Find a pentest company with ISO 27001:2013
56 companies have this certification
ISO 27001:2013: Information Security Management Standard
Origin
ISO 27001:2013 was developed and published by the International Organization for Standardization (ISO) in partnership with the International Electrotechnical Commission (IEC). Released in October 2013 as a revision to the original 2005 version, this standard emerged from the earlier British Standard BS 7799, which was created in the 1990s. The standard was developed to provide organizations with a systematic framework for establishing, implementing, maintaining, and continually improving an Information Security Management System (ISMS), addressing the growing need for consistent information security practices across industries and borders.
Industry Importance
ISO 27001:2013 is highly valued in the industry because it provides internationally recognized criteria for managing sensitive information and mitigating security risks. Organizations that achieve certification demonstrate to clients, partners, and regulators that they follow best practices for protecting data confidentiality, integrity, and availability. The certification is particularly important for companies handling sensitive customer data, those working with government contracts, or businesses operating in regulated industries. It also provides competitive advantages in procurement processes, helps organizations meet legal and regulatory requirements, and reduces the likelihood of costly data breaches through its risk-based approach to security management.
Goldbelt, Incorporated
Alaska Native roots meet cybersecurity expertise; provides penetration testing and vulnerability assessment services through affiliated entities Goldbelt Nighthawk and Goldbelt Hawk, demonstrating capabilities in offensive cyber operations and vulnerability assessments. Headquartered in Juneau, Alaska, United States.
Proficio
Cybersecurity company specializing in AI-powered managed detection and response; headquartered in Carlsbad, CA; offers penetration testing and breach simulation services to evaluate security defenses.
State of Hawaiʻi
Government organization based in Honolulu, Hawaii, with 1,230 employees (+11.6% YoY growth), $35.3M annual revenue; provides public services including cybersecurity penetration testing for agencies, with a strong web presence of 2.3M monthly visits and ranked #19,895 globally.
VariQ
IT services and consulting firm specializing in cybersecurity, cloud, and software development for government agencies; provides penetration testing services including network penetration testing; 27 employees; founded 2003; headquartered in Rockville, Maryland, USA; $9.7M annual revenue.
Zdaas
Maryland-based IT services company specializing in technology consulting, software solutions, and IT staffing; offers penetration testing services for cybersecurity assessments.
QA Mentor
IT services and consulting firm specializing in software testing, quality assurance, and security testing; 151 employees with 9% YoY growth, $325M revenue, founded 2010 in New York, NY; offers penetration testing and security assessments, with a global QA team of 357 resources across 11 countries.
KLEAP Technologies Pvt. Ltd.
Cybersecurity company headquartered in Raleigh, North Carolina; offers penetration testing services including network and infrastructure pentests; focuses on protecting startups and SMBs' digital assets with advanced security solutions.
Stop wasting time on security questionnaires
ResponseHub uses AI to automate your security questionnaire responses. 100% confidence, save days, unblock deals.
TestingXperts
TestingXperts is a private IT Services and IT Consulting firm founded in 2013, headquartered in Mechanicsburg, Pennsylvania, USA, with 715 employees and $50.6M annual revenue; recognized as a global leader in Quality Engineering and Digital Assurance, and among the top five worldwide providers. The company explicitly offers penetration testing services, including infrastructure, web app, and mobile security testing, with ongoing engagements and simulated attack capabilities.
ZenQ
ZenQ is a private IT & Services company founded in 2003 and based in Dallas, Texas, with 197 employees and $5M annual revenue. It specializes in quality engineering, quality assurance, digital engineering, and provides penetration testing services, as evidenced by internal categories and security testing offerings. The company has a -12.8% YoY workforce decline and a 3.8/5 employer rating.
R&K Cyber Solutions
Cybersecurity company specializing in computer and network security; with 2 employees, $4.5M annual revenue, founded in 2010, headquartered in Manassas, Virginia, United States. R&K Cyber Solutions LLC is an award-winning provider of Computer Network Defense (CND) services, including penetration testing, cybersecurity operations, malware analysis, and secure architecture design. They excel at threat detection and eliminating intruders, competing with firms like Optiv and Rapid7, and hold a significant market presence.
Iron Bow Technologies
IT services and consulting company headquartered in Herndon, Virginia, with 603 employees and $872.1M revenue; specializes in digital transformation, cybersecurity, and IT modernization for government, healthcare, and commercial sectors; provides penetration testing services and has received industry awards.
Aet Federal Inc.
Cybersecurity and modernization solutions provider for federal agencies; headquartered in Vienna, VA; offers threat emulation and vulnerability testing services, emphasizing penetration testing capabilities.
22nd Century Technologies Inc.
22nd Century Technologies Inc. is a private IT services and consulting company founded in 1997, headquartered in McLean, Virginia, with 749 employees and $235M annual revenue. It specializes in managed IT solutions including security, mobile device management, remote helpdesk, IT staffing, project management, network management, and operations center services, serving defense, intelligence, federal civilian, state, local, and education sectors. The firm has a web presence with 15,221 monthly visits and a global rank of #1,425,344, and is recognized for providing penetration testing services, including ethical hacking and network assessments, to evaluate security vulnerabilities.
A3t (agil3 Technology Solutions)
Virginia-based IT services company specializing in cybersecurity and penetration testing; SBA certified 8(a), WOSB, SDVOSB; headquartered in Falls Church, VA; offers cyber security, software, cloud, big data, and management solutions.
Advertise on pentest.fyi
You could be here!
Bridgecross, LLC
Virginia-based small business specializing in enterprise IT and cybersecurity solutions; offers penetration testing and endpoint protection services; certified 8(a), Service-Disabled Veteran-Owned, Minority-Owned, with headquarters at 722 E Market Street, Leesburg, VA.
Privacy Experts
IT services and consulting company specializing in IT security, data protection, and cyber resilience; offers penetration testing, security audits, risk management, and compliance services; 2 employees with -33.3% YoY growth; founded 2018; headquartered in Czechia.
Mycom Solutions, S.r.o.
Czech IT security company providing cybersecurity services including penetration testing, risk analysis, data backup, and employee training; over 14 years of experience; headquartered in Czechia; offers 24/7 support and proactive threat mitigation.
Cyber Security Finland
Cyber Security Finland is a private cybersecurity company specializing in network and data security, with a focus on penetration testing, vulnerability assessments, incident response, and security consulting; 4 employees, founded 2021, based in Helsinki, Finland. The company explicitly offers penetration testing services, including vulnerability assessments and advanced testing, demonstrating strong technical security expertise.
SSL247 (A Sectigo Company)
SSL247 (A Sectigo Company) is a France-based IT services and cybersecurity firm with 19 employees and $5M revenue; specializes in web security, SSL certificates, PKI, and penetration testing; operating in 18 markets globally with nearly 20 years of experience. Recognized for digital identity solutions and security audits, with a global web presence of 5,575 monthly visits.
OHB SE
German aerospace and space systems manufacturer; 761 employees (+22.2% YoY growth), $1.1B annual revenue, EUR873.3M market cap • Specializes in satellites, space exploration, and digital solutions; offers penetration testing services including cybersecurity and WLAN pentests.
ITACC Solutions
ITACC Solutions is a private computer and network security firm based in Khalándrion, Greece, specializing in information systems security, penetration testing, vulnerability assessments, and security audits. The company has 5 employees, with 33.3% YoY growth, and provides innovative security solutions and consulting services to organizations seeking reliable, secure digital operations.
ICT PROTECT
Cybersecurity and information security management company based in Greece; 6 employees with 40% YoY growth, founded in 2012. Specializes in penetration testing, risk assessment, GRC consulting, GDPR compliance, and business continuity, with confirmed penetration testing services and a focus on tailored security solutions.
Census Labs
Cybersecurity firm based in Athens, Greece, specializing in penetration testing and red-team services; official address in Athens, 117 45, Greece; offers cybersecurity engineering and product security solutions.
Hacknowledge
Cybersecurity company based in Luxembourg; provides 24/7 security monitoring, threat detection, incident response, and penetration testing services including external, internal, and remote access testing; located at 9 Rue du Laboratoire, Luxembourg.
CGI
Global IT and business consulting firm headquartered in Luxembourg; offers IT services, digital transformation, and cybersecurity including penetration testing, red team exercises, phishing simulations, and infrastructure assessments.
Mita (Malta Information Technology Agency)
Malta-based government agency providing ICT infrastructure and cybersecurity testing services; offers penetration testing through its Cyber Assess Scheme, evaluating IT systems and infrastructures with active security assessments.
Secuza Consulting
Cybersecurity consulting firm based in Vleuten, Netherlands; specializes in penetration testing, risk assessment, vulnerability detection, and security advisory; 3 employees with a 33.3% YoY workforce decline; founded in 2019.
Char49
Char49 is a private cybersecurity firm based in Lisboa, Portugal, specializing in information security services such as penetration testing, red team assessments, and data loss prevention. With 5 employees, it offers a range of security consulting, training, and research services, and maintains a modest online presence with 1,081 monthly visits and a global rank of #11,831,828.
ITSector
Cybersecurity firm headquartered in Porto, Portugal, specializing in penetration testing services; offers SecuritySide, an automated platform for ethical exploits, with operations confirmed in Portugal.
Stop wasting time on security questionnaires
ResponseHub uses AI to automate your security questionnaire responses. 100% confidence, save days, unblock deals.
QPP a.s.
IT services and consulting company based in Bratislava, Slovakia; 23 employees with -2.4% YoY growth; specializes in IT management, QA, testing, and penetration testing services for telecom, finance, and industrial sectors; founded in 2008; known for customizable tool Qaron.
Cypro Ab
Cypro Ab is a Sweden-based cybersecurity firm specializing in holistic digital protection; headquartered in Malmö, with capabilities in penetration testing supported by active job postings for senior pentesters and use of tools like Kali Linux and Metasploit.
Iver Sverige
Iver Sverige is a Swedish IT services provider based in Stockholm, specializing in managed IT, infrastructure, cloud, and cybersecurity services. The company explicitly offers penetration testing (pentest) services, supported by dedicated cybersecurity offerings and educational resources on vulnerability assessments.
Catharsis.net.au
Catharsis.net.au is a cybersecurity company specializing in network and cloud security, penetration testing, and managed security services; founded in 2020 in Roseville, Australia, with 2 employees and 33.3% growth, serving as a leading provider in Sydney with a focus on simplifying cybersecurity for clients.
KT Secure UK
KT Secure UK is a cybersecurity company based in the United Kingdom, specializing in software code signing, hardware security modules, and penetration testing services; with 2 employees, 150% YoY growth, founded in 2009, and a focus on security assessments, vulnerability testing, and key management.
Stefanini Group
Brazilian multinational business consulting and digital solutions provider; 4,415 employees with 7.8% YoY growth, $1.4B revenue; offers digital transformation, AI, cybersecurity, and penetration testing services, with explicit emphasis on ethical hacking and vulnerability discovery.
Serpro
Brazilian IT services and consulting firm specializing in digital transformation for government; employs 3,096 staff, with $2B-$5B annual revenue, and provides penetration testing services as part of its cybersecurity offerings, supported by explicit evidence from 2018 reports and job postings.
GreenFenceSec
Cybersecurity firm specializing in offensive and defensive security services; based in Panama according to multiple business directories; explicitly references penetration testing services on its website.
Cyberteq
Cyberteq is a Singapore-based cybersecurity firm specializing in penetration testing and vulnerability assessment services; headquartered in Bishan, Singapore, with a focus on security consulting and compliance.
Data Connect Technologies Pte Ltd
Singapore-based private limited ICT company; provides penetration testing (pentest) services, including VAPT exercises for clients like Konica Minolta; registered office in Singapore (Vertex building); established reputation as a dynamic ICT provider in Singapore.
CMC Technology & Solution (CMC TS)
Vietnam-based IT services and consulting company with 233 employees (+26.7% YoY growth); specializes in digital transformation and cybersecurity, including penetration testing, forensic analysis, and threat hunting; 9,840 monthly website visits; ranked #2,339,369 globally.
Công Ty CP Gmo Runsystem
Vietnam-based IT services and consulting firm with 20 employees; specializes in digital transformation, cloud computing, enterprise solutions, and cybersecurity including penetration testing; operates under the Vietnamese domain runsystem.vn with a branch in Ho Chi Minh City.
FPT Software
FPT Software is an AI-first company based in Hanoi, Vietnam, specializing in digital transformation and IT consulting; it offers AI-powered solutions and employs AI-augmented engineers. The firm provides penetration testing services, including Penetration Testing as a Service and Red Team operations, with CREST accreditation confirming its cybersecurity expertise.
Condition Zebra (M) Sdn. Bhd.
Malaysian cybersecurity company specializing in penetration testing, risk management, and information security solutions; 28 employees, $96.5M revenue, founded 2007, headquartered in Petaling Jaya, Malaysia; offers cybersecurity services, training, and threat prevention with a focus on enterprise clients.
Mantua Services
Cybersecurity company based in the Philippines; provides penetration testing (VAPT) services involving attack simulation to evaluate security; operates in Pasig City and Singapore; focuses on integrating security into IT initiatives and protecting enterprise infrastructure.
Inovasi Informatika Indonesia, Pt
Indonesian IT services provider specializing in IT solutions, consulting, and cybersecurity; offers vulnerability assessment and penetration testing (VAPT); employs 50+ consultants with 230+ certifications; ISO 27001:2013 certified; founded 2015; headquartered in Indonesia.
PT. Netmarks Indonesia
Indonesian IT services and consulting company specializing in system integration, IT infrastructure, cloud, and cybersecurity; offers penetration testing services for security assessments; 32 employees (+15% YoY growth); founded 1998; headquartered in Jakarta, Indonesia.
Elitery
Elitery is an Indonesia-based IT services and consulting firm specializing in managed IT, cloud solutions, and cybersecurity, including penetration testing services; 106 employees, $20.8M revenue, founded in 2011, headquartered in Jakarta Selatan, with a focus on security, cloud partnerships, and digital transformation.
Trojan Hunt India LLP
Cybersecurity consulting firm specializing in penetration testing, risk advisory, vulnerability assessment, and cloud security; 13 employees; Founded 2019; New Delhi, India; ISO 9001:2018, ISO 27001:2013 certified; 721 monthly website visits; Global rank #10,882,612; Employer rating 4.1/5.0.
Defmax Technologies Pvt. Ltd.
Cybersecurity company specializing in penetration testing and vulnerability assessments; offers manual, web, IoT, and mobile penetration testing, along with secure code review; 2 employees; founded 2017; Hyderabad, India; ISO 27001:2013 and 9001:2015 certified.
BERRY9 IT SERVICES (B9ITS)
Cybersecurity company specializing in manual application security and penetration testing; 14 employees with 11.5% YoY growth, $29.7M revenue, founded 2015 in Hyderabad, India; offers vulnerability assessment, web and network penetration testing, source code review, and security consulting.
Cybersecurist Technologies Pvt. Ltd.
Indian-based cybersecurity company specializing in penetration testing services; offers application pentest and security assessments; headquartered in Pune, India.
NUK 9 Auditors
Indian IT services and consulting firm specializing in information security, including penetration testing, vulnerability assessment, and cyber security; 10 employees, founded 2012, headquartered in Mumbai, India • Provides security audits, risk management, and governance services; ranked #9,645,961 globally with 298 monthly visits; active in health, wellness, and community categories.
ISOAH Data Securities Pvt Ltd
Cybersecurity company specializing in ISO 27001:2013 certification, penetration testing, and security audits; 14 employees with 1400% YoY growth; based in Kolkata, India; member of NASSCOM, CII & DSCI; offers VAPT, ethical hacking, and IT security consulting.
AKS Information Technology Services
Indian IT services and consulting company specializing in cybersecurity; 146 employees with 72.3% YoY growth, founded in 2006, headquartered in Noida, India • Provides penetration testing, vulnerability assessment, network security, and application security services; supports with tools like Metasploit; global web visits: 11,440; global rank: #2,169,489.
AAA Technologies Ltd.
AAA Technologies Ltd. is an Indian private cybersecurity firm specializing in penetration testing, vulnerability assessments, and IT security audits; with 64 employees, $162.3M annual revenue, founded in 2000, headquartered in Mumbai, and listed on NSE and BSE. The company provides VAPT and PTaaS services, with a strong market presence and recent strategic activity.
VLink
India-based IT services company specializing in digital transformation, IT staffing, software development, cloud, AI/ML, and cybersecurity; offers penetration testing (VAPT) services as a core cybersecurity capability, with explicit references across service pages and blog content.