Login to profile

Meet Our Community Supporters

CREST Community Supporters contribute to our mission to build capability, capacity, consistency and collaboration in the global cyber security industry and help raise awareness of CREST and our members.

Click on our Community Supporters below to learn more about them and visit their websites.

CREST Community Supporter logos

Platinum Supporter


Marsh is the world’s leading insurance broker and risk advisor. With more than 45,000 colleagues advising clients in over 130 countries, Marsh serves commercial and individual clients with data-driven risk solutions and advisory services. Marsh is a business of Marsh McLennan (NYSE: MMC), the world’s leading professional services firm in the areas of risk, strategy and people. With annual revenue of $23 billion, Marsh McLennan helps clients navigate an increasingly dynamic and complex environment through four market-leading businesses: Marsh, Guy Carpenter, Mercer and Oliver Wyman. For more information, visit marsh.com, and follow us on LinkedIn and X.

Gold Supporter

Stott and May Consulting Ltd

Stott and May Consulting are revolutionizing the way businesses navigate technology transformation. We empower project leaders to take back control of their most important initiatives, ensuring projects are scoped, resourced, tracked, and delivered in line with the latest industry best practices. Our unique combination of subject matter expertise in technology consulting, project governance, and neurodiversity makes it easy for organizations to build inclusive teams, shape deliverables, and execute technology transformation with predictable precision.

Visit the Stott and May Consulting Ltd website.

Not-for-profit Supporters

Australian Cyber Collaboration Centre

The Australian Cyber Collaboration Centre is a not for profit organisation backed by the Department for Innovation and Skills, Government of South Australia established to: develop the future cyber workforce, provide hardware and software testing capability, build cyber security awareness and capability with a focus on Boards, C-suite executives, SMEs and government, and enhance Australia’s cyber ecosystem through increased collaboration between research, industry and government. The Centre features: a cyber training academy and test range facility, physical spaces for collaboration, infrastructure to support product testing and training and access to and delivery of best of breed training courses.

Visit the Australian Cyber Collaboration Centre website.

Arab Association for Cyber Security (ArCS)


The Association’s mission is to revive interaction between Arab scientists and experts through programs and events to promote research and practice in the field of cybersecurity.

Vision of the Association

To be a pioneer in the region in the field of coordination and cooperation between scientists and experts in the field of cybersecurity.

Visit the ArCS website.

Center for Internet Security (CIS)

The Center for Internet Security, Inc. (CIS®) makes the connected world a safer place for people, businesses, and governments through our core competencies of collaboration and innovation. We are a community-driven nonprofit, responsible for the CIS Controls® and CIS Benchmarks, globally recognized best practices for securing IT systems and data. We lead a global community of IT professionals to continuously evolve these standards and provide products and services to proactively safeguard against emerging threats.

Visit the Center for Internet Security (CIS) website.

CI-ISAC Australia Ltd

Information Sharing & Analysis Centres (ISACs) represent an opportunity for Industry to self-organise and manage their own challenges — engaging with Government on their own terms. The model has been proven effective over the last two decades as sector-specific US ISACs expanded globally.

CI-ISAC has evolved the standard ISAC model to operationalise the world’s first cross-sectoral ISAC focussed on providing enabling capabilities and structures to support the collective defence of Australian Critical Infrastructure. The strength and utility of an ISAC is directly related to the number of members it has brought together and the diversity of insights and knowledge that these members bring to the ISAC’s intelligence-sharing platform.

Visit the CI-ISAC Australia Ltd website.

Cyber Readiness Institute

At the Cyber Readiness Institute, our mission is simple: empower small and medium-sized enterprises with free tools and resources to help them become more secure and resilient. When we’re all cyber ready, we’re all cyber strong.

Visit the Cyber Readiness Institute website.

Cloud Security Alliance

The Cloud Security Alliance (CSA) is the world’s leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment. CSA harnesses the subject matter expertise of industry practitioners, associations, governments, and its corporate and individual members to offer cloud security-specific research, education, certification, events and products. CSA’s activities, knowledge and extensive network benefit the entire community impacted by cloud — from providers and customers, to governments, entrepreneurs and the assurance industry — and provide a forum through which diverse parties can work together to create and maintain a trusted cloud ecosystem.

Visit the Cloud Security Alliance website.


Recognizing that many cyber security professionals – our very defenders – are themselves under sustained and increasing stress, we set about providing direct support to restore and rebuild emotional and cognitive health and alleviate suffering.

It’s not just cyber professionals we want to help. It’s their clients and those who suffer as victims of attacks, their staff, anyone in the cyber community who may be feeling a little overwhelmed.

Visit the Cybermindz website.

Cyber Threat Alliance

CTA is the industry’s first formally organized nonprofit group of cybersecurity practitioners that work together in good faith to share threat information and improve global defenses against advanced cyber adversaries. CTA’s mission is to facilitate the sharing of actionable intelligence and situational awareness about sophisticated cyber threats to improve its members’ cyber defenses, more effectively disrupt malicious cyber actors around the world and raise the level of cybersecurity throughout the Internet and cyberspace. The alliance is continuing to grow on a global basis, enriching both the quantity and quality of the information that is being shared across the platform. CTA is actively recruiting additional regional players to enhance information sharing to enable a more secure future for all.

Visit the Cyber Threat Intelligence website.

Forge Institute

We lead the world in leveraging new capabilities to eliminate cyber threats. Forge Institute is the Nation’s leader in advancing cyber capabilities through innovative partnerships across the public and private sectors. Our mantra, “Forever One Step Ahead,” is our reminder to remain vigilant, updated, and innovative against an enemy that seeks nothing less than the permanent disruption of our way of life.

Visit the Forge Institute website.

Global Anti Scam Alliance (GASA)

Our mission is to protect consumers worldwide from scams by raising awareness, enabling hand-on tools for consumers and law enforcement, facilitating knowledge sharing, organizing research, supporting the development of (legal) best practices, and offering training and education. The number of online scams is booming. Nearly $50 billion was lost by consumers last year in scams. The number of scams reported to law enforcement grew by 90% to more than 266 million reports. However, this is only the tip of the iceberg as only 7% of all victims report the online scam to the police. Still, in most developed countries 20 to 40% of all reported crime is now related to online fraud. Scammers, however, can go free because they can operate globally, while law enforcement operations locally, regionally, or nationally. According to the World Economic Forum, only 0,05% of all cybercriminals are prosecuted.

Visit the GASA website.

Global Cyber Alliance

The Global Cyber Alliance has a singular purpose: to reduce cyber risk. The Global Cyber Alliance (GCA) is an international nonprofit organization dedicated to eradicating cyber risk and improving our connected world. GCA works with our partner community worldwide to build practical, accessible resources and measure their impact, in order to achieve a secure, trustworthy Internet that enables social and economic progress for all.

Visit the Global Cyber Alliance website.

Global Resilience Federation, Inc.

GRF builds, develops and connects security information sharing communities for mutual defense. GRF, with nearly 20 years of experience, is a nonprofit provider and hub for cyber, supply chain, physical and geopolitical threat intelligence exchange between information sharing and analysis centers (ISACs), organizations (ISAOs) and computer emergency readiness/response teams (CERTs) from many different sectors and regions around the world. We all count on the resiliency of essential services – services from the electricity powering our homes and the connectivity of entertainment apps, to the legal systems and financial pipelines driving the global economy.  But this infrastructure faces constant threats from hacktivists, criminals and rogue states, and they are growing in sophistication. GRF will help your industry develop or enhance a trusted sharing community, obtain actionable intelligence, and support you in emergencies.

Visit the Global Resilience Federation website.


ISACA® (www.isaca.org) is a global community advancing individuals and organizations in their pursuit of digital trust. For more than 50 years, ISACA has equipped individuals and enterprises with the knowledge, credentials, education, training and community to progress their careers, transform their organizations, and build a more trusted and ethical digital world. ISACA is a global professional association and learning organization that leverages the expertise of its more than 170,000 members who work in digital trust fields such as information security, governance, assurance, risk, privacy and quality. It has a presence in 188 countries, including 225 chapters worldwide. Trough the ISACA Foundation, ISACA supports IT education and career pathways for underresourced and underrepresented populations.


Our vision is clear: A safe and secure cyber world.
ISC2 is the world’s leading member association for cybersecurity professionals. Our more than 600,000 members, candidates and associates lead the profession with the same shared vision. ISC2 strengthens the influence, diversity and vitality of the field through advocacy, expertise and workforce empowerment that accelerates cyber safety and security in an interconnected world.

Visit the ISC2 website.

Information Systems Security Association UK

Connecting Cyber Security Leaders.

Welcome to ISSA-UK, the UK Chapter of the ISSA. With active participation from individuals and chapters all over the world, the Information Systems Security Association (ISSA) is the largest international, not-for-profit association specifically for information security professionals. Having welcomed over 1,800 members since our beginnings in 2003, the ISSA-UK Chapter is the world’s largest Chapter.

Visit the Information Systems Security Association LinkedIn profile.

Kibernetinio saugumo ekspertų asociacija (KSEA) - The Association of Cyber Security Experts

We are an independent association of cybersecurity experts who develop, support and improve the technical competence and management knowledge of the sector in order to promote the integrity of the competencies of cybersecurity and information security professionals and the application of good practices in Lithuania.

Visit the KSEA website.

MITRE Engenuity

Born of the reality that R&D investments are shifting dramatically to the private sector, MITRE Engenuity was formed in 2019 as a part of MITRE Corporation. It is our fundamental belief that without guidance, nurturing, and radical collaboration, these critical industry investments might be lost in a sea of ideation without implementation. MITRE Engenuity addresses the realities of the ever-shifting landscape of American Innovation and the impact drivers who guide it, convening experts, organizations, and investors in a non-competitive space to drive generational impact for public good.

Visit the MITRE Engenuity website.


We are a network of passionate industry volunteers led by a Board who are, or have connections to, brilliant neurodivergent people. We are driven to improve career outcomes for neurodivergent colleagues, to enrich the sector and thereby positively impact the cyber skills gap in the UK.

Visit the NeuroCyber website.

Nomad Futurist Foundation

The Nomad Futurist Foundation is a 501(c)(3) non-profit organization established to demystify the world of digital infrastructure and the related technologies that impact every aspect of our daily lives. Our primary focus is to empower and inspire younger generations through exposure to the underlying technologies that power our digital world. Through the contributions of our supporters, we are launching global programs in partnership with a range of education providers, NGOs and other nonprofit organizations committed to educating children in underprivileged communities.

Visit the Nomad Futurist Foundation website.


The Open Worldwide Application Security Project (OWASP) is a nonprofit foundation that works to improve the security of software. Our programming includes:

  • Community-led open-source projects, including code, documentation, and standards
  • Over 250+ local chapters worldwide
  • Tens of thousands of members
  • Industry-leading educational and training conferences

We are an open community dedicated to enabling organisations to conceive, develop, acquire, operate, and maintain applications that can be trusted. All of our projects, tools, documents, forums, and chapters are free and open to anyone interested in improving application security. The OWASP Foundation launched on December 1, 2001, becoming incorporated as a United States non-profit charity on April 21, 2004.

For two decades corporations, foundations, developers, and volunteers have supported the OWASP Foundation and its work. DonateBecome a Member, or become a Corporate Supporter today.

SFIA Foundation

The  SFIA Foundation is a global not-for-profit organisation, whose main role is to maintain and distribute SFIA.

The Skills Framework for the Information Age (SFIA) has been around since the turn of the century, and is a system for IT Professionals to match the Skills of the workforce to the requirements of the business. It is a logical two-dimensional skills framework defined by areas of work on one axis and levels of responsibility on the other. It has been proven as an effective resource that benefits business by facilitating all aspects of the management of capability in corporate and educational environments.

Visit the SFIA Foundation website.

The Security Institute

The Security Institute is the largest security membership organisation based in the UK with members worldwide. We have over 4,300 members across all types of businesses, and at all stages of their security career.

Visit The Security Institute website.

Our supporters play an important role as part of the CREST community. If your organisation shares our mission to build trust in the digital world, we would welcome you to join us as a CREST Community Supporter.

To find out more about the benefits for your organisation and how to apply, please visit our CREST Community Supporters page.

Learn more about Community Supporters Apply to become a Community Supporter