Skip to main content

Beta Help us improve the Digital Marketplace - send your feedback

Stratia Consulting Ltd

CREST Penetration Testing

Stratia Cyber offers industry-leading, CREST-approved Penetration Testing for infrastructure and Web Applications. Our team consists of highly accredited and experienced professionals. We help organisations comprehend the risks associated with vulnerabilities and clearly demonstrate the potential business impact if these vulnerabilities were exploited.

Features

  • CREST member for comprehensive Penetration Testing.
  • Services tailored to specific testing needs.
  • Wireless Network and Segmentation Penetration Testing.
  • Manual, thorough testing methodologies.
  • Web Application Penetration Testing following OWASP guidelines.
  • Infrastructure Penetration Testing services.
  • Vulnerability scanning and management solutions.
  • IT Health Check - ITHC services.
  • Cloud Security Assessments
  • Social Engineering Tests

Benefits

  • Enhances stakeholder confidence in cybersecurity measures.
  • Mitigates future vulnerabilities with proactive detection.
  • Security Assurance for your organisation
  • Clear, concise Penetration Test reporting.
  • Testers qualified in CHECK, CRT, OSCP
  • Understand real business risks and exposures.
  • Cost-effective Penetration Testing solutions.
  • Enhanced Quality Assurance with regular testing.

Pricing

£650 to £1,200 a unit a day

  • Education pricing available

Service documents

Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at cyber@stratiacyber.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

4 2 0 4 1 0 3 2 3 2 6 5 5 8 6

Contact

Stratia Consulting Ltd Paul Maxwell
Telephone: 0800 644 0193
Email: cyber@stratiacyber.com

Planning

Planning service
No

Training

Training service provided
No

Setup and migration

Setup or migration service available
No

Quality assurance and performance testing

Quality assurance and performance testing service
No

Security testing

Security services
Yes
Security services type
  • Security strategy
  • Security risk management
  • Security design
  • Cyber security consultancy
  • Security testing
  • Security incident management
  • Security audit services
Certified security testers
Yes
Security testing certifications
CREST

Ongoing support

Ongoing support service
No

Service scope

Service constraints
N/a

User support

Email or online ticketing support
No
Phone support
Yes
Phone support availability
9 to 5 (UK time), Monday to Friday
Web chat support
No
Support levels
Support is an included element of all our service offerings

Resellers

Supplier type
Reseller providing extra support
Organisation whose services are being resold
Qualys

Staff security

Staff security clearance
Conforms to BS7858:2019
Government security clearance
Up to Developed Vetting (DV)

Standards and certifications

ISO/IEC 27001 certification
Yes
Who accredited the ISO/IEC 27001
British Assessment Bureau
ISO/IEC 27001 accreditation date
04/02/2019
What the ISO/IEC 27001 doesn’t cover
Full certification (latest issue: 14/02/2022)
ISO 28000:2007 certification
No
CSA STAR certification
No
PCI certification
No
Cyber essentials
Yes
Cyber essentials plus
Yes
Other security certifications
Yes
Any other security certifications
  • CREST
  • ISO9001

Social Value

Social Value

Social Value

Tackling economic inequality

Tackling economic inequality

Stratia Cyber’s Social Value Policy (SVP) is based on our own social values and Government guidance. We have structured it in meaningful and practical terms to reflect the art of the possible and applicability to a company of our size and spread. Our four-part strategy is rooted in:

Stratia Cyber embraces Equal Opportunities and this is reflected in three of five of our core values from Business Plan 2022/3:

Ethical Behaviour. We act ethically and our activities are always legal.

Inclusivity. We are inclusive. We share perspectives with our people and our customers.

We have never differentiated based on culture, disability, sexual orientation, sex, belief, pregnancy, maternity, religion, age, or race. It is enshrined in our Equality, Inclusion and Diversity Policy contained in our Employee Handbook; part of everyone’s Terms and Conditions. Breaches are automatically disciplinary offences.

We tackle inequality by continuously monitoring pay, contributions, development, and training needs. Key tenets of our method are:

Recruitment By Blind Hire. In developing short lists, we ensure that no one feels disadvantaged, and reinforce our neutrality using skill-based technical interviews. Before hiring we gain, within GDPR/DPA, an “eyes open” understanding of any factors which require flexibility in working practices, kit, or hours. This includes mental, medical, neurodiversity, ability to travel, disabilities, and caring responsibilities.

Enforcement. We insist that contracted third parties enact our policy which we share with them.

Skills. We know our workforce is highly skilled and understand their value in this buoyant market.

Retention. We match individuals to projects to ensure success. A Director oversees each engagement to give confidence, escalation, and support.

Our Makeup. We live our policy. Our workforce includes females, ethnic minorities including the highest paid consultant, is multi-national, is neurodiverse, individuals from disadvantaged backgrounds, and with an age range of 27 to 68.

Pricing

Price
£650 to £1,200 a unit a day
Discount for educational organisations
Yes

Service documents

Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at cyber@stratiacyber.com. Tell them what format you need. It will help if you say what assistive technology you use.