Penetration testing is a critical way to protect organisations by identifying vulnerabilities in software and systems in a controlled environment, allowing problems to be remediated before they’re exploited by a hacker. Seeing as cyber security is not regulated, it can be very difficult for companies to know that their penetration testing provider is reputable, trustworthy, and competent. This is why CREST (Council of Registered Ethical Security Testers) is such a valuable accreditation.
What is CREST?
CREST ANZ is an organisation run by cyber security experts that have established a uniform framework for accreditation in penetration testing services. The certification process involves assessment of the company and its penetration tester’s processes, technical ability, and ethics. Approved Companies have demonstrated competence and skill by undergoing scrutiny and abiding by the CREST ANZ Company Constitution and Code of Conduct.
Benefits of using a CREST certified company
The CREST certification ensures, among other things, that the accredited company has highly skilled, knowledgeable, and competent individuals, and rigorous processes. If an organisation isn’t CREST certified, irresponsible organisations may not have the correct policies, processes and procedures to ensure quality of service and protection of client based information, or have penetration testers that may have no demonstrable skill, knowledge or competence.
In order to maintain their CREST certification, member companies are required to undergo a full re-assessment every three years. This ensures that companies maintain their level of quality and keep up with the ever changing threat landscape.
Vertex Cyber Security is a CREST ANZ certified provider of penetration testing
Vertex Cyber Security is proud to be a CREST ANZ approved provider. This accreditation further demonstrates our work to provide industry-leading penetration testing services and our team’s experience.
Learn more about our penetration services here.