CREST is a not for profit organisation that serves the needs of a technical information security marketplace that requires the services of a regulated professional services industry.

CREST represents the technical information security industry by offering a demonstrable level of assurance of processes and procedures of member organisations

Latest News
New CREST report highlights need for Bug Bounty best practice
26th July 2018

Lack of standards for bug bounties is leaving researchers, organisations and bounty platforms confused and at risk 26 July 2018:  Bug Bounty programmes are in urgent need of defined best practices and codes of conduct conclude CREST, the not-for-profit accreditation body representing the technical information security industry, in its latest position report ‘Bug Bounties; Working […]


CRESTCon Asia – Call for Speakers and Sponsors
6th June 2018

You are invited to submit your presentation proposals for CRESTCon Asia 2018. Presenting at CRESTCon Asia provides you with the opportunity to share your experiences, skills and knowledge with senior delegates and professionals in the security industry. All CRESTCon Asia presentations need to be technical in nature and must relate to penetration testing and assurance, […]