Login to profile
Pen Test Partners

Pen Test Partners (PTP) has been providing cyber security expertise to a huge variety of industries and businesses since 2010. We are the largest independent security testing and consultancy business in the UK with over 100 UK based employees.  We also have offices in Europe and the US and sit on the board of CREST in the US.

PTP tests the security of all computer and internet connected devices, applications, software, hardware and cloud services as well as providing essential Cyber Security consultancy and, Digital Forensic Incident Response (DFIR).

In addition to CREST we are certified by other bodies to deliver our clients best-in class cyber security services. These include CHECK, CBEST, TIBER, PCI QSA, Cyber Essentials Plus, and ASSURE.  We are also ISO 27001 certified across our entire business operations.

Our Services:

  • Penetration Testing
    • API
    • Web based Applications testing
    • Application Code Reviews
    • Vulnerability Assessments
    • Mobile Application testing
    • IT Health Check, Build reviews
    • Firewall rulebase Audit
    • Infrastructure and Architecture Security Reviews
    • Scenario-based Penetration Testing
    • Client Security (kiosks, workstations, laptops, mobile devices)
    • Physical penetration testing and Social engineering audits
    • Wireless Testing
    • CREST OVS accredited 
  • Red Team Testing
  • Consultancy
    • ISO27001
    • PCI DSS
    • Cyber Essential, Cyber Essential Plus
    • Cloud Security reviews

Contact: Ken Munro / Tariq Ahmed
E: [email protected]

T: +44 (0)20 3095 0500

CREST Accreditations

Other Accreditations

Non-Accredited Services

Cyber Security Incident Response

Digital Forensic Incident Response (DFIR)

As a CREST-Approved Computer Security Incident Response Team, PTP has a wealth of experience in helping organisations respond to and recover from real world cyber security incidents from attackers of varying levels of sophistication, including against Advanced Persistent Threat (APT) groups.

We use a variety of cutting-edge tools and technology to conduct DFIR services, including proprietary tooling and third-party recognised best-in-class tools such as CrowdStrike, Autopsy, Cyber Triage and Axiom.

  • Compromise Assessments
  • Incident Response Services
  • Incident Response Retainer Services (includes Compromise and Maturity Assessments)
  • IR maturity Assessment
  • First Responder Training
  • Digital Forensics Services
  • 24/7 hotline
  • Preferential days rates for retained service
  • Market-leading Service Level Agreement (SLA) response times for retained service
    • Telephone assistance 4 hours
    • Remote access into environment 16 hours
    • UK Onsite response 24 hours

Contact: Luke Davis – Head of DFIR
[email protected]
Phone:+44 (0) 7496 223060

  • Contact: Ken Munro / Tariq Ahmed


Security Consultant

We are seeking an enthusiastic security consultant, who is eager to learn to join our team. Working alongside some of the best hacking minds in the country, you’ll be delivering pen testing services to clients across all sectors. You will need: A minimum of 2 years experience delivering pen test services To be proficient in infrastructure and web application testing, experience in API testing is desirable Hold or previously held an industry recognised certification (this can be at any level from OSCP to CTL equivalent). Please click on the 'title', to view more information.

Hardware Security Consultant

We are seeking a hardware security consultant, who is eager to learn, to join our team. Working alongside some of the best hacking minds in the country you’ll be delivering a mixture of hardware and pen testing services to clients across all sectors. You will need: Strong skills in web application, API and mobile testing Excellent ability to learn new technologies, systems, and languages A keen interest in embedded systems and hardware Demonstrated hardware security skills either in professional or hobbyist sphere Strong network protocol analysis using tools such as Wireshark An understanding of reverse engineering, experience using tools such as IDA and Ghidra, with particular focus on ARM architecture. Please click on the 'title', to view more information.