BSI, the business standards company, has boosted its newly created Cybersecurity and Information Resilience business stream with global membership of the organization that spearheads the highest possible levels of security testing standards, - CREST.
In achieving this status BSI joins an elite group of seven organizations , who can offer clients across EMEA, the Americas, Asia and Australasia the heavyweight assurances synonymous with CREST. BSI has also consolidated its CREST accredited services with recently acquired CREST member companies Espion and Info-Assure. The firm now offers: “CREST Penetration Testing”; “CREST Incident Response Services”; “CREST STAR (Simulated Targeted Attack and Response) Testing” as well as “Cyber Essentials”.
In supporting organizations to navigate the complex and evolving regulatory and cyber risk landscape, where stakeholders demand greater assurances, CREST membership is an important validation of BSI’s cybersecurity testing and incident response capabilities. All member companies undergo stringent assessments of business processes, data security and security testing as well as incident response methodologies. Accreditation is very robust and a challenge to attain. It demonstrates complete assurances of processes and procedures.
BSI is a strong proponent of CREST and its role in professionalising the technical security industry, as well as its efforts to advance the wider information security community through recent openings of international chapters in Singapore, Hong Kong and the USA. This approach has also garnered support from international regulators .
Ian Glover, president of CREST, says:
"I am delighted that BSI has become a full international member of CREST. As CREST continues to spearhead promoting the UK's professional cyber security skills and experience abroad our global members play an important ambassadorial role in showing the world what excellence in securing testing should be.”
BSI director and member of the CREST executive team, Martin Walsham says:
“Whether attacks from data thieves, spies or saboteurs who steal from, gain unfair advantage over or damage companies, - nowadays the risks to the confidentiality, availability or integrity of networks and associated data are immense. For cybersecurity testers and incident responders charged with protecting and defending an organization from the inside out, it is paramount our expertise is robust and thorough enough to meet the increased risks.
"Our continued alignment to CREST supports our commitment to best practice and high standards. This latest milestone gives us a strong platform to expand our global reach.”
Notes to the editor:
 The seven CREST members with global accreditation are Cisco, Context Information Security, Deloitte Touche Tomatsu, Gotham Digital Science Ltd, NCC Group, PwC, Trustwave SpiderLabs.
 In September 2016 CREST signed a cybersecurity Incident Response agreement with NSA – see press release >