-
Stratia Consulting Ltd
Our IT Health Check service enables organisations to proactively analyse their cyber defences, identify vulnerabilities, and address them before exploitation. This comprehensive service spans web applications, mobile applications, and network infrastructure. It is delivered by testers who possess deep experience, relevant qualifications, and specific knowledge of the public sector.
-
Stratia Consulting Ltd
Stratia Cyber’s PSN IT Health Check (ITHC) offers an independent security evaluation of network infrastructure and devices, tailored to meet PSN Code of Connection (CoCo) requirements. Adhering to Cabinet Office guidelines, our service ensures organisations maintain a secure, compliant PSN connection, identifying and mitigating vulnerabilities to enhance cybersecurity.
-
AMICIS GROUP LIMITED
Our automated penetration testing offers comprehensive assessment of your organisation's cybersecurity posture. Our services offer state-of-the-art capabilities to identify vulnerabilities in your systems, networks, and applications. Through simulated attacks, we uncover potential weaknesses, providing actionable insights to enhance your security defences.
-
AMICIS GROUP LIMITED
Our Consultant-led penetration testing offers comprehensive assessment of your organisation's cybersecurity posture. Our team of experienced consultants employs advanced methodologies to identify vulnerabilities in your systems, networks, and applications. Through simulated attacks, we uncover potential weaknesses, providing actionable insights to enhance your security defences.
-
IDATAMAZE LIMITED
IDataMaze provides robust functional testing and web application penetration testing, including APIs. Utilising Automation First methodologies, our services span multiple domains for comprehensive cloud application assessment. We integrate security assessments, Cybercrime, and
Online investigations. employing both human and automated analysis, to enhance application functionality and security.
-
ZOONOU LIMITED
Zoonou is a UK-based test and QA consultancy with over 15 years' experience. We provide services in automation, functional, compatibility and non-functional testing including: penetration, security, load, performance, accessibility and usability testing. Our services complement all development methodologies, including Agile, Waterfall, Iterative and DevOps and cover Alpha, Beta and Live.
-
PENTEST CYBER LTD
CREST member organization. External, Internal, Host Compromise Simulation (builds), Secure Code Review, Web App, Azure, AWS or Cloud penetration tests delivered remotely using professional tools & qualified (OSWE OSCP etc.) vetted UK personnel. ISO 27001 ISO9001, NIS D, Cyber Essentials Plus readiness
-
PRISM INFOSEC
Prism Infosec is a NCSC CHECK Green Light, CREST-approved penetration testing (IT Health Check / ITHC) supplier, delivering tests of cloud services and supporting infrastructure, including reviews of physical and virtualised infrastructure components and applications. We have proven expertise in the delivery of cloud service assessments, including AWS / Azure.
-
PRISM INFOSEC
Prism Infosec is an NCSC CHECK Green Light, CREST-approved penetration testing (IT Health Check / ITHC) supplier, delivering tests of cloud services and supporting infrastructure, including reviews of physical and virtualised infrastructure components and applications. We have proven expertise in the delivery of cloud service assessments, including AWS and Azure.
-
CODA SECURITY LIMITED
An internal or external assessment of technical and organisational security by a CHECK accredited team. This IT Health Check activity can include penetration testing, build reviews, firewall rule audits, internal and external penetration testing, and source code review. These are dependent on the accreditation requirements and scope.
-
TESTINGXPERTS LIMITED
TestingXperts provides comprehensive testing services throughout ERP program lifecycles, spanning rollout, upgrades, maintenance, and production support. With deep subject matter expertise in leading ERP QA packages and top-tier QA processes, frameworks, and accelerators, we assist clients in achieving their ERP objectives.
-
CODA SECURITY LIMITED
A range of technical assurance, vulnerability assessment, and penetration testing services tailored towards the secure handling of Police data and systems. This includes targeted assessments against legacy PNC services, PDS services, and pre-production or in-service LECP and NIAM approved Police services.
-
DAMCO SOLUTIONS LTD
Damco provides comprehensive testing services throughout ERP program lifecycles, spanning rollout, upgrades, maintenance, and production support. With deep subject matter expertise in leading ERP QA packages and top-tier QA processes, frameworks, and accelerators, we assist clients in achieving their ERP objectives.
-
SECARMA LIMITED
Our CREST accredited penetration testing team has significant experience in performing IT Health Check assessments (ITHC) for various requirements such as the PSN CoCo (ITHC).
Many consultants hold certifications equivalent to CHECK Team Leader or CHECK Team Member. These include CREST Certified Tester (CCT) and CREST Registered Tester (CRT)
-
SAPPHIRE TECHNOLOGIES LIMITED
Threat-Led Penetration Testing (TLPT), also known as Red Team Testing is an enhanced and controlled security test to attempt to compromise the cyber resilience of a system or network by simulating the tactics, techniques and procedures of real-life threat actors.
-
LRQA
LRQA (formerly-LRQA-Nettitude) STAR/STAR-FS/GBEST/GCASE/CBEST/TBEST/TIBER programme caters for the requirements of threat intelligence-led penetration-testing and red teaming to assess an organisations ability to detect, respond and eradicate known threats. LRQAs approach, combining extensive GBEST experience in the delivery of GBEST/GCASE/STAR programmes provide assurance through the simulation of real-world tactics, techniques and procedures.
-
CAPGEMINI UK PLC
Capgemini provide CREST and Cyber Scheme certified Infrastructure and Application experts and deliver penetration testing using CHECK and CREST methodologies. Refined to identify weaknesses and vulnerabilities found in internal infrastructure, web and mobile applications, cloud environments and external or remote-access solutions. Our tailored services help identify your threats and vulnerabilities.
-
NET CONSULTING LTD
Net Consulting’s infrastructure Penetration Testing service evaluates the risk of your IT estate being hacked. Conducted in the same manner as a malicious attacker attempting to hack your network, this service identifies weaknesses and produces a report identifying key areas for improvement and addresses critical issues with remediation advice
-
Security Software Solutions Ltd (S3 Ltd)
Pentest People are a CREST accredited penetration company that provide IT Health Checks: Penetration testing of external infrastructure (incl. cloud) and internal infrastructure, as well as applications (incl. mobile) and APIs, configuration reviews of Firewalls, Servers, Endpoints and MDM solutions. They offer retesting on 5 vulnerabilities, FOC (internet-facing only).
-
ABCONSULTANCY SERVICES LTD
Our Dynamic Application Security Testing (DAST) service empowers organizations to perform Black-box/Grey-box security testing using automated tools. SAST may not get a full picture without application deployment that’s why DAST comes handy in picking out deployment specific issues. Using open source empowers organizations to meet point-3 of Technology-Code-of-Practice (TCoP).
-
MICHAEL PAGE INTERNATIONAL RECRUITMENT LIMITED
Our Page Consulting Cloud Testing service provides a flexible range of full end to end testing services. Whether required on or off-site we combine industry expertise to ensure we achieved the highest quality service against your test strategy.
-
ARCANUM INFORMATION SECURITY LIMITED
Arcanum Information Security are a National Cyber Security Centre (NCSC) Certified Cyber Security Consultancy, Assured by NCSC for Risk Management and Audit & Review. We are CHECK and CREST Accredited for Pen Testing and carry out assessments for clients of all sizes and sectors.
-
NIXINFINITY - AI LTD
Providing support to test the solutions developed across the sector. The principle followed is to assure quality assurance in any functionally and/or non-functionally solutions. This includes performing manual, automated or a combination of both.
-
Mitra Innovation
Mitra provides, quality assurance testing and test automation services for, application systems, cloud, database, mobile applications, and integration.
-
SALUS DIGITAL SECURITY LIMITED
Application testing against the OWASP top 10 to identify any security vulnerabilities present as a result of insecure coding of mobile interfaces. Our mobile testing methodology also covers the OWASP Mobile Testing Guide, and covers both on-host security considerations, in addition to network-based attack vectors.
-
CIO-OFFICE LLP
Our comprehensive Test Management services, covers aspects such as test policy, implementation planning, strategy, remediation and tooling to ensure high quality and high end testing of software applications. We can manage the test delivery of complex projects or programmes, where test teams demand extensive test co-ordination under exacting delivery timelines.
-
CGI IT UK LIMITED
CGI have an in-depth knowledge of the telecommunications sector and with expertise in the latest 5G technology, are uniquely qualified to conduct CREST penetration testing on critical and non-critical systems while not disrupting the workings of the organisation.
-
CYFOR
Cyber Incident Response Readiness Testing service by CYFOR evaluates your organisation's preparedness to handle cyber threats. We simulate realistic cyber incidents to test response strategies, identify weaknesses, and provide actionable feedback to enhance your readiness and response capabilities.
-
Atlas Cloud
Penetration testing, often referred to as pen testing, is a proactive security practice. It involves simulating cyberattacks on an organization’s systems, networks, or applications to identify vulnerabilities. The goal is to strengthen security measures by uncovering weaknesses before malicious actors exploit them.
-
CIRRO LIMITED
Identify and address vulnerabilities in your ICT or OT infrastructure to protect your organisation, its customers and its reputation. Ensure ongoing compliance with key standards such as Cyber Essentials, ISO27001.
Identify your weak spots before others do.
Best practice recommends periodically changing Pentest providers so why not come to us?