Fortis Cyber Security Limited

CREST Accredited Penetration Testing

We offer a full range of CREST penetration testing, adversarial testing and red teaming services. As a CREST accredited company our consultants are skilled and experienced. We deploy proven methodologies and industry best practice to assess your environment; identify and report on security vulnerabilities; and deliver clear, concise remediation advice.

Features

• Infrastructure (external and internal), web application, API security penetration testing
• Cloud (Azure, AWS & GCP) security penetration testing
• Vulnerability scanning and management
• Microsoft 365, Active Directory and Azure security configuration reviews
• Digital and physical social engineering
• Firewall rule configuration reviews
• End user device and server security build reviews
• Adversarial Testing
• Purple and Red Teaming

Benefits

• CREST accredited penetration testing provider
• Identify and address vulnerabilities before they can be exploited
• Significantly reduce the risk of falling victim to cyber attacks
• Ensure compliance with regulatory requirements, industry standards & security frameworks
• Actionable steps to address identified vulnerabilities
• Prioritised recommendations for remediation
• Optimise overall security posture
• Highly skilled, certified and experienced consultants
• Reduce the risk of security breaches and data compromises

£745 to £1,245 a unit a day

• Education pricing available

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at matt@fortiscyber.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

212709006108768

Contact

Direct Sales - Matt Leonards
‭020 8158 7564‬
matt@fortiscyber.co.uk

Planning

• Planning service: Yes
• How the planning service works: At Fortis Cyber we work with our customers from the outset to identify the required scope and help them navigate the complexities of implementing information security controls. We provide bespoke support and guidance to ensure the services meet each customer's specific business needs and objectives.
• Planning service works with specific services: Yes
• Hosting or software services the planning service works with: Penetration Testing

Training

• Training service provided: Yes
• How the training service works: All training is bespoke and we work with the client to tailor each provision to their individual requirements
• Training is tied to specific services: No

Setup and migration

• Setup or migration service available: Yes
• How the setup or migration service works: Fortis Cyber provides additional security assurance services to support customers in setting up or managing their environments and systems. This ensures and assures that the systems are secure.
• Setup or migration service is for specific cloud services: No

Quality assurance and performance testing

• Quality assurance and performance testing service: Yes
• How the quality assurance and performance testing works: Fortis Cyber is an ISO 9001 certified business and delivers quality assurance and performance testing using best practice techniques, policies, processes and proven assurance testing standards. We work closely with customers to develop a comprehensive test plan and strategy tailored to their specific requirements.

Security testing

• Security services: Yes
• Security services type:
  • Security strategy
  • Security risk management
  • Security design
  • Cyber security consultancy
  • Security testing
  • Security incident management
  • Security audit services
• Certified security testers: Yes
• Security testing certifications:
  • CREST
  • Cyber Scheme
  • Other
• Other security testing certifications:
  • Cyber Scheme Team Leader (CSTL)
  • Offensive Security Certified Expert (OSCE)

Ongoing support

• Ongoing support service: No

Service scope

• Service constraints: We do not have any known constraints

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: For initial enquiries customers should expect a response within 24 hours. During engagements the team is available to respond to questions during standard office hours (Mon-Fri from 9am-5pm); ; Out of hours support is available by prior arrangement
• User can manage status and priority of support tickets: No
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Support levels: All customers have a dedicated account manager, they are also assigned a dedicated security testing consultant. In addition customers have direct access to Fortis Cyber's Delivery Manager who is on hand to answer any queries regarding the engagement and ensure continuity of support.

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Developed Vetting (DV)

Standards and certifications

• ISO/IEC 27001 certification: No
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: Yes
• Any other security certifications:
  • CREST Accreditation - Penetration Testing
  • IASME Cyber Assurance Level 2 Audited Certification
  • NCSC Assured Service Provider
  • Cyber Essentials Certification Body
  • Cyber Essentials Plus Certification Body
  • IASME Cyber Assurance Certification Body
  • NCSC Cyber Advisor Certified

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  Fortis Cyber is committed to environmental sustainability and fighting climate change. Employees are enabled to work from home, cutting down on carbon emissions from commuting. We promote virtual meeting tools to minimise the need for business travel and encourage the use of public transportation when working off site or attending in-person meetings.; ; We utilise digital documentation and communication tools such as electronic signatures, digital contracts, and cloud-based storage solutions to reduce paper consumption and waste.; ; Wherever possible as a company we adopt eco-friendly practices, such as recycling, avoiding single use items, and using renewable energy sources and we encourage all staff to consider their individual impact on climate change.

  Covid-19 recovery

  Fortis Cyber's Covid-19 management policy is in line with current Public Health England guidance.

  Tackling economic inequality

  Fortis Cyber is committed to fair employment practices. We pay fair wages and provide equitable opportunities for advancement within the company with transparent hiring and promotion processes that prioritise merit, skill and aptitude. We provide training and development opportunities to help employees enhance their skills and qualifications and support career advancement and upward mobility within the company. We incorporate principles of equity, diversity, and inclusion into the company's core values, policies and business practices.

  Equal opportunity

  Fortis Cyber is dedicated to achieving a working environment which provides equality of opportunity and freedom from unlawful discrimination. The company is actively committed to opposing all forms of discrimination and removing unfair and discriminatory practices.; We aim to provide a service that does not discriminate against our customers and partners in the means by which they can access our services and we endeavour to treat everyone with respect and dignity and avoid discriminating against people either via conscious or unconscious biases.

  Wellbeing

  We offer flexible and remote working opportunities to accommodate employees' personal responsibilities and enable a better work-life balance. We maintain open and transparent communication channels between all staff and encourage employees to seek help when needed. We regularly check in with staff to assess their workload and wellbeing and work with them to address any concerns or challenges they may be facing. We encourage employees to take regular breaks and use their full annual leave entitlement and set clear expectations around working hours to ensure everyone has time to recharge outside of work.; We cultivate an inclusive workplace culture where staff feel valued, respected, and empowered to contribute their ideas and we support employees' professional development goals. As a predominantly remote-based organisation we aim to foster a sense of community and belonging among employees through regular online and in-person events.

Pricing

• Price: £745 to £1,245 a unit a day
• Discount for educational organisations: Yes

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at matt@fortiscyber.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.