CREST is a not for profit organisation that serves the needs of a technical information security marketplace that requires the services of a regulated professional services industry.

CREST represents the technical information security industry by offering a demonstrable level of assurance of processes and procedures of member organisations

Latest News
New CREST report highlights need for Bug Bounty best practice
26th July 2018

Lack of standards for bug bounties is leaving researchers, organisations and bounty platforms confused and at risk 26 July 2018:  Bug Bounty programmes are in urgent need of defined best practices and codes of conduct conclude CREST, the not-for-profit accreditation body representing the technical information security industry, in its latest position report ‘Bug Bounties; Working […]


Collaborative Alliance of Organisations Announced to Advance the UK’s Cyber Security Profession
19th July 2018

Effort backed by Leading Bodies in the Field Aims to Support National Cyber Security Strategy 19 July 2018, London:  In recognition of the United Kingdom’s increasing economic dependence on internet-enabled capabilities, a number of established councils, chartered professional bodies, professional certification bodies, academics and industry representative groups have established a collaborative alliance to advance the […]


Latest Events
CRESTCon, which was run in conjunction with IISP Congress again this year, saw a record number of delegates at over 400. The addition of a third stream and a bookshop both proved popular so we plan to further develop these for 2017
Latest Research
Closing the Gender Gap in Cyber Security.