WELSH cyber-security specialists, Capital Network Solutions (CNS) has become the first company headquartered in Wales to become CREST approved for Penetration Testing Services.
With more than 40 accreditations in 20 specialist technology areas, CNS has taken the steps to further establish themselves as a leading provider of cyber security and infrastructure solutions by gaining the prestigious CREST accreditation for their penetration testing services. This follows on from their recent award of ISO 27001 and ISO 9001 certification.
Through CREST’s demanding accreditation process, organisations buying security testing and incident response services get the assurance that:
- The services will be delivered by trusted companies with best practice policies and procedures.
- The work will be conducted by highly-qualified individuals with up to date knowledge, skill and competence to deal with all the latest vulnerabilities and techniques used by real attackers.
- Both the company assessments and individual qualifications are underpinned by meaningful and enforceable codes of conduct.
Ian Glover, President of CREST, said:
“CREST is delighted to welcome CNS as a member company. To achieve membership, companies go through a very demanding assessment process that examines test methodologies, legal and regulatory requirements, data protection standards, logging and auditing, internal and external communications with stakeholders and how test data security is maintained. By becoming a CREST member, CNS is demonstrating its commitment to delivering the highest professional security services standards to its customers.”
Speaking about the CREST accreditations, Sarah Edwards, managing director at CNS, said:
“It is a real testament to the team that we have become the first fully Welsh based business to become CREST accredited and further establishing our ourselves as one of the UK’s leading cyber security companies by adhering to best practice and ensuring the security and quality of our information systems.
“We pride ourselves on the dedication we show by further investing in our company and staff to make sure we are fully trained and certified, so to be accredited with CREST is a great way for us to lead by example and is a testament to the amazing work our team provides, and we couldn’t have achieved it without them.”
CREST is a not-for-profit accreditation and certification body and trade association that represents and supports the technical information security market. CREST was set up in 2006 in response to the clear need for more regulated professional services and is now recognised globally as the cyber assurance body for the technical security industry.
CREST provides internationally recognised accreditations for organisations and individuals providing penetration testing, cyber incident response and threat intelligence services. All CREST member companies undergo stringent assessment; while CREST qualified individuals have to pass rigorous professional level examinations to demonstrate knowledge, skill and competence. CREST also supports the industry by providing in-depth guidance material and commissioning detailed research projects. All CREST research is provided to the industry free of charge.
CNS has recently established itself as one of the biggest certification bodies in the UK after certifying its 1000th Cyber Essential customer at the end of last year. Completion of the Cyber Essential scheme, along with the recent changes announced in the EU General Data Protection Regulation, makes a future where businesses are protected against cyber threats entirely possible.