Why would an organization invite hackers to break into their software?

Bug bounty and vulnerability disclosure programs have been proven to deliver excellent results in finding and fixing vulnerabilities. White hat hackers, or security researchers, are always looking for vulnerabilities, whether invited or not. By providing them with a way to report these vulnerabilities and a reward for doing so, organizations can benefit from continuous testing, while paying only for results. Granting permission for security researchers to test software and systems is a great way to receive more vulnerability findings, giving your organization more knowledge and control, and ultimately reducing risk.