Find a pentest company with CRISC
68 companies have this certification
CRISC Certification Overview
Origin and Creation
The Certified in Risk and Information Systems Control (CRISC) certification was created and launched by ISACA (Information Systems Audit and Control Association) in 2010. ISACA developed this credential in response to growing demand from organizations for professionals who could identify and manage IT risks and implement effective information systems controls. The certification was designed to fill a gap in the market for a specialized credential focused specifically on enterprise risk management within IT environments, distinguishing it from ISACA's other certifications like CISA, which focuses more on auditing.
Industry Value and Importance
The CRISC certification is highly valued because it validates a professional's expertise in four critical domains: IT risk identification, assessment, evaluation and response, and control design and implementation. Organizations prize CRISC holders for their ability to bridge the gap between technical IT operations and business risk management, helping enterprises make informed decisions about technology investments and security measures. The certification is particularly sought after in regulated industries like finance, healthcare, and government, where managing IT risk and demonstrating compliance are essential. Many employers list CRISC as a preferred or required qualification for risk management, compliance, and IT governance positions, often associated with higher salary potential.
RITC Cybersecurity
IT Services and IT Consulting company specializing in cybersecurity; offers penetration testing services confirmed by company categories and service pages; 4 employees with 100% YoY growth; founded 2014; headquartered in Scottsdale, AZ.
Reactforce
Reactforce is a cybersecurity consulting firm based in Scottsdale, Arizona, with over 25 years of experience in technology risk management, cybersecurity, and business resilience. The company provides penetration testing services for applications, networks, and mobile apps, emphasizing proactive security assessments and vulnerability mitigation.
Netready
Managed IT services and IT security provider based in Pasadena, CA; offers penetration testing, vulnerability assessments, and IT consulting; serves businesses in California.
Wired Security Incorporated
Cybersecurity firm based in Newport Beach, California; specializes in penetration testing, risk assessments, and security consulting with over 20 years of experience serving organizations of all sizes.
RedPenSec Powered by Crafted Compliance, Inc.
IT services and cybersecurity consulting firm specializing in penetration testing, vulnerability management, and compliance; founded 2016; 3 employees; headquartered in Ormond Beach, Florida; serves US and global clients in diverse industries.
PurpleBox Security
Cybersecurity company based in Atlanta, Georgia, specializing in penetration testing, cybersecurity, and compliance solutions; explicitly offers pen testing services as a core part of their offerings.
RNSC TECHNOLOGIES, LLC
Cybersecurity and network security company specializing in penetration testing, security operations, and data privacy; based in Georgia, USA, with 5 employees and 25% YoY growth; founded in 2006. Provides active security testing services including full-scale penetration testing and ethical hacking, with a focus on protecting business assets and supporting growth.
Stop wasting time on security questionnaires
ResponseHub uses AI to automate your security questionnaire responses. 100% confidence, save days, unblock deals.
Infotex, Inc.
Cybersecurity firm based in Lafayette, Indiana, providing penetration testing and security monitoring; offers high-performing security systems and conducts simulated cyberattacks to identify vulnerabilities, with headquarters at 416 Main St, Lafayette, IN 47901.
TraceSecurity
Cybersecurity services provider specializing in penetration testing; offers internal, external, and wireless pentests; 74 employees, $8.8M revenue, founded 2004 in Baton Rouge, Louisiana; $12.3M funding; active in compliance, risk, and vulnerability assessments.
Phalanx Security
IT services and consulting company specializing in cybersecurity and penetration testing; 3 employees with 50% monthly growth; based in Baltimore, Maryland, United States; offers network and application-layer penetration testing services; actively involved in industry support and social media engagement.
Atredis Partners
Information security consultancy based in Saint Louis, Missouri; specializes in penetration testing, attack simulation, advanced network testing, and platform security assessments; actively offers active, simulated attack testing services.
Nodeware
Cybersecurity company specializing in continuous vulnerability management and penetration testing; headquartered in Pittsford, NY, with explicit service offerings including ethical hacking and security assessments.
Network + Security Technologies
Cybersecurity consulting firm specializing in penetration testing and security assessments; headquartered in Pearl River, NY, United States; offers offensive security services including pentests to identify vulnerabilities.
LIFARS
Cybersecurity firm providing Incident Response, Digital Forensics, Penetration Testing, Ransomware Mitigation, and Cyber Resiliency Services; headquartered in New York, NY, United States; offers penetration testing services.
Advertise on pentest.fyi
You could be here!
eDelta Consulting
Business consulting and cybersecurity firm based in New York; 26 employees, $4.4M revenue, founded 2000, with explicit penetration testing capabilities including vulnerability assessments for internal/external networks; competes with cfgi, cherry bekaert, and metriqe solutions.
SEVN-X
Cybersecurity company specializing in penetration testing, vulnerability management, and security training; 13 employees with 13.3% YoY growth; founded 2020; based in King of Prussia, Pennsylvania, USA; offers customized cybersecurity solutions with expert reporting and hands-on training.
SEVN-X
Cybersecurity firm based in Pennsylvania, United States, specializing in penetration testing services; known for rapid deployment and comprehensive security assessments, with client testimonials praising their expertise and professionalism.
CoNetrix
IT services and consulting company specializing in network security, compliance, and penetration testing; based in Texas, USA, with 75 employees, $25M revenue, founded in 1977; offers exploitation-based penetration testing services with dedicated testing pages, and maintains active news and social media presence.
PurpleSEQ
Cybersecurity advisory firm based in Dallas, Texas; specializes in compliance, governance, and security maturity with 5 employees and 28.6% YoY growth; offers penetration testing, red teaming, and data privacy consulting to financial, government, and enterprise clients.
NR Labs
Cybersecurity-focused IT services and consulting company specializing in penetration testing and cyber defense; founded in 2024, with 27 employees (+63% YoY growth), headquartered in Tysons, Virginia, United States; active in federal and commercial cybersecurity contracts, with a web presence of 598 monthly visits and a global rank of #10,864,864.
Opacc, Inc.
Virginia-based strategic advisory, cyber operations, and private security firm supporting government and private clients; offers penetration testing services as part of their cybersecurity offerings; headquartered in Tysons Corner, VA.
Cyber Tech Group
Bulgaria-based cybersecurity firm specializing in penetration testing and security assessments; headquartered in Krasno selo, Sofia, with active regional operations and social media presence.
Infigo IS
Croatian cybersecurity company based in Zagreb; provides managed security services including SOC management; offers penetration testing and red team exercises, emphasizing offensive security and vulnerability testing.
Pwn & Patch
Cybersecurity firm specializing in penetration testing and vulnerability assessments; based in France with official address at 45 Rue Cecile Duparc, Bezons, France • Provides offensive security services including pentest and vulnerability assessments.
DIESEC
German-founded cybersecurity firm based in Darmstadt, Germany; provides penetration testing, SOC as a Service, and compliance solutions; specializes in analyzing and responding to cybersecurity threats with a focus on vulnerability exploitation and simulated attacks.
TwelveSec
Cybersecurity company specializing in penetration testing and threat-led attack simulations; 18 employees, 12% YoY growth, founded 2012, headquartered in Greece, offers comprehensive security assessments including TLPT, with 259 monthly website visits and active social media presence.
Silent Signal
Computer and network security company specializing in penetration testing and ICT security services; 13 employees; founded 2009; Budapest, Hungary; offers detailed pentest services including IBM i security testing, emphasizing thoroughness and research-driven quality.
QUADRON Analytica & Cybersecurity
IT services and cybersecurity firm based in Budapest, Hungary; 24 employees; founded 2014; specializes in penetration testing, VAPT, cybersecurity assessment, and security operations; serves global clients with a focus on governance, risk, and compliance.
Alverad Offensive Security Team
Hungary-based offensive security division of Alverad Kft; provides comprehensive penetration testing and security assessment services including web, mobile, Wi-Fi, API, OSINT, phishing, GPU password cracking, and thick client testing; emphasizes attacker-oriented approach.
Stop wasting time on security questionnaires
ResponseHub uses AI to automate your security questionnaire responses. 100% confidence, save days, unblock deals.
Silent Signal
Hungarian cybersecurity company headquartered in Budapest; specializes in penetration testing, security assessments, code analysis, vulnerability testing, and social engineering; emphasizes world-class R&D and comprehensive ICT security services.
Tenendo
Tenendo is a private Irish-based IT & Services company specializing in penetration testing services, including application and infrastructure pentests; with 4 employees, founded in 2020, and a focus on security testing and threat intelligence.
NEREALITATE, SIA
Latvia-based internet security consulting firm founded in 2000; offers information systems security consulting, audits, testing, and ethical hacking courses, explicitly providing penetration testing services.
Excellium Services
Luxembourg-based cybersecurity company specializing in penetration testing and offensive security; headquartered in Contern, Luxembourg (5 Rue Goell, L-5326); provides penetration testing, red teaming, and cybersecurity consultancy services.
Pentestica
Polish cybersecurity firm based in Katowice; specializes in penetration testing, security audits, Red Teaming, and compliance services including NIS2, DORA, and MiCA/CASP; over 10 years of experience in professional cybersecurity services.
Galach Consulting Sp. z o.o.
Cybersecurity firm specializing in penetration testing and security audits; 1 employee with 33.3% YoY growth; based in Poland; offers active penetration testing services including scanning and security validation; maintains a website with regular updates and social media presence.
Security Hub
Cybersecurity company based in Warsaw, Poland, specializing in penetration testing for web, desktop, and mobile applications; offers comprehensive security assessments aligned with OWASP TOP 10, OWASP ASVS, PCI DSS, and CVSS; staffed by certified security engineers.
SecurityONE
Cybersecurity company providing penetration testing, secure code review, mobile security testing, security assessment, security audit, compliance testing, and security awareness training; 3 employees; Founded 2021; Bucharest, Romania.
CYBERWALL RO
Cyberwall RO is a Romania-based cybersecurity firm specializing in penetration testing and cybersecurity audits; it has 1 employee, no recent growth, and explicitly offers penetration testing services as part of its cybersecurity solutions, serving various sectors including IoT, cloud, and automotive security.
Sandline
Cybersecurity company specializing in penetration testing, vulnerability assessment, incident response, and cybersecurity training; founded in 2007, based in Bucharest, Romania, with 4 employees and 25% growth. Offers services such as human vulnerability testing and cyber threat intelligence, with a focus on solution-oriented IT security.
OMEGA Trust
IT services and consulting company specializing in cybersecurity audits, penetration testing, and compliance; 10 employees; founded 2004; headquartered in Sectorul 1, Bucharest, Romania; offers cybersecurity, IT audit, and consulting services, with proven expertise in penetration testing and security certifications.
Istrosec
Cybersecurity company headquartered in Petržalka, Bratislava, Slovakia; provides threat intelligence, incident response, and cyber advisory services; offers penetration testing (ethical hacking); ISO/IEC 27001:2013 certified and TI accredited.
Secureon
Spain-based cybersecurity consulting firm specializing in penetration testing, IT, and cloud services; offers ethical hacking, network, web app testing, and social engineering; headquartered in Lleida, Spain.
Secure State Cyber
IT services and consulting company specializing in cybersecurity and data privacy; offers penetration testing and risk analysis; 12 employees, $5M revenue, founded 2005 in Stockholm, Sweden.
Simovits Consulting
Cybersecurity consulting firm specializing in information and IT security; provides penetration testing, security reviews, vulnerability scans, and incident management with a focus on long-term client relationships. Founded in 1997, based in Stockholm, Sweden, with 14 employees and +5.3% YoY growth; known for adherence to industry standards like NIST SP800-115 and OWASP.
Agix
Australian cybersecurity firm founded in 2008; headquartered in Adelaide, South Australia with Australian registration details; offers penetration testing, vulnerability assessments, and comprehensive cybersecurity solutions; specializes in Linux, Windows, and firewall support.
CyberEdge Solutions Australia
CyberEdge Solutions Australia is a cybersecurity company headquartered in Brisbane, Australia, with multiple offices across the country. The firm specializes in offensive security, including penetration testing services, as indicated by their 'Offensive Security & Penetration Testing' offering on their website.
Cyber Resilience Group
Australian cybersecurity company specializing in audit readiness, compliance, and resilience; offers penetration testing services to identify security weaknesses through simulated attacks; headquartered in Melbourne, Victoria, with ABN 35676454078.
Protectera
Protectera is an Australian-based IT services and cybersecurity firm specializing in penetration testing, security assessments, and digital transformation; with 11 employees, +20% YoY growth, founded in 2015, serving nationwide with a focus on active simulated attack testing and enterprise data security.
Security Assured Inc.
Security Assured Inc. is a Canadian cybersecurity company specializing in military-grade managed security services; with 2 employees, founded in 2024, based in Brampton, Ontario, they offer penetration testing, threat modeling, risk assessment, and data recovery services, focusing on protecting small and mid-sized businesses from advanced cyber threats.
Technirise Consulting Inc.
Canada-based cybersecurity company specializing in penetration testing and ethical hacking; offers tailored cyber solutions and protective security services to defend against evolving threats; headquartered in Saskatoon, Saskatchewan.
Procyon Security Group
Procyon Security Group is a Canadian-based IT services and consulting company specializing in information security; with 3 employees, founded in 2003, and headquartered in Vancouver, BC. The firm provides focused security services such as vulnerability and penetration testing, security architecture, compliance assessment, and threat risk analysis, emphasizing customer-centric, vendor-neutral solutions.
Ferro Technics
Canada-based IT services firm specializing in cybersecurity, including penetration testing and security assessments; headquartered in Scarborough, Ontario, with operations in Canada & USA; offers IT consulting, auditing, and cybersecurity training, with a focus on attack-simulation services as detailed in their brochure.
Eska Security
Cybersecurity provider based in Concord, Ontario, Canada; specializes in penetration testing, vCISO, SOC 2, and ISO 27001 compliance services; explicitly offers pentest services to identify vulnerabilities.
KBE Information Security
Canadian cybersecurity company based in Toronto, Ontario; provides cyber security services including penetration testing and vulnerability assessments; emphasizes proactive security and protecting information infrastructure.
Mobius Consulting
UK-based cybersecurity company specializing in penetration testing and security assessments; listed on UK Companies House with registration numbers 13538454 and 06958601; offers comprehensive security testing including penetration testing and vulnerability scanning.
código verde
código verde is a Mexico-based private cybersecurity firm specializing in information security, penetration testing, and certification training. With 7 employees and 16.7% YoY growth, it offers consulting, penetration testing, and certification services since 2009, serving clients in Monterrey, Nuevo León. The company maintains an active online presence with 809 monthly visits and is known for elevating clients' security posture.
Nordstern Technologies • NCS
Mexico-based IT services and consulting company founded in 2004; 58 employees with +27.6% YoY growth; specializes in cybersecurity including penetration testing, risk analysis, and security hardening; operates in Mexico, Spain, and Colombia.
Grupo Oruss
Telecommunications and cybersecurity firm based in Bogota, Colombia; specializes in penetration testing, ethics, and cybersecurity arts with 4 employees and $337.6K funding; founded in 2002, with a focus on security research and expert services.
PulseSecure Pte Ltd
Cybersecurity and IT security consulting firm specializing in penetration testing services with CREST and OSCP-certified pentesters; 36 employees with 12.2% YoY growth; based in Singapore since 2008; expertise in web application security, secure coding, and application self-defense; global rank #2,616,188, Singapore rank #27,808, with 6,897 monthly website visits.
Infracom Consultancy Integration Pte Ltd
Infracom Consultancy Integration Pte Ltd is a Singapore-based private IT services provider founded in 2007, with 2 employees and 100% YoY growth; specializes in IT consulting, infrastructure, cybersecurity, and offers Vulnerability Assessment and Penetration Testing (VAPT) services, indicating expertise in authorized security testing.
Advertise on pentest.fyi
You could be here!
Cyber Digital Research Limited
Hong Kong-based cybersecurity firm specializing in penetration testing services; confirmed addresses in Wanchai, Hong Kong, and Hong Kong incorporation details; provides ethical hacking and security assessments.
Datafarm Co., Ltd.
Thailand-based IT services and consulting company specializing in cybersecurity; 33 employees with 14.6% YoY growth; offers penetration testing, vulnerability assessment, and cybersecurity compliance services; ranked #6,849,479 globally and #96,421 in Thailand; active in cybersecurity, penetration testing, and IT security.
Techlab Corporation
Cybersecurity company specializing in penetration testing and consulting; 20 employees; headquartered in Vietnam; offers scalable pentest services and cybersecurity assessments; active in cybersecurity consulting and standards establishment.
Cybershield
Indonesia-based cybersecurity firm providing complete security solutions; offers penetration testing with Black Box, Grey Box, and White Box assessment models; headquartered in Jakarta, with a focus on real threat mitigation and ongoing security testing.
Shieldbyte Infosec Pvt. Ltd.
India-based cybersecurity firm specializing in penetration testing and vulnerability assessment; offers VAPT, attack simulations, and comprehensive security audits; headquartered in Mumbai, Maharashtra, India; CERT-In empanelled security auditor.
Telsource Software Labs
Cybersecurity company based in Pune, India, specializing in advanced threat detection, vulnerability assessment, and penetration testing services; explicitly offers penetration testing among its core offerings; founded in India with a focus on secure business solutions.
Coditing®
Indian cybersecurity consulting firm providing penetration testing, vulnerability assessment, and security audits; 5 employees with 60% YoY growth since 2018; specializes in ISO 27001, SOC 2, red teaming, and secure software development.
Briskinfosec
Cybersecurity services company based in Chennai, India; specializes in penetration testing (VAPT for web, mobile, and cloud), security compliance (SOC2, ISO 27001); CERT-in empanelled, with a focus on offensive security and global cybersecurity solutions.