CREST Approved

In line with our mission to improve the current state of information security to world-class standards, Centurion Information Security is the first Singaporean company approved by CREST for the delivery of Penetration Testing services.


CREST is a not for profit organisation that serves the needs of a technical information security marketplace that requires the services of a regulated professional services industry.

CREST represents the technical information security industry by:

  • Offering a demonstrable level of assurance of processes and procedures of member organisations;
  • Validating the competence of their technical security staff;
  • Providing guidance, standards and opportunities to share and enhance knowledge;
  • Providing technical security staff recognised professional qualifications and those entering or progressing in the industry with support with on-going professional development.

CREST's aim is "to increase professionalism in the security testing industry" by providing organisations wishing to buy penetration testing services with confidence that the work will be carried out by qualified individuals with up to date knowledge, skill and competence of the latest vulnerabilities and techniques used by real attackers.

The Greatest Assurance of the Most Effective Tests

CREST Assurance

Combinations of accreditation for organisations and the individuals they employ.

Although value can be obtained by appointing either certified testers or certified organisations, it is the combination of these that will provide you with the greatest assurance that the most effective tests will be conducted - and in the most professional manner.

Because CREST requires a rigorous assessment of member companies' business processes, data security and security testing methodologies, CREST member companies have a demonstrable level of assurance that their information security methodologies are able to provide their clients with a robust assessment of their information security posture.

According to CREST, by procuring penetration testing services from certified testers who work for certified organisations, you can rest assured that an expert and independent body - with real authority - is on hand to investigate any complaint thoroughly and ensure that a satisfactory conclusion is reached. This is the only combination that provides you with a tangible level of protection should things go wrong – and also reduces the likelihood of a problem occurring in the first place.

Centurion Information Security is a CREST Member company with CREST qualified consultants on board.