Login to profile

CREST Focus Groups

CREST Focus Groups help us to continually monitor best practice in Penetration Testing, Threat Intelligence, Incident Response, Intelligence-Led Testing and SOC.

They also aid CREST in the development of its accreditation and certification requirements, ensuring that they remain fit for purpose and keep abreast of technological advancements.

Each group provides a sector specific focus for members and offer the opportunity for them to benefit from purposeful networking opportunities.  Membership is open to any representative from a member company accredited to the discipline.  Each Group has the following responsibilities:

  • Review membership accreditation processes;
  • Review related examination syllabuses;
  • Provide feedback to the CREST Assessors on examination content and quality, via their Focus Group Sub-Committee;
  • Provide feedback on discipline related issues;
  • Horizon-scan upcoming social, technological, economic, legal, regulatory, political and ethical factors that may impact their specialist area;
  • Provide direction to CREST, its initiatives and support related government initiatives;
  • Support Industry Advisory Groups.

Our Terms of Reference document provides key information and defines the terms that apply to all CREST’s Focus Groups and their Sub-Committees. Please note that due to the geographical spread and number of accredited companies, the split and number of seats varies for each Focus Group. Furthermore, where not all disciplines are represented across the regions, this would be reflected in the sub-committee composition.

Each Focus Group is run by an elected Sub-Committee of members globally with the number of seats per region based on the number of accredited companies in each region.

If you are interested in learning more about the activities of these Focus Groups, please email [email protected]


Penetration Testing Focus Group Sub-Committee Members

Vincent Goovaerts, KrollPhil Arkwright, WithSecureChathura Abeydeera, KPMG AustraliaPatrick Cleary, Emagined Security Inc
Miguel Marques, Quorum CyberFaizal Ashruf, USTAbartan Dhakal, Stickman CyberTaylor Smith, Pivot Point Security
Tim Reed, Sentrium Security LtdManish Chawda, Pragma Pte LtdJack Rutherford, Triskele LabsTony UcedaVelez, Versprite (Vice-Chair)
Boglarka Ronto, Resillion (Chair)Cameron Leong, Centurion
Abhijeet Udas, NCC GroupSamuel Pua, WatchTowr
Tom Wedgbury, Nettitude GroupLouis Truong, VSEC
William Wright, Closed Door Security


Incident Response Focus Group

Stefano Maccaglia, RSAJason Ka Lee, PwC Hong Kong (Vice-Chair)Chathura Abeydeera, KPMGDavid Brilliant, Alvarez & Marsal
Benn Morris, 3B Data Security (Chair)
Adrian Shaw, Nettitude Group


Threat Intelligence

Oliver Church, Orpheus Cyber (Chair)Jason Smart, PwC
Rob Dartnall, Security Alliance (Vice-Chair)
Oliver Fairbank, Northern Trust (Co-opted member)
Oliver Fay, Accenture
Matthew Hull, NCC Group
Thomas Padden, BAE Systems Digital Intelligence
Grace Tryphona, Nettitude


CREST Intelligence-Led Testing Focus Group

Dominic Chell, MDSecSaeid Atabaki, TrustwaveChathura Abeydeera, KPMG (Vice-Chair)
Matt Lorentzen, Cyberis (Chair)
Doug McLeod, Nettitude Group
Frederic Vleminckx, DXC Technology


CREST Security Operations Centre (SOC) Focus Group

Leigh Collett, Accenture (Chair)Ramesh Naidu, Vigilant Asia (Vice-Chair)
Alan Freeland, DigitalXRAIDAneesh Jayakumar, Cyberproof
John Lodge, Socura
Martin Riley, Bridewell Consulting Ltd


Diversity and Inclusion Group
CREST’s Diversity and Inclusion Group was established to look at all areas of diversity and inclusion in the cyber security industry.

The purpose of the group is to support the development of inclusion practices and the integration of diversity issues across all aspects of the technical cyber security industry.  Through monthly calls, the group helps to ensure that all actions set out from CREST reports and workshops are carried out and that recommendations are made to the CREST International Council about how to move these actions forward.

The group is also responsible for the planning and direction of CREST’s Access to Cyber Security Day events that aim to encourage more people into cyber security careers and help make the industry a good place to work for everyone.

Members include:

  • Boglarka Ronto (Chair) – Resillion
  • Allie Andrews – PRPR
  • Karen Bolton – Nettitude
  • Dr Yulia Cherdantseva, Cardiff University
  • Lizzie Coles-Kemp – Royal Holloway University
  • Adriana Costa-McFadden – CREST International
  • Alex Crompton – BAE
  • Edd Hardy – Alix Partners
  • Elaine A Luck – CREST International
  • Elizabeth Quaglia – Royal Holloway University
  • Karla Reffold – Surefire Cyber
  • Lisa Ventura – Cyber Security Unity

The group has already been responsible for the delivery of a number of CREST reports and publications including:

Equity, Inclusion and Diversity in National Cyber Security Strategy

Women in cyber stories uncut

Neurodiversity in the workplace

Exploring the gender gap

Physical disability – addressing the accessibility challenges

Combatting stress and burnout

Top Tips for Diversity & Inclusion

For more information or to join our Diversity and Inclusion Group, please contact [email protected]