Formed in 2001, Secarma Limited (formerly Pentest Ltd) is an established, independent security consultancy, specialising in Web Application Testing. Secarma Limited is a trusted provider to hundreds of UK and International organisations, across a range of sectors including banking, telecommunications, healthcare, IT and local and national government.
We genuinely want to help organisations to become more secure. Our consultants offer frank, reliable and practical advice for the sole benefit of the customer, rather than ‘building the account’. We develop an individual relationship with each of our clients, ensuring we understand the business drivers, technical requirements and specific sensitivities of each requirement. Secarma Limited has grown primarily through customer referral, and we are extremely proud of our exemplary technical track record and customer satisfaction.
Our services include:
- Web Application Penetration Testing
- Internal and External Infrastructure Security Assessments
- Mobile Security Assessments
- IT Health Checks
- Secure Coding Training Workshops
- Static Code Analysis Tools
- Database Security Assessment Service
- Information Security Consultancy
Our CREST and CHECK approved penetration testing services include:
Web Application Penetration Testing
Since our formation in 2001, Secarma Limited (formerly Pentest Ltd) has recognised that the new battle ground in cyber security is at the application level; contrary to Network security, few companies deploy defensive measures or perform comprehensive testing of applications. Furthermore many applications are developed by 3rd parties where the security culture is unknown to the purchasing organisation. Secarma’s application testing methodology has been rigorously refined and perfected, and utilises a combination of automated tools and skilled manual testing and exploitation techniques, providing a comprehensive vulnerability assessment.
Infrastructure Testing (Internal and External)
Secarma Limited offers a complete vulnerability assessment and penetration testing service designed to highlight flaws in your internal and external infrastructure defences. Secarma Limited maintains a vendor neutral position therefore providing truly independent, practical advice. We understand the importance of providing granular reports to our clients following an assessment. Our reports include a prioritised listing of the vulnerabilities, their implications and our recommendations, supported by post-test consultancy to ensure our clients receive the full value of their report.
Mobile Penetration Testing
Secarma Limited offers a range of complementary mobile device auditing and testing services, including vulnerability assessments, configuration and deployment reviews and manual security testing of both the client application and the server side services supporting the application.
Wireless Penetration Testing
Secarma’s wireless network assessment will identify active networks, and establish whether these are authorised or rogue. Alongside a technical vulnerability assessment, Secarma consultants can assist with policy reviews, including BYOD policies and client device authentication.
CREST Qualified Consultants:
Practitioner Security Analysts: Yes
Registered Penetration Testers: Yes
Certified Web Application Testers: Yes
Certified Infrastructure Testers: No
Certified Wireless Testers: No
To find out more about our Cyber Essentials service, please click here.