Find a pentest company with ISO 20000
83 companies have this certification
ISO 20000: IT Service Management Certification
Origin
ISO 20000 was developed by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC), first published in December 2005. It was based on the earlier British Standard BS 15000, which was created by the British Standards Institution (BSI). The standard was developed to provide organizations with a internationally recognized framework for establishing, implementing, maintaining, and continually improving an IT Service Management System (ITSMS), largely aligned with ITIL (Information Technology Infrastructure Library) best practices.
Industry Value and Importance
ISO 20000 is highly valued in the industry as it demonstrates an organization's commitment to delivering quality IT services consistently and efficiently. The certification provides assurance to customers and stakeholders that an organization follows industry best practices for service management, can manage risks effectively, and maintains controls for service continuity. For businesses, achieving ISO 20000 certification often leads to improved service delivery, better resource management, enhanced customer satisfaction, and competitive advantages in bids and tenders, particularly in government contracts and large enterprise deals where certified vendors are preferred or required.
Securus360
Cybersecurity company based in Irvine, California, providing penetration testing and breach simulation services; confirms active pentest offerings with documented service pages and blog posts.
Rio Bravo Systems, Inc.
Rio Bravo Systems, Inc. is a private IT services and consulting company headquartered in Englewood, Colorado, with 75 employees and a -9.7% YoY growth. The firm specializes in enterprise IT solutions and cybersecurity, including penetration testing services conducted by certified ethical professionals; it has been in operation for over 20 years with offices in the US and Latin America. The company has a modest web presence, with 1,097 monthly visits and a global rank of #11,404,967, and holds a 4.3/5 employer rating.
Z7 Solutions
Cybersecurity company specializing in offensive security and penetration testing; headquartered in Orlando, Florida, with services including vulnerability assessments, web and mobile app pen tests, and internal/external security testing engagements.
Lightedge
IT services and consulting company specializing in cloud, colocation, and managed services; offers penetration testing services including network, application, and social engineering testing; 261 employees, $85M revenue, headquartered in Des Moines, Iowa, with $5M funding.
SMX
Cybersecurity company specializing in penetration testing and advanced cybersecurity solutions; headquartered in Hollywood, Maryland, USA; offers active pentest services including 'World-Class Penetration Testing and Advanced Hunting' as part of its cybersecurity capabilities.
Edgewater
Cybersecurity solutions provider specializing in offensive security and penetration testing; headquartered in Frederick, Maryland, United States, with a focus on aligning business and technology needs to improve performance and safeguard investments.
E Com Security Solutions
IT services and consulting company specializing in cybersecurity and compliance; 27 employees, founded 2008, headquartered in New York, USA; offers penetration testing services for networks and web applications, with categories including network penetration testing and web application penetration testing; 1,106 monthly website visits, global rank #11,587,344, employer rating 5.0/5.0.
Stop wasting time on security questionnaires
ResponseHub uses AI to automate your security questionnaire responses. 100% confidence, save days, unblock deals.
KPMG
Global professional services firm headquartered in New York, US; specializes in audit, tax, advisory, and cybersecurity testing services including penetration testing, vulnerability assessments, and red teaming; confirmed presence in New York and offering advanced security testing capabilities.
Needling Worldwide
Cybersecurity consulting firm specializing in policy development, risk assessment, certification readiness, security awareness training, and penetration testing; 10 employees with 27.3% YoY growth; based in Greenville, South Carolina, founded in 2016.
Auriseg
Auriseg is a private cybersecurity company headquartered in Austin, Texas, with 70 employees and 53% YoY growth; specializes in comprehensive security programs including penetration testing, red/blue team exercises, and security architecture review; founded in 2014, with a global presence and 1,841 monthly website visits.
Trend Micro
Cybersecurity software development company headquartered in Irving, Texas; 4,553 employees, $1.8B revenue, private firm; provides enterprise security solutions powered by AI and threat intelligence, including attack surface management, XDR, cloud security, and penetration testing services, with active third-party and internal pentest engagements.
Sandoval Technology Solutions, LLC
Cybersecurity firm based in San Antonio, Texas, specializing in penetration testing services; listed in government contracts for pentest offerings, supporting their expertise in security assessments.
ManTech International
Defense contracting firm specializing in cybersecurity and penetration testing; headquartered in Herndon, Virginia, United States; founded in 1968 with a focus on technology solutions for government and industry clients.
Guidehouse
Management consulting firm based in McLean, Virginia, providing advisory, technology, and managed services with active penetration testing capabilities; headquarters at 1676 International Drive, McLean, VA; known for cybersecurity assessments including vulnerability testing and penetration testing services.
Advertise on pentest.fyi
You could be here!
Actionet, Inc.
Cybersecurity firm based in Vienna, Virginia, offering penetration testing and security assessments; headquarters at 2600 Park Tower Drive, Vienna, VA 22180; actively provides pentest services as evidenced by service listings and recent publications.
MAGNUS Management Group LLC
Cybersecurity and IT services provider specializing in technology infrastructure and security solutions; offers penetration testing services confirmed through multiple service pages and a 2025 capability brochure. Based in Cheyenne, Wyoming, with 4 employees and $12M revenue, holding ISO 9001, 27001, 20000, 56002 certifications; competes globally with firms like Phirelight and Vista Infosec.
ISO Certification in Bulgaria
Bulgarian-based consulting and certification firm specializing in ISO standards and cybersecurity testing; offers penetration testing, VAPT, and application security services with a focus on Bulgaria, supported by explicit location references and a Bulgarian address.
ISO Certification in Croatia
Croatian consulting firm based in Zagreb offering ISO certification services and penetration testing; provides network and infrastructure pentests, vulnerability assessments, and red-team simulations, demonstrating technical expertise in cybersecurity testing.
ACTUM Digital
IT services and consulting company based in Czechia; 215 employees, $5M-$25M revenue, founded 1996; offers digital transformation, experience management, and cybersecurity including penetration testing; recently acquired Kuehlhaus; recognized partner with over 28 years in business.
ACG Cybersecurity
Cybersecurity company based in Paris, France; founded in 2019; offers penetration testing (pentest) services including internal and external audits, with explicit service descriptions and promotional content.
Capgemini
Global IT services and consulting company based in Paris, France; 211,716 employees (+10.4% YoY growth); $23.9B annual revenue; offers cybersecurity including penetration testing with active exploitation techniques; recently acquired SEIMAF Groupe and Cloud4C Services Pvt Ltd; operates in multiple consulting categories including cloud, Salesforce, Microsoft, AWS, Oracle, Google, and SAP; competes with DXC Technology, EPAM Systems, and Endava.
Atos
Atos is a France-based global IT services and consulting company with 39,394 employees and $9.5B annual revenue; operates in 61 countries under brands Atos and Eviden; European leader in cybersecurity, cloud, and high-performance computing; offers penetration testing services as part of its cybersecurity solutions, emphasizing active security testing and exploitation capabilities.
Specops Solutions Gmbh
Cybersecurity firm headquartered in Germany; offers penetration testing and red team services, with a focus on offensive security and simulated attack testing.
microCAT GmbH
microCAT GmbH is a Germany-based IT services and consulting company specializing in cybersecurity and penetration testing; with 11 employees (+16.0% YoY growth), founded in 1985, headquartered in Martinsried, Bayern, Germany. The firm offers a range of IT products and services, including penetration testing, and is active in categories such as cybersecurity, IT security, SIEM, PAM, and NIS-2. It has a monthly web traffic of 2,964 visits and is positioned globally at #5,091,610.
ADACOM
ADACOM is a Greece-based IT services and cybersecurity company with 105 employees and $8M annual revenue; founded in 1997 in Athens, Greece. It provides comprehensive cybersecurity services including penetration testing, managed security, GRC, data governance, and security analytics, actively hiring penetration testers and offering industry-specific solutions. The firm competes with companies like CNF Technologies and TraceSecurity, and maintains a web presence with 16,340 monthly visits.
ISO CERTIFICATION IN GREECE
Greece-based cybersecurity firm specializing in penetration testing and VAPT certifications; located at 15, Theanous Str, Athens, with active service pages for network and infrastructure penetration testing, and VAPT certification.
UNGUESS
IT Services and IT Consulting company specializing in crowdsourcing-based testing solutions, including penetration testing services; 183 employees, $7.7M annual revenue, founded 2015 in Milan, Italy; $15.2M funding; global rank #1,536,272, local rank #76,652 in Italy; offers digital testing tools and services.
Orazero Srl Sb
Italian cybersecurity firm based in Italy; provides penetration testing, vulnerability assessment, and red teaming services; external sources from October 2025 confirm their focus on security testing and cybersecurity solutions.
TINEXTA S.P.A.
Italian IT services and consulting company specializing in digital trust, cybersecurity, and business innovation; 76 employees (+7.0% YoY), $521.5M revenue, EUR509.8M market cap; offers penetration testing, red teaming, and vulnerability assessments through Tinexta Cyber division; based in Rome, Italy.
Stop wasting time on security questionnaires
ResponseHub uses AI to automate your security questionnaire responses. 100% confidence, save days, unblock deals.
HWG Sababa
HWG Sababa is an Italy-based cybersecurity firm specializing in customized security solutions and offensive security services, including penetration testing for PLCs and Arduino; 130 employees with 36.3% YoY growth, EUR9.7M revenue, EUR31.7M market cap, founded in 2008, with a global presence in over 20 countries.
Sorint.SEC
Cybersecurity company based in Italy; provides penetration testing, incident response, and managed security services; 80 employees with 34.1% YoY growth; founded 2014; part of Sorint.LAB; focuses on threat detection, security visibility, and rapid support.
iso-certification-latvia.com
Latvia-based ISO certification company TopCertifier offers services across Latvia, with a Riga address (Terbatas iela 14, Riga, LV-1011). The company also provides network penetration testing, including vulnerability exploitation, detailed reports, and remediation advice.
Eit Sprendimai
Lithuanian IT services company based in Vilnius; provides penetration testing, vulnerability assessments, scans, and threat intelligence; registered at Juozo Rutkausko g. 6, Vilnius, Lithuania.
ISO, CE Mark, VAPT & HACCP Certification in Lithuania
Lithuanian-based certification provider located at 44A Gedimino avenue, Vilnius; offers ISO, CE Mark, VAPT, and HACCP certifications. Provides active penetration testing (VAPT) services, including vulnerability assessment and security testing, with a focus on compliance and security standards.
Devico Solutions
Software development company based in Warsaw, Poland; over 14 years of experience in digital experience creation; offers penetration testing (pentest) services including security testing, vulnerability assessment, and code analysis to enhance cybersecurity.
Stillsec
Cybersecurity firm headquartered in Warsaw, Poland, specializing in penetration testing, Red Team exercises, and 24/7 SOC monitoring; offers incident response and real-world attack simulations for IT and IoT security.
Vector Synergy
European IT & Defence solutions provider based in Poznań, Poland; offers penetration testing, security validation, and performance tuning services for high-demand environments; specializes in security-sensitive industries.
TopCertifier
Romania-based ISO certification and cybersecurity consultancy; offers ISO standards (ISO 9001, ISO 14001, CMMI, HACCP, PCI DSS, SOC) and penetration testing services including Vulnerability Assessment and Penetration Testing; headquartered in Bucharest, Romania.
Synchronix, A. S.
Cybersecurity firm headquartered in Bratislava, Slovakia; provides penetration testing services and risk analysis software; known for SAP partnership and reliable IT security solutions.
Kolas
Cybersecurity company based in Slovakia; provides professional penetration testing and vulnerability audits to identify security weaknesses, with a focus on network security solutions. Headquarters in Ružinov, Slovakia.
Soitron
Slovak IT services company based in Bratislava; provides cybersecurity solutions including penetration testing, with documented case studies demonstrating security assessment capabilities and deployment of security sensors.
Zenotec
Slovakia-based cybersecurity company headquartered in Bratislava; provides penetration testing services including infrastructure pentesting, with formal registration details (Company registration: Bratislava III, section: Sro, file no.: 100185/B; VAT No: SK2024130889).
Telefónica
Telefónica is a multinational telecommunications company headquartered in Madrid, Spain, with 25,836 employees and $40.9 billion in annual revenue; they provide telecommunications services, infrastructure, and digital solutions. The company also offers penetration testing and cybersecurity services, including Red Teaming and ethical hacking, as part of their security portfolio. Telefónica has a EUR 23.2 billion market cap and a 0.3% monthly workforce growth.
Telefónica Tech
Spanish technology solutions provider; offers cybersecurity, IoT, cloud, big data, AI, blockchain, and penetration testing services; explicitly provides penetration testing and security assessments to identify security gaps; based in Spain with a Spanish legal entity.
Coral eSecure Private Limited
Canadian-based cybersecurity consulting firm specializing in penetration testing, privacy, and compliance standards; with 20+ years of experience, $10M annual revenue, and a focus on certification support for standards like SOC, NIST, HIPAA, GDPR, and ISO 27701.
DigitalXRAID
Cybersecurity company specializing in penetration testing and security services; provides CREST-accredited web and internal penetration testing with active attack simulation capabilities; based in the United Kingdom with 39 employees and $8.6M annual revenue.
FluidOne
UK-based IT services and consulting firm specializing in secure data, voice, and cloud solutions; offers penetration testing and cybersecurity services; 152 employees, $132.4M revenue, founded 2006, headquartered in London, UK; recognized for high NPS and recent UK expansion.
Xalient
IT services and consulting company specializing in modern networking, security, and communications; 205 employees (+22.8% YoY growth), $45.3M revenue; offers penetration testing services; founded 2015; headquartered in Leeds, UK.
Conviso Application Security
Cybersecurity company specializing in application security; 55 employees with 3.9% YoY growth; based in Curitiba, Brazil; offers penetration testing, offensive security, and red-team services, with over 16 years of experience serving financial institutions and global clients.
ISH Tecnologia
Brazil-based IT services and consulting company founded in 1996; 611 employees; $25M-$50M revenue; offers cybersecurity services including penetration testing; operates in five states; recognized as one of Brazil's fastest-growing IT firms; global rank ~1.65M, local rank 117,415; employer rating 4.1/5 based on 411 reviews.
Grupo Beit
Cybersecurity firm based in Mexico City, specializing in penetration testing and ethical hacking; provides attack simulation services to assess system resilience, with headquarters in Benito Juárez, Mexico.
Hkmx Sc
Mexico-based cybersecurity firm specializing in risk management, vulnerability assessment, and penetration testing; offers security strategy, compliance, and certification services aligned with ISO 27001, NIST CSF, and ISO 22301; headquartered in Monterrey, Nuevo León, Mexico.
Axtel
Mexican IT services and consulting firm specializing in cybersecurity, including penetration testing services; 1,921 employees with 2.5% YoY growth; $537.4M USD annual revenue; founded in 1994; headquartered in San Nicolás de Los Garza, Mexico; active in cybersecurity assessments and security drills.
Nordstern Technologies • NCS
Mexico-based IT services and consulting company founded in 2004; 58 employees with +27.6% YoY growth; specializes in cybersecurity including penetration testing, risk analysis, and security hardening; operates in Mexico, Spain, and Colombia.
MTP México
IT services company specializing in software testing, development, and certifications; provides penetration testing ('pruebas pentest') and security testing services; 27 employees with 43.6% YoY growth; founded 1997; based in Mexico; global rank #9,258,247, country rank #183,672.
Ascenso
Cybersecurity company based in Costa Rica; provides penetration testing (pentest) services to evaluate and improve clients' security infrastructure; located in Tejar, Cartago, with a .cr domain.
MXC Security (Singapore) Pte. Ltd.
IT services and consulting company specializing in information security, including penetration testing, vulnerability assessment, and red teaming; based in Hong Kong with 16 employees, founded in 2003, and ranked #10,296,402 globally. Offers expertise in security management, compliance, and privacy consultancy.
CITIC Telecom International CPC Limited
Hong Kong-based private telecommunications company founded in 2001; 204 employees, $110M revenue; provides enterprise ICT, cybersecurity, private network, and penetration testing services (TrustCSI PTS); serves multinational enterprises globally; 35,677 monthly website visits, ranked #505,349 worldwide; active in AI+ cloud security and cybersecurity innovations.
HGC International Business
Hong Kong-based telecom and ICT solutions provider; offers cybersecurity services including penetration testing to identify security vulnerabilities, with detailed service pages confirming the offering.
Hong Kong Technology Information Limited
Hong Kong-based cybersecurity and data center services provider; offers penetration testing, security assessment, DNS firewall, and SIEM solutions; explicit Hong Kong office address in Kowloon; founded and operates primarily in Hong Kong.
Advertise on pentest.fyi
You could be here!
CHT Security 中華資安國際
Cybersecurity company specializing in network security, vulnerability assessment, and penetration testing; 97 employees (+14.4% YoY growth); founded 2017; headquartered in Taiwan; subsidiary of Chunghwa Telecom; offers managed security services and caters to government, finance, and manufacturing sectors.
Acer Cyber Security Inc.
Cybersecurity company based in Taiwan; specializes in penetration testing, security monitoring, and digital forensics; 93 employees with 15.5% YoY growth; TWD2.1B annual revenue; founded in 2000; publicly listed with a TWD5.1B market cap; active in security services including penetration testing as confirmed by their dedicated service page; ranked #514,293 globally with 53,352 monthly visits; competes with NEC, Protos Security, and Dubex; recent revenue growth includes NT$28.19 billion in June 2024.
DEKRA Taiwan
Taiwan-based DEKRA Taiwan, headquartered in New Taipei City, provides cybersecurity solutions including penetration testing and red team exercises; established presence in Taiwan with local office listings and addresses.
FarEasTone Telecom
FarEasTone Telecom is a Taiwan-based private telecommunications provider with 619 employees, $2.5B annual revenue, and a TWD 320.9B market cap; it offers internet, mobile, and digital services, and provides penetration testing services through specialized security teams, emphasizing its focus on security assessments.
NTT DOCOMO BUSINESS
Japan-based IT services and consulting company with 982 employees and $7.4B revenue; offers penetration testing, vulnerability assessments, and security testing services including TLPT and VAPT; 1.9M monthly website visits, ranked #28,208 globally; competes with Lumen, Comcast, Verizon.
Trend Micro
Cybersecurity software development company based in Tokyo, Japan, with 4,553 employees and $1.8B annual revenue; offers enterprise cybersecurity platform with AI and threat intelligence; provides penetration testing services via Trend Vision One Red and Purple Teaming for active security testing; competes with Avast, Mandiant, Secom.
ACinfotec Co, Ltd.
Cybersecurity company specializing in computer and network security; provides penetration testing services (external, internal, application, mobile, wireless) with a dedicated team and methodology; 22 employees (+8.8% YoY growth); headquartered in Bangkok, Thailand.
Vietnam National Cyber Security Technology (ncs)
Vietnamese cybersecurity company headquartered in Hanoi; specializes in penetration testing services with dedicated service pages and brochures, confirming their focus on cybersecurity testing and solutions.
VNCS
Cybersecurity company founded in 2011; headquartered in Hanoi, Vietnam, and part of Hanoi Telecom Corporation; provides penetration testing services with manual and tool-assisted attack methods, generating detailed management and technical reports.
TopCertifier
Vietnam-based cybersecurity firm specializing in penetration testing services; offers VAPT Certification Consulting, Server, Network, and Infrastructure Penetration Testing; headquartered in Hanoi, Vietnam.
Mtechnix Sdn. Bhd.
Malaysian cybersecurity and engineering firm specializing in OT & IT cybersecurity, engineering services, ISO certifications, project management, and professional training; provides penetration testing for networks, web, mobile, and ICS/SCADA systems, including red team exercises.
Hitachi Sunway Information Systems
Malaysian private limited cybersecurity firm specializing in penetration testing and vulnerability assessments; provides VAPT services through dedicated web pages; headquartered in Malaysia with registered addresses in Petaling Jaya and Kuala Lumpur.
Axo Technologies
Malaysia-based IT firm specializing in cybersecurity, including explicit penetration testing services; headquartered in Petaling Jaya, Selangor, with a focus on helping businesses solve complex IT challenges and improve security posture.
TopCertifier
Certification company based in Philippines; offers ISO, CE Mark, VAPT, and HACCP certifications; explicitly references headquarters at GT Tower, Makati, Philippines; provides active penetration testing services including network and web application security testing.
PT Inovasi Solusi Internasional
Indonesian cybersecurity firm based in Jakarta; specializes in comprehensive penetration testing services such as network, web, mobile, IoT, and wireless assessments; emphasizes multi-pronged, authorized simulated attacks to identify vulnerabilities.
Hypernet Technologies
Indonesian IT and managed service provider with 353 employees (+14.8% YoY growth), founded in 2006 and headquartered in Jakarta; offers internet, cloud, IoT, and cybersecurity solutions, including penetration testing and security assessments for diverse industries.
Cyberjeet Pvt Ltd
Indian-based IT and cybersecurity solutions provider specializing in penetration testing (VAPT), network and application security, and digital transformation; offers vulnerability assessments, IT audits, ISO certifications, and 24x7 SOC & NOC services, with over 10 years of experience.
Defsecone Consulting and Technologies Pvt Ltd
Indian IT services and consulting company specializing in penetration testing; explicitly offers OSSTMM-based assessments, OSINT techniques, and ethical hacking training. Small team of 2 employees based in Chennai, India, with a focus on cybersecurity and ethical hacking services.
Infocratus Technologies
Indian cybersecurity company based in Mumbai; specializes in penetration testing and vulnerability assessments with explicit service offerings; headquartered at 175, Kagalwala House, Bandra Kurla Complex, Santacruz East, Kalina, Mumbai 400098.
Infosys
Global IT services and consulting firm based in Bangalore, India, with 210,146 employees and $19.8B annual revenue; offers next-generation digital transformation and cybersecurity services, including CREST-certified penetration testing and vulnerability assessments; founded in 1981, market cap INR 7.55 trillion, with recent acquisitions and a strong international presence.
VP Techno Labs
Cybersecurity firm specializing in penetration testing and security audits; headquartered in Ahmedabad and Nadiad, India; multi-award-winning with a focus on tackling critical cyber threats affecting revenue and reputation.
Infopercept
Cybersecurity company based in Ahmedabad, India; specializes in penetration testing, red team operations, breach simulation, and cloud security testing; offers offensive security services for enterprise cybersecurity.
Infysec
Infysec is a Chennai-based cybersecurity firm specializing in penetration testing, vulnerability assessments, and security consulting; it provides comprehensive security evaluations including adversarial testing and threat analysis to help organizations mitigate risks and ensure compliance.