Memorandum of Association
CREST is a not for profit organisation and is governed by a Memorandum of Association (MoA) as a company limited by guarantee. The MoA provides the governance structure for CREST and is available to prospective members as part of the membership application pack.
The preamble to the MoA states:
The vision of CREST is to:
1. Represent the Information Security Testing Industry and offers a demonstrable level of assurance of the processes and procedures of member organisations and validates the competence of information security testers.
In order to achieve this, the Council’s objects are to:
1.1 promote the application of high quality Information Security Testing;
1.2 establish and maintain levels of competency by which companies and individuals practicing security testing can be assessed and validated;
1.3 establish, maintain and publish a register of accredited organisations who have the resources and experience and who are appropriately qualified to deliver services as defined by the Council;
1.4 establish and maintain a register of individuals who have successfully achieved the technical qualifications required to ensure competency in the services as defined by the Council;
1.5 circulate information as may be thought desirable and as may be thought to be of interest and relevance to members of the Council and appropriate related organisations;
1.6 establish Codes of Conduct for accredited individuals and organisations;
1.7 ensure that accredited individuals and organisations remain current with emerging trends and new technologies;
1.8 promote good practice and standards internationally.