*Reassuringly dull cyber security e: info@normcyber.comt: +44 (0) 203 855 6215

norm. achieves CREST certification for penetration testing

CREST logo

The norm. team is proud to announce that as of 1st December 2020 it has become a Council for Registered Ethical Security Testers, CREST, accredited company for penetration testing services.

This latest accreditation provides assurance that the norm. team has been independently verified as a provider that adheres to the highest technical and ethical standards. For our customers, it gives them the peace of mind of working with a highly skilled team of experts that is proven to deliver quality and value.

What is CREST certification?

CREST is an accreditation body and non-profit organisation that provides regulation, accountability and accreditation to the information security marketplace. CREST provides internationally recognised accreditations for organisations and individuals who provide penetration testing, cyber incident response and threat intelligence services.

Why does CREST certification matter?

Penetration tests form part of an industry recognised approach to identifying and quantifying risk. They actively attempt to exploit vulnerabilities in a company’s infrastructure, applications, people, and processes. As cyber attacks and techniques continue to evolve, it is more important than ever to ensure that an organisation’s network, devices and applications – and the personal data and information that resides within them – are protected.

Penetration testing involves simulating the techniques used by cyber criminals and hackers, and should only be carried out by trusted third parties that adhere to the highest professional standards and hold the appropriate independent accreditations – such as CREST.

In addition to CREST certification, norm. also holds ISO 27001, ISO 9001, IASME Gold and Cyber Essentials Plus accreditation.

If you’d like to find out more about our penetration testing services please contact us at info@normcyber.com or visit http://www.normcyber.com/cyber-security/technology/pen-testing/

Appointing NormCyber as our virtual DPO has given Ferrero the best of both worlds – access to data protection experts who understand what we stand for as a business, without the hefty overheads usually associated with appointing an in-house DPO.

Harpreet Thandi
Regional Counsel, UK & Ireland, Ferrero

We were looking for a virtual DPO service that offered all of the benefits of a fully qualified data protection lawyer, without the overheads of an in-house hire. The DPaaS solution from norm. has been invaluable in helping us to ensure we respect the integrity of our customers’ personal information, while using it to continue to deliver differentiated products and services which support our growing customer base.

Mike Whitfield, Compliance Manager

CSaaS allows me to step away from multi-vendor management as the Security Operations Centre coordinates all of the technology for me.

David Vincent, CTO

We were in the market for an independent Data Protection Officer service that was well versed with both UK and EU regulators. We’re thrilled to have acquired this service knowing that an expert is available 24/7.

Suzanne McCabe, Head of Project Management
James Hambro & Partners

Norm’s penetration testing layer, along with the suite of CSaaS modules has enabled MA to exceed all its audit requirements for its major clients.

Rob Elisha, ICT and CRM Manager
Montreal Associates

The speed of your Data Protection Officer’s response was very impressive – it was far quicker than I would have expected even from an in-house DPO

Will Blake, Director of Technology and Analytics
CRU Group