Vulnerability Coordination Center (VCC) is a Now on Now built application that covers the end-to-end lifecycle of product security vulnerabilities from initial discovery through final remediation. Built to help teams adopt world-class PSIRT (Product Security Incident Response) practices, VCC consolidates product vulnerability management processes and ensures alignment with industry best standards.

By centralizing the intake of product security incidents from diverse sources such as public channels, customer reports, and responsible disclosure programs, VCC brings order to the chaos that often accompanies product vulnerability tracking. Each incident can be broken down into separate work-streams, helping you prioritize tasks, track progress, and keep stakeholders informed at every step.

To further simplify response efforts, VCC integrates seamlessly with HackerOne for two-way communication, allowing teams to manage disclosures and updates without juggling multiple tools. It also includes a built-in Coordinated Disclosure model, guiding users through the activities and communications required when publicly releasing vulnerability details. The result is a streamlined, transparent process that enhances your organization’s overall product security posture.