Find a pentest company with ISO
54 companies have this certification
ISO 27001 Cybersecurity Certification
ISO/IEC 27001 was developed by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC), first published in 2005 and revised in 2013 and 2022. It evolved from the British Standard BS 7799, which was created in the 1990s by the UK government and industry to address growing concerns about information security management. The standard was developed to provide organizations with a systematic framework for establishing, implementing, maintaining, and continually improving an Information Security Management System (ISMS).
ISO 27001 is highly valued in the industry because it demonstrates an organization's commitment to protecting sensitive information through internationally recognized best practices. The certification provides a competitive advantage, often serving as a requirement for doing business with government agencies and large corporations, particularly in sectors handling sensitive data. It helps organizations systematically identify security risks, implement appropriate controls, and prove due diligence in managing information security—which is increasingly important for regulatory compliance, customer trust, and reducing the likelihood of costly data breaches.
Symosis Security
Symosis Security LLC. is a California-based private cybersecurity company founded in 2004, with 5 employees and $2.3M annual revenue; specializes in penetration testing, vulnerability assessments, security architecture, threat modeling, cloud security, and red teaming, serving clients with comprehensive security services and active in risk & compliance markets.
Cytellix
Cybersecurity solutions provider based in California, specializing in penetration testing and vulnerability assessments; headquartered in Aliso Viejo, CA, with active pentest capabilities confirmed by third-party profiles and marketing materials.
Greenlight Cyber
Cybersecurity company specializing in comprehensive security solutions and active penetration testing; based in Irvine, California, with 11 employees, $5.7M revenue, and +28.6% YoY growth. Offers services including internal and external network penetration tests, supporting SMBs in digital security.
iBovi
Cybersecurity company headquartered in Washington, DC, providing managed security services with AI-driven threat monitoring, incident response, compliance support, and penetration testing capabilities; based in Washington, DC, with a focus on scalable, innovative security solutions.
360 Advanced
Cybersecurity and compliance firm headquartered in St. Petersburg, Florida; specializes in penetration testing services including API Testing, Red Teaming, Web Application Testing, and Social Engineering to identify vulnerabilities and improve security.
Paarc Partners
Cybersecurity consulting firm specializing in payments advisory, risk management, and regulatory compliance; based in Orlando, Florida; offers penetration testing and vulnerability scanning services.
Siemba
Siemba is a cybersecurity firm based in Alpharetta, Georgia, specializing in penetration testing, vulnerability scanning, and attack surface management; with 26 employees and 17.9% YoY growth, it actively provides penetration testing services and is recognized in Gartner Hype Cycle reports.
Stop wasting time on security questionnaires
ResponseHub uses AI to automate your security questionnaire responses. 100% confidence, save days, unblock deals.
Penacity, LLC
Cybersecurity company specializing in penetration testing, compliance assessments, and security services for government and commercial clients; 6 employees, founded 2016, headquartered in Hanover, Maryland, with a focus on federal and defense industrial base sectors.
Global Solutions Group, Inc.
Private technology company based in Oak Park, Michigan; 48 employees with +56.6% YoY growth; $5M-$25M annual revenue; specializes in cybersecurity, managed security, ECM, and digital transformation; provides penetration testing services.
DruvStar®
Cybersecurity company specializing in penetration testing services; offers security assessments and vulnerability testing; 17 employees; Founded 2018; Las Vegas, Nevada, USA.
PacketScan Security
Cybersecurity company specializing in penetration testing and security assessments; based in Las Vegas, Nevada, United States, with active involvement in hacking competitions to ensure cutting-edge security services.
CISEVE | Authorized C3PAO
IT services and consulting firm specializing in cybersecurity compliance and penetration testing; 3 employees with +150% YoY growth; based in Las Vegas, Nevada; one of the first authorized C3PAOs, emphasizing integrity and certified staff.
Palindrome Technologies
Cybersecurity company specializing in penetration testing and vulnerability assessments; 9 employees, founded 2005, headquartered in Princeton, NJ; offers expert-driven security solutions including Symmetric DefenseTM; active in industry standards and government contracts; 9,024 monthly website visits, global rank #2,738,449.
Maverick Consulting Corp
Cybersecurity firm specializing in penetration testing and risk management; headquartered in New York, NY, United States, with explicit mention of penetration testing services on their IT Audit page. Focuses on risk, compliance, and internal IT security assessments.
Advertise on pentest.fyi
You could be here!
Kl Tech
IT support company based in White Plains, NY; provides network penetration testing services including internal and external assessments to identify vulnerabilities through simulated attacks.
Moda Experts
Cybersecurity firm based in Mason, Ohio, specializing in IT security optimization and penetration testing services; offers network, web, mobile, wireless, and social engineering testing to identify vulnerabilities for SMBs.
State of Oregon
U.S. state government agency based in Salem, Oregon, with 3,303 employees (+4.3% YoY growth) and $26.5B annual revenue; provides public services, news, and initiatives; offers cybersecurity including penetration testing services to state agencies, supported by established security standards.
Avertium
Avertium is a private cybersecurity firm founded in 2019, headquartered in Knoxville, Tennessee, with 116 employees and $74.4M annual revenue. They specialize in managed security services, including Microsoft security, MXDR, threat intelligence, attack surface monitoring, vulnerability management, and active penetration testing services such as red team, purple team, and social engineering. Recognized as a cyber fusion and MXDR leader, Avertium serves mid-market clients with comprehensive security and compliance solutions.
Rovust
Cybersecurity consulting firm specializing in penetration testing, application security, and risk management; 6 employees with 10% YoY growth; founded 2019; based in Dallas, Texas, USA; provides advisory, managed services, and cyber/data security solutions.
eStreet Security
eStreet Security is a private cybersecurity firm headquartered in Dallas, Texas, founded in 2024, with 7 employees and 40% annual growth. Specializing in penetration testing, vulnerability management, and compliance standards like ISO 27001, NIST, and PCI DSS, it actively provides pentest services, supported by job postings for pentesting roles. The company maintains a modest online presence with 1,565 monthly visits and a global rank of #8,604,242.
Straight Edge Technology, Inc.
IT services and consulting company specializing in managed network, cloud, and cybersecurity solutions, including penetration testing; 23 employees, $3.8M revenue, founded 2005 in Corpus Christi, Texas, serving South Texas with a focus on security and proactive support.
ClearDATA
Healthcare cloud security provider based in Austin, Texas; offers breach simulation, penetration testing, code review, and security audits for healthcare organizations; publicly listed with a focus on HIPAA, HITRUST, and AI risk governance.
Total Cyber Solutions
Cybersecurity company providing vulnerability assessments, penetration testing, and managed cybersecurity services; founded in 2016, with 17 employees, headquartered in Fairfax, Virginia, USA; specializes in NIST-standard assessments and cybersecurity defense.
.svg){kind=logo}
Intersec, Inc.
Cybersecurity consulting firm headquartered in Leesburg, Virginia; provides penetration testing (pentest) services including vulnerability assessments, real-world attack simulations, and IoT security testing; active in offensive security engagements.
SecureGovernComply
IT services and consulting company specializing in cybersecurity; offers penetration testing, vulnerability scanning, dark web monitoring, and compliance solutions; based in Norfolk, Virginia with 4 employees; provides offensive security services via PenTest360™ and active threat detection.
Securitybricks, Inc.
Cybersecurity company specializing in penetration testing, offensive security, and compliance support; 14 employees; headquartered in Seattle, Washington, with a focus on cloud security, GRC, and application security services.
Risk Analysis Consultants
Czech cybersecurity company based in Prague with over 30 years of experience in information security; specializes in penetration testing services, with active capabilities demonstrated through service listings and job postings. Focuses on delivering fast, effective solutions tailored to client needs.
SQUAD - Cabinet de conseils et d’expertises
IT services and consulting company based in Paris, France; 668 employees (+2.9% YoY growth); $8.5M annual revenue; specializes in cybersecurity, consulting, and IT integration; offers active penetration testing ('tests de pénétration', 'tests d'intrusion complets'); 12 agencies internationally; 1000 cybersecurity experts; founded in France.
Gonkar IT Security
Cybersecurity firm headquartered in Munich, Germany; specializes in penetration testing services with over 20 years of experience in protecting networks, servers, and applications. Marketed as a leading provider of proactive security assessments, with dedicated service pages and a focus on business continuity.
Stop wasting time on security questionnaires
ResponseHub uses AI to automate your security questionnaire responses. 100% confidence, save days, unblock deals.
Ventum Consulting
Germany-based IT services and consulting company specializing in digital transformation, networking, and agileization; offers professional penetration testing services including perimeter, web, network, IoT, and mobile security assessments; emphasizes ethical hacking and attack vector identification.
Cleafy
Cleafy is a Milan-based Italian cybersecurity firm specializing in online fraud detection and prevention; it offers AI-powered solutions like the Copilot cyber-fraud agent and provides penetration testing and red teaming services to strengthen financial sector security.
Arkafort
IT services and consulting company based in Malta; provides managed services, data center, cybersecurity, and penetration testing; 10 employees with -5.9% YoY growth; founded 2011; specializes in security audits, 24/7 monitoring, and digital transformation.
Brightsight
IT system testing and evaluation company based in Netherlands; largest independent security evaluation lab with 125 employees, $23.3M revenue, and 10 global labs; specializes in cybersecurity evaluations, penetration testing, and certification, including IoT penetration testing and fuzzing; operates in cybersecurity, security, and IT sectors; rapid growth with 33.3% monthly workforce increase.
TechMagic
Software development company specializing in end-to-end engineering services; provides penetration testing (pentest) services as confirmed by dedicated pages and CREST membership; 262 employees, founded 2014, Kraków, Poland, with 11+ years of market presence and 200+ successful projects.
Dbb Software
Software development company based in Kraków, Poland; offers custom software solutions and penetration testing services to identify vulnerabilities and strengthen security; emphasizes faster delivery with pre-built solutions.
Patronusec
Cybersecurity firm based in Poznań, Poland; provides penetration testing services including infrastructure, application, web app, and network assessments; headquartered at ul. Św. Marcin 29/8, 61-806 Poznań, Poland.
Global Technology 4E
Cybersecurity company based in Spain; 30 employees with -14.3% YoY growth, founded in 2009, specializing in penetration testing ('Auditoría y Pentesting') and cybersecurity services for critical infrastructure, with over 15 years of experience.
Enex TestLab
Enex TestLab is a private Australian company specializing in security testing services, including penetration testing, vulnerability assessments, and application security. Founded in 1989 and based in Dandenong, Victoria, it employs 4 staff members. The company has a modest web presence with 2,484 monthly visits and a global rank of approximately 6.6 million, operating across categories such as UX testing, IoT testing, and road safety camera testing.
Aegis 9
Australian cybersecurity consultancy founded in 2016; specializes in penetration testing, security governance, risk management, and architecture; 3 employees with a focus on tailored security solutions for public and private sectors; active in exploitability testing and vulnerability assessments.
PlutoSec
Cybersecurity company specializing in penetration testing, risk assessments, and consulting; founded in 2019; 3 employees with 950% YoY growth; headquartered in Toronto, Canada.
F12.net
F12.net is a Canadian IT services and consulting firm specializing in managed IT, cybersecurity, and cloud solutions; 189 employees, $35.6M revenue, founded 1996, with expertise in penetration testing, ethical hacking, and attack simulation to uncover vulnerabilities.
SecQuest - a NCSC Assured Service Provider
UK-based cybersecurity consultancy specializing in penetration testing and security assessments; offers CHECK & CREST services with a team of 9 employees; founded in 2012; provides network, application, and infrastructure security testing, with 7,422 monthly website visits and a global rank of 2,835,237.
PlutoSec
UK-based cybersecurity provider specializing in penetration testing; emphasizes leadership in UK cybersecurity market with multiple UK addresses and branding; offers comprehensive cybersecurity solutions across major UK cities.
Cyber HQ
Cyber HQ is a cybersecurity consulting company based in the United Kingdom; they provide penetration testing, threat and vulnerability management, security operations, and business resilience services. The firm is registered at 160 City Road, London, with active status and has been operational since at least 2023.
Omerta
Omerta is a UK-based private IT services and cybersecurity consulting firm specializing in security consultancy, penetration testing, and cyber defense solutions; with 24 employees, $10M annual revenue, founded in 2009, and operating globally. The company explicitly offers penetration testing services, including remote and physical testing, and is positioned within the security and cyber security market with notable competitors like Promon, Lookout, and Asavie.
CYLK Technologing
Brazil-based IT services and consulting company specializing in innovative solutions for cost reduction, risk mitigation, and agility; 33 employees with 12.8% YoY growth; $5M-$25M revenue; offers penetration testing services supporting offensive security and automated vulnerability assessments across applications, mobile apps, APIs, and infrastructure.
Securetag
Cybersecurity company specializing in penetration testing and information security; 2 employees with -40% YoY growth; based in Monterrey, Mexico; offers cybersecurity, pentest, hacking, and international real estate investment services.
Netred
Netred is a Chilean company based in Santiago, specializing in security testing services including penetration testing via partners; it operates with a contact number (+56 9 8820 9919) and a domain (.cl) indicating its Chilean presence.
Softscheck Apac
Singapore-based IT security consulting company specializing in penetration testing services; founded in 2001, with headquarters at 140 Paya Lebar Road, Singapore 409015; offers product, application, and network security assessments to safeguard client assets.
7 Point 8 Sdn Bhd
Security and investigations company specializing in cybersecurity, IoT, and AI security; offers penetration testing, security audits, managed security services, and security compliance checks; based in Shah Alam, Malaysia, founded in 2018 with 2 employees.
RT&Co. Cybersecurity
IT services and consulting company specializing in cybersecurity; provides penetration testing as part of its Vulnerability Assessment and Penetration Testing (VAPT) offerings; 58 employees (+21.1% YoY growth); headquartered in Pasig, Philippines; focuses on security testing, compliance, and enterprise defense.
Pentest Indonesia
Cybersecurity company providing penetration testing, security assessments, and red team services; based in Jakarta, Indonesia, with a focus on proactive security and offensive security expertise.
Mirox
Cybersecurity company based in Kerala, India; CERT-In empanelled provider offering VAPT, network security, cyber forensic services, and MSSP solutions; specializes in penetration testing and security audits.
Cyber Octet Pvt Ltd
Indian cybersecurity company based in Ahmedabad, Gujarat; provides penetration testing, vulnerability assessments, and offensive security services, including live attack simulations; specializes in web and network pentests.