Find a pentest company with NIST 800-171
33 companies have this certification
NIST 800-171: Origin and Importance
Origin
NIST Special Publication 800-171 was created by the National Institute of Standards and Technology (NIST), a non-regulatory agency within the U.S. Department of Commerce. First published in June 2015 and subsequently revised, it was developed in response to Executive Order 13556, which aimed to establish standards for protecting Controlled Unclassified Information (CUI). The framework was specifically designed to help non-federal organizations that handle, store, or process CUI on behalf of the federal government implement appropriate security controls to protect sensitive government information outside of federal systems.
Industry Importance
NIST 800-171 has become critically important in the defense industrial base and federal contracting sectors, as compliance is now mandatory for organizations working with the Department of Defense and other federal agencies that handle CUI. The certification demonstrates that an organization has implemented 110 security requirements across 14 control families, covering areas such as access control, incident response, and system integrity. Beyond contractual requirements, achieving NIST 800-171 compliance has become a competitive differentiator and trust signal in the marketplace, showing clients and partners that an organization takes cybersecurity seriously and follows recognized best practices for protecting sensitive information.
Cyberprotex
Cyberprotex is a cybersecurity firm headquartered in Madison, Alabama, offering managed security services including penetration testing, security operations, endpoint protection, and operational technology security; confirmed to provide penetration testing services as part of its offerings.
Jadin Tech, LLC
Defense and space manufacturing company specializing in security assistance, cybersecurity, infrastructure, logistics, and maritime solutions; 15 employees with 58.3% YoY growth; based in Anchorage, Alaska; offers penetration testing services; founded in 2015; SBA 8(a) certified small, disadvantaged business.
Sugpiat Defense, LLC
Defense and space manufacturing company based in Anchorage, Alaska; 24 employees with 22.2% YoY growth; specializes in risk management, cybersecurity, physical security, and supply chain risk management; offers penetration testing services and SaaS platforms for security and compliance; founded in 2018.
Sugpiat Group, LLC
Defense & Space company specializing in cybersecurity, logistics, and base operation support; 3 employees with 200% YoY growth; offers physical penetration testing services; founded 2017; headquartered in Anchorage, Alaska, USA; SBA 8(a) certified; wholly owned subsidiary of Akhiok-Kaguyak, Inc.
Lazarus Alliance, Inc.
Cybersecurity company specializing in proactive security services including vulnerability and penetration testing, compliance audits, and privacy assessments; founded in 2000, with 6 employees and 22.2% YoY growth, based in Scottsdale, Arizona, USA. Known for its focus on cybersecurity audits and compliance, with a web presence of 10,023 monthly visits and a global rank of #2,168,741.
Lumifi
Cybersecurity company based in Scottsdale, Arizona, specializing in penetration testing and proactive security assessments; offers network, cloud, IoT, OT testing, red/blue/purple team exercises, and continuous vulnerability scanning.
Acalvio Technologies
Cybersecurity company specializing in cyber deception technology; headquartered in Santa Clara, CA, with a focus on advanced threat defense and red teaming services, leveraging deception for early threat detection and attack simulation.
Stop wasting time on security questionnaires
ResponseHub uses AI to automate your security questionnaire responses. 100% confidence, save days, unblock deals.
TechHeights - Business IT Services Orange County
IT Services and IT Consulting company based in Irvine, California; 18 employees, $3.2M revenue, founded 2007; specializes in proactive IT solutions including penetration testing, with a focus on cybersecurity, cloud services, and compliance standards; recognized provider in Orange County, Los Angeles, and Riverside.
Cyvatar
Cyvatar is a private cybersecurity company based in Irvine, California, specializing in cybersecurity management, vulnerability detection, and risk remediation; it provides penetration testing services as part of its offerings, with 19 employees, $4.2M revenue, and $12M in funding.
Radicl
Cybersecurity company based in Boulder, Colorado; provides managed cybersecurity services for regulated industry SMBs; offers Penetration Testing as a Service (PTaaS) supported by 500+ security experts, modernizing pentesting through a community-driven platform.
Propel Technology
IT services and cybersecurity company based in Westminster, Colorado, United States; specializes in penetration testing and security risk assessments, emphasizing active vulnerability identification and cybersecurity consulting.
Catalisto
Cybersecurity and IT services company specializing in penetration testing; provides external and internal pentest services to critical infrastructure and corporate clients; 9 employees; Founded 2018; Fort Lauderdale, FL.
A-LIGN
Cybersecurity and compliance provider based in Tampa, Florida; 572 employees, $92.2M annual revenue, $54.5M funding; specializes in cybersecurity compliance, penetration testing, and cyber risk management; offers active penetration testing and red team services, with a focus on high-quality, efficient programs.
Beacon Technology Group
Cybersecurity firm headquartered in Miami, Florida, providing advanced cybersecurity platforms and penetration testing services; offers automated breach and attack simulations, including breach testing for endpoint security, as documented in their EULA and marketing materials.
Advertise on pentest.fyi
You could be here!
ISSGLOBAL
Cybersecurity company specializing in managed security services and penetration testing; 8 employees, $3.4M revenue, founded 2001 in Boca Raton, FL; offers network, web, cloud, wireless, IoT testing, and social engineering simulations, with active, hands-on testing engagements and compliance expertise.
Penacity, LLC
Cybersecurity company specializing in penetration testing, compliance assessments, and security services for government and commercial clients; 6 employees, founded 2016, headquartered in Hanover, Maryland, with a focus on federal and defense industrial base sectors.
Tiro Security
Cybersecurity staffing and consulting company specializing in security assessment and penetration testing; 4 employees with 14.3% growth, $3.7M revenue; based in Henderson, Nevada, founded 2012.
American Technology Services
Cybersecurity and IT solutions provider based in New York; offers managed services, cybersecurity, compliance, and penetration testing (VAPT). The company is headquartered in the Financial District at 250 Broadway, New York, NY, and provides comprehensive security assessments including vulnerability assessment and penetration testing.
E Com Security Solutions
IT services and consulting company specializing in cybersecurity and compliance; 27 employees, founded 2008, headquartered in New York, USA; offers penetration testing services for networks and web applications, with categories including network penetration testing and web application penetration testing; 1,106 monthly website visits, global rank #11,587,344, employer rating 5.0/5.0.
Petronella Technology Group, Inc.
Cybersecurity company based in Raleigh, NC; specializes in cyber crisis management, 24/7 SOC, and compliance; explicitly offers penetration testing services across the US, with a focus on security control testing and exploitation.
Blair Carlisle
Cybersecurity consulting firm specializing in technology risk, compliance, and cybersecurity advisory; headquartered in Columbus, Ohio, with a focus on penetration testing services to evaluate and improve security defenses.
Vigilant
Cybersecurity company specializing in computer and network security; 19 employees with 19.6% YoY growth; headquartered in Cincinnati, Ohio; founded in 2010. Provides penetration testing, vulnerability assessments, incident response, and secure wireless solutions to industries including healthcare, automotive, and finance.
Breach Craft
Cybersecurity consulting firm specializing in penetration testing, vulnerability assessments, and virtual CISO services; 3 employees with +200% YoY growth; based in Havertown, Pennsylvania, USA; founded by seasoned cybersecurity practitioners, focusing on deep industry knowledge and innovative security solutions.
Pegasus Technologies
Cybersecurity company providing penetration testing and vulnerability scanning services; operates multiple Pennsylvania offices including Kennett Square, Media, Bethlehem, and Wayne; explicitly states pentest services with detailed testing methodologies.
Prescient Security
Cybersecurity company specializing in penetration testing, compliance, and web application security; 196 employees (+52% YoY growth), $23.9M revenue, founded 2018 in Nashville, Tennessee, serving over 5,000 clients worldwide.
Praetorian
Cybersecurity company specializing in continuous threat exposure management, attack surface, vulnerability management, breach & attack simulation, red teaming, and threat intelligence; offers explicit penetration testing services including application and network pentests, PTaaS, and ongoing testing; based in Austin, Texas, with 98 employees, $25M revenue, founded 2010, $10M funding.
7tech Cybersecurity
Texas-based cybersecurity company headquartered in San Antonio; provides managed security services and explicit penetration testing including vulnerability assessments and real-world attack simulations.
Alchemi Advisory Group, LLC
Alchemi Advisory Group, LLC is a Dallas-based private IT and cybersecurity advisory firm founded in 2020, with 2 employees and +100% YoY growth; they specialize in compliance, internal audit, and cybersecurity frameworks, serving organizations in regulated environments. Their cybersecurity services likely include penetration testing, supported by their categorization and scope of work.
Roka Security, LLC
Cybersecurity firm specializing in managed security services and penetration testing; headquartered in Herndon, Virginia, with explicit offerings in network and wireless penetration testing, ethical hacking, and vulnerability assessments. The company provides detailed reports and security consulting.
Stop wasting time on security questionnaires
ResponseHub uses AI to automate your security questionnaire responses. 100% confidence, save days, unblock deals.
American Technology Services
American Technology Services is a Virginia-based private IT services and consulting company founded in 1994, with 40 employees and $40M annual revenue. It provides cybersecurity, cloud hosting, virtual reality, and software development solutions to diverse industries, with a focus on penetration testing and vulnerability assessments to identify and mitigate security vulnerabilities. The firm is active in industry events and thought leadership.
Isi
Cybersecurity firm based in Herndon, Virginia; specializes in penetration testing and attack simulation services, actively conducting vulnerability assessments through ethical hacking.
CCB Technology
Managed IT services provider based in Racine, Wisconsin; offers nationwide support and collaborates with CEH-certified testers to perform penetration testing, demonstrating cybersecurity expertise.
e-ducators
Denmark-based IT services and consulting company specializing in cybersecurity, GRC, and penetration testing; offers OT security assessments, phishing training, and cyber awareness programs; 4 employees, founded 2015, with 25% YoY growth, active in cybersecurity testing and training, headquartered in Ballerup, Denmark.