CREST is a not-for-profit organisation that represents the technical information security industry. As part of this, CREST provides an internationally recognised accreditation for organisations and certifications for individuals providing penetration testing, threat intelligence, cyber incident response and security architecture services.
In accordance with the ISO/IEC27001:2017 international standard, CREST has a published Information Security Policy which is available on request.
Please email [email protected]
For governance, complaints and any operational enquiries, please email: