NETSPI UK LIMITED
Penetration Testing as a Service (PTaaS)
We build a tailored security dashboard to manage your entire testing portfolio, reviewing real-time data from both manual and automated vulnerability sources. With granular security reporting, simple step-by-step vulnerability fix instructions, and continuous testing and coverage year-round, we keep your applications and networks secure and free from vulnerabilities.
Features
- Continuous scanning using proprietary Scan Monster technology
- Vulnerabilities are automatically deduplicated and verified by pentesting team
- Quantifiable cybersecurity risk scores across projects, assets, applications, networks
- Resolve: Our live, real-time consumable penetration testing results platform
- Single-pane dashboard of vulnerabilities for drill down trend analysis
- Interactive remediation instructions for vulnerability patching or fixing
- Integrate with your ticketing system and remediation tools
- Deep dive manual pen testing on applications and networks
- Threat Modelling technical analysis of your environment and countermeasures
- Risks management of virtualization platforms e.g., VMware and Citrix
Benefits
- Identify, validate, prioritise vulnerabilities across web, mobile, thick, virtual applications
- Vulnerability scanning across AWS, Azure, Google Cloud Platform infrastructure
- Secure internal, internet-facing, and cloud-based IT network infrastructure
- Internet of Things (IoT): ATMs, automotive technology, medical devices
- Mitigate risks with adversarial attacks on machine learning systems
- Blockchain pentesting including private, permissioned, consortia, and public deployment
- Static Application Security Testing (SAST), triaging, and instructor-led training
- Secure Code Review (SCR) service
- Human-Driven Automated Pentesting (H-DAP) combined with DAST scanning tools
- Inventory and evaluate APIs for security vulnerabilities
Pricing
£1,100 a unit a day
- Education pricing available
Service documents
Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format,
email the supplier at publicsectorenquiries@netspi.co.uk.
Tell them what format you need. It will help if you say what assistive technology you use.
Framework
G-Cloud 14
Service ID
8 4 3 3 5 4 4 3 7 9 1 2 9 6 8
Contact
NETSPI UK LIMITED
Courtney Bryan
Telephone: +442081545379
Email: publicsectorenquiries@netspi.co.uk
Planning
- Planning service
- No
Training
- Training service provided
- No
Setup and migration
- Setup or migration service available
- No
Quality assurance and performance testing
- Quality assurance and performance testing service
- Yes
- How the quality assurance and performance testing works
- We provide organisations with an end-to-end cybersecurity and vulnerability testing service across their entire asset portfolio and network infrastructure including pentesting across: applications (web, mobile, Thick Client, APIs, virtual applications); cloud platforms (AWS, Azure, GCP); networks; IoT; AI and Machine Learning (ML); and blockchain. Our penetration testing as a service delivery model offers secure code review, threat modelling, cybersecurity maturity assessment, social engineering testing both onsite and remotely to determine employee security awareness of phishing and vishing, and “red team operations” attack simulation, putting your organisation’s security controls, policies, incident response, and cybersecurity training to the test. Live, real-time data is collated within our proprietary data visualisation platform for both granular and holistic vulnerability reporting across your estate, with tailored and user-friendly remediation instructions for vulnerability fixing. Our service integrates with your ticketing or internal remediation tools and offer a continuous, year-round testing regimen through Scan Monster, including automated deduplication, risk scoring, remediation prioritisation and manual verification by our expert cybersecurity team.
Security testing
- Security services
- Yes
- Security services type
-
- Security strategy
- Security risk management
- Security design
- Cyber security consultancy
- Security testing
- Security incident management
- Security audit services
- Certified security testers
- Yes
- Security testing certifications
-
- GBEST
- CHECK
- CREST
- Other
- Other security testing certifications
-
- CEH
- SSCP
- AZ900 - Azure Fundamentals
- OSCP
- OSED
- OSWE
- ECPPT
- RHCE
- CAP
- CISSP
Ongoing support
- Ongoing support service
- Yes
- Types of service supported
- Hosting or software provided by your organisation
- How the support service works
- We use AWS to support Resolve for our clients.
Service scope
- Service constraints
- All service constraints are reported the NetSPI Account Manager and addressed by the appropriate support staff.
User support
- Email or online ticketing support
- Email or online ticketing
- Support response times
- Our Client Success Managers will respond to support questions within 24 hours.
- User can manage status and priority of support tickets
- No
- Phone support
- Yes
- Phone support availability
- 24 hours, 7 days a week
- Web chat support
- No
- Support levels
- Our Client Success Managers are available for support or questions.
Resellers
- Supplier type
- Not a reseller
Staff security
- Staff security clearance
- Other security clearance
- Government security clearance
- None
Standards and certifications
- ISO/IEC 27001 certification
- No
- ISO 28000:2007 certification
- No
- CSA STAR certification
- No
- PCI certification
- No
- Cyber essentials
- No
- Cyber essentials plus
- Yes
- Other security certifications
- Yes
- Any other security certifications
- CREST
Social Value
- Social Value
-
Social Value
Equal opportunityEqual opportunity
NetSPI is committed to fostering, cultivating and preserving a culture of diversity, equity and inclusion. We embrace and encourage our employees’ differences in age, colour, disability, ethnicity, family or marital status, gender identity or expression, language, national origin, physical and mental ability, political affiliation, race, religion, sexual orientation, socio-economic status, veteran status, and other characteristics that make our employees unique.
NetSPI’s diversity initiatives are applicable—but not limited—to our practices and policies on recruitment and selection; compensation and benefits; professional development and training; promotions; transfers; layoffs; terminations; and the ongoing development of a work environment built on the premise of gender and diversity equity that encourages and enforces:
• Professional communication and cooperation between all employees.
• Teamwork and employee participation, permitting the representation of all groups and employee perspectives.
All employees of NetSPI have a responsibility to treat others with dignity and respect at all times. All employees are expected to exhibit conduct that reflects inclusion during work, at work functions on or off the work site, and at all other Company-sponsored and participative events.
Any employee found to have exhibited any inappropriate conduct or behaviour against others may be subject to disciplinary action.
Employees who believe they have been subjected to any kind of discrimination that conflicts with the Company’s diversity policy and initiatives should seek assistance from People Operations.
Pricing
- Price
- £1,100 a unit a day
- Discount for educational organisations
- Yes
Service documents
Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format,
email the supplier at publicsectorenquiries@netspi.co.uk.
Tell them what format you need. It will help if you say what assistive technology you use.