets, other exciting items OR cash prizes
We appreciate your commitment to helping us improve our job-portal platform, and we look forward to hearing your feedback.
Bug Bounty Program
We at Zigsaw take security very seriously and are committed to ensuring the safety and privacy of our users. As part of our ongoing efforts to improve the security of our job-portal platform, we are pleased to announce our bug bounty program.
We encourage security researchers to help us identify and fix vulnerabilities by reporting them to our team through this program. In return, we offer rewards for valid reports, subject to the terms and conditions outlined below.
Rewards will be based on the severity of the vulnerability reported, as assessed by our security team. The minimum reward for a valid report will be ₹1000 and the maximum reward will be ₹7000
To be eligible for a reward, the vulnerability must:
- Be previously unreported
- Be a genuine security issue that could potentially compromise the confidentiality, integrity, or availability of our users’ data or our systems
- Be reproducible and include enough information for our team to understand and fix the issue
- Be reported to us in a responsible and ethical manner, and not be publicly disclosed until we have had sufficient time to address it
The following issues are not eligible for rewards under this program:
- Issues related to social engineering, phishing, or other forms of fraud or abuse
- Issues that are outside the scope of our job-portal platform
Reporting a Vulnerability
If you believe you have discovered a security vulnerability in our platform, please report it to us by emailing firstname.lastname@example.org Please include as much detail as possible, including:
- A clear and concise description of the vulnerability
- Any steps or scripts required to reproduce the issue
- The impact of the vulnerability, including any potential for data loss or system disruption
- Your contact details and preferred method of communication (email, phone, or encrypted messaging app)
We will acknowledge receipt of your report within 3 days, and will aim to provide regular updates on the progress of our investigation and resolution of the issue.
We appreciate your assistance in helping us maintain the security and privacy of our platform, and we look forward to working with you to make it even stronger.