Cybersecurity skills gaps and shortages continue to impact the sector, bringing in external skills to test systems makes sense. Large organizations, such as Google and Apple, are setting up their own bug bounty programs, which employ or incentivize ethical hackers to find vulnerabilities in their software applications. ISACAs State of Cyber Security 2017 report found that, while one-third of respondents note that their enterprises receive more than 10 applicants for an open position, 64 percent indicate that fewer than half of the applicants are qualified.”]