Find a pentest company with TISAX
71 companies have this certification
TISAX: Trusted Information Security Assessment Exchange
Origin
TISAX (Trusted Information Security Assessment Exchange) was created by the ENX Association (European Network Exchange) in 2017 at the request of the German automotive industry, specifically the VDA (Verband der Automobilindustrie - German Association of the Automotive Industry). The certification was developed to address the automotive sector's need for a standardized, mutual recognition framework for information security assessments. It was created to reduce the burden of multiple audits on suppliers, as automotive manufacturers were each conducting their own security assessments of shared suppliers, leading to duplication and inefficiency.
Industry Importance
TISAX has become essential for companies working with the automotive industry, particularly in Europe, as many major manufacturers now require it from their suppliers and partners. The certification provides a trusted, industry-recognized validation of a company's information security practices, protecting sensitive data such as intellectual property, product designs, and business information. Its importance stems from the mutual recognition principle—once a company achieves TISAX certification, the results are shared across participating organizations, eliminating redundant audits and creating efficiency while maintaining high security standards. For suppliers, TISAX certification has become virtually mandatory to maintain or establish business relationships with automotive OEMs and tier-1 suppliers.
CrowdStrike
CrowdStrike is a private cybersecurity company specializing in computer and network security, with 7,522 employees, $4.6B annual revenue, and a $76.2B market cap. Based in Sunnyvale, California, it has received $1.2B in total funding, last raising in December 2022. The firm offers penetration testing services that simulate real-world attacks to assess detection and response capabilities, emphasizing adversary-emulation and red team activities. It competes with major cybersecurity firms and maintains a strong global market presence.
Palo Alto Networks
Private cybersecurity company specializing in computer and network security; 13,033 employees (+11.2% YoY), $9.6B revenue, $105.1B market cap, headquartered in Santa Clara, CA; offers penetration testing via Unit 42, including attack simulations and vulnerability testing; competes with Fortinet, Forcepoint, Zscaler.
Schellman
IT compliance and cybersecurity attestation provider; based in Tampa, Florida; specializes in FedRAMP assessments and offers extensive penetration testing services across multiple disciplines, including application, network, mobile, red teaming, social engineering, cloud, physical, hardware/IoT, and AI red team testing.
Serket-Tech Security
Serket-Tech Security is a cybersecurity consulting and IT services company based in Atlanta, Georgia, with 8 employees and 366.7% YoY growth; it offers penetration testing, risk assessment, incident response, and compliance services, blending governance with engineering to enhance security and resilience.
CBIZ Pivot Point Security
CBIZ Pivot Point Security is a private information security consulting company founded in 2000, based in Hamilton Township, New Jersey, with 12 employees and $6.6M annual revenue. They specialize in information security management systems, compliance, penetration testing, and related consulting services, serving clients needing to demonstrate security and compliance. The firm has a declining YoY growth of -31%, a web presence with 9,795 monthly visits, and is positioned within a niche market against competitors like ssc-ict and Iron Bow Technologies.
Praetorian
Cybersecurity company specializing in continuous threat exposure management, attack surface, vulnerability management, breach & attack simulation, red teaming, and threat intelligence; offers explicit penetration testing services including application and network pentests, PTaaS, and ongoing testing; based in Austin, Texas, with 98 employees, $25M revenue, founded 2010, $10M funding.
SEC4YOU Advanced IT-Audit Services GmbH
Austria-based IT services and consulting company specializing in IT audits, security consulting, and compliance; 10 employees; founded 2005; offers penetration testing services and IT security certifications like ISO 27001 and TISAX.
Stop wasting time on security questionnaires
ResponseHub uses AI to automate your security questionnaire responses. 100% confidence, save days, unblock deals.
A1 Digital
A1 Digital is an Austrian technology service provider specializing in IoT, Cloud, Network, and Cybersecurity solutions; headquartered in Vienna, Austria. It offers active penetration testing, vulnerability management, red teaming, and comprehensive security testing services, supporting digital transformation across Europe.
SySS
Cybersecurity firm based in Vienna, Austria, specializing in penetration testing services; headquartered at Tuchlauben 7a, 1010 Vienna; provides authorized simulated attack assessments to evaluate IT system security.
ISO Certification in Bulgaria
Bulgarian-based consulting and certification firm specializing in ISO standards and cybersecurity testing; offers penetration testing, VAPT, and application security services with a focus on Bulgaria, supported by explicit location references and a Bulgarian address.
ISO Certification in Croatia
Croatian consulting firm based in Zagreb offering ISO certification services and penetration testing; provides network and infrastructure pentests, vulnerability assessments, and red-team simulations, demonstrating technical expertise in cybersecurity testing.
ACTUM Digital
IT services and consulting company based in Czechia; 215 employees, $5M-$25M revenue, founded 1996; offers digital transformation, experience management, and cybersecurity including penetration testing; recently acquired Kuehlhaus; recognized partner with over 28 years in business.
Ixperta
Czech-based technology company headquartered in Prague; specializes in IT strategy, cybersecurity, and digital transformation; offers penetration testing, attack simulations, and resilience testing; focuses on building advanced IT ecosystems and solving complex tech challenges.
Selceon Cyberdefense
French cybersecurity firm specializing in penetration testing services; offers intrusion testing as a core service; headquartered in Asnières‑sur‑Seine, France.
Advertise on pentest.fyi
You could be here!
DCSO Deutsche Cyber-Sicherheitsorganisation GmbH
IT services and cybersecurity firm based in Berlin, Germany; 75 employees with 11.4% YoY growth; offers penetration testing services confirmed by industry references; founded in 2015; global rank #8,623,515; active in cybersecurity, IT consulting, and technology sectors.
Cypurge GmbH
IT services and consulting company specializing in cybersecurity solutions such as penetration testing, incident response, and security management; based in Frankfurt am Main, Germany, with 2 employees and 303 monthly website visits. The company focuses on threat detection and risk reduction for businesses of all sizes.
Passeca
Passeca is a private cybersecurity company specializing in computer and network security with a focus on penetration testing services, including simulated attacks and vulnerability assessments across web, mobile, API, network, cloud, and Wi-Fi environments. The company has 3 employees, indicating a small team, and is headquartered in Forbach, Baden-Württemberg, Germany, with verified addresses and listings confirming its location in Germany.
Awaretec GmbH
German-based cybersecurity firm specializing in penetration testing and red teaming; offers comprehensive attack simulation services including web, network, mobile, and cloud pentests; operates on a .de domain and is corroborated by German incorporation and headquarters profiles.
SCHUTZWERK GmbH
Cybersecurity consultancy specializing in independent IT and cybersecurity assessments; offers penetration testing services; 17 employees; founded 2002; headquartered in Ulm, Germany; active in application security, risk assessment, embedded security, and more.
HvS-Consulting
Cybersecurity consulting firm based in Garching, Germany; over 20 years of experience in offensive security; 50+ highly qualified employees; 500+ satisfied clients including 50% of DAX companies; specializes in penetration testing, red teaming, and security stress tests.
Specops Solutions Gmbh
Cybersecurity firm headquartered in Germany; offers penetration testing and red team services, with a focus on offensive security and simulated attack testing.
Iteratec Nurdemteam Eg
German cooperative company and employee-owned entity; based in Germany, with explicit mention of offering penetration testing (pentest) services, including OWASP testing, as part of its portfolio. The organization is a shareholder in iteratec GmbH and aligns with the broader Iteratec group.
Codecentric AG
Germany-based IT consulting firm specializing in digital transformation and IT security; offers penetration testing and offensive security services, including infrastructure pentests and red teaming, with headquarters in Solingen, Germany.
ETAS
ETAS GmbH is a private automotive software development company based in Stuttgart, Germany, with 1,209 employees and $550.7M annual revenue. It specializes in vehicle software, middleware, development tools, cloud services, and cybersecurity solutions, including penetration testing for automotive cybersecurity; operates in automotive, embedded systems, AUTOSAR, and related fields, with a global ranking of #541,237.
CyberCompare
CyberCompare is a private IT services and cybersecurity consulting company based in Ludwigsburg, Germany, with 13 employees and -25% YoY growth. The firm specializes in security control comparison, vendor selection, and project management, including penetration testing services as confirmed by dedicated website pages and categorization under penetrationstest. It has a web presence of 5,942 monthly visits and a global rank of #3,094,006.
Ventum Consulting
Germany-based IT services and consulting company specializing in digital transformation, networking, and agileization; offers professional penetration testing services including perimeter, web, network, IoT, and mobile security assessments; emphasizes ethical hacking and attack vector identification.
TÜV Informationstechnik GmbH - TÜVIT (TÜV NORD GROUP)
Germany-based IT security and testing company with 72 employees (+5.2% YoY growth), founded in 1995; specializes in cybersecurity, software/hardware evaluation, IoT/Industry 4.0, data protection, ISMS, and mobile security; offers penetration testing, red teaming, and ethical hacking services to identify vulnerabilities through simulated attacks.
Protektis GmbH
German cybersecurity firm specializing in information security, IT security, and data protection; offers penetration testing services with a dedicated 'Penetrationstest' page; registered at Benzstraße 2a, 63741 Aschaffenburg, Germany, HRB 15923.
MGM Security Partners
German cybersecurity firm based in Munich; provides penetration testing, application security assessments, and red teaming services; specializes in offensive security testing and cybersecurity evaluations.
Stop wasting time on security questionnaires
ResponseHub uses AI to automate your security questionnaire responses. 100% confidence, save days, unblock deals.
valantic
valantic is a Germany-based private business consulting and digital solutions firm with 941 employees and $593.6M revenue; it serves over 500 clients including 33 DAX companies, specializing in digital transformation, IT services, analytics, and penetration testing services that combine Threat Intelligence, Penetration Testing, and Red Teaming to identify security vulnerabilities.
SECURAM Consulting GmbH
Germany-based IT services and consulting firm specializing in information security, cybersecurity, and compliance; offers consulting, risk analysis, project management, certification, and penetration testing services; 4 employees with 33.3% YoY growth; founded in 2012 in Hamburg, Germany.
Secfix
Germany-based IT services and consulting firm specializing in cybersecurity compliance, including ISO 27001, GDPR, and TISAX; offers automated security controls, trained auditors, and penetration testing services; 19 employees, $1.1M revenue, $4.5M funding, founded 2021, headquartered in Berlin.
zeroBS
zeroBS is a Germany-based IT & cybersecurity company providing cloud-based threat simulation, DDoS testing, and penetration testing services including red teaming and POC testing; 5 employees, -25% YoY growth, specializing in protecting against IoT, industrial, cloud, and mobile DDoS attacks.
Infraforce GmbH
German cybersecurity firm specializing in operational IT security; offers penetration testing, awareness training, endpoint security, TISAX, and ISO27001 services; headquartered in Giessen, Hessen, with a focus on practical, reliable cybersecurity solutions.
Normiks
German cybersecurity firm based in Halle (Saale); provides penetration testing, vulnerability scans, and IT security services; specializes in information security, data protection, and compliance.
Hitex GmbH
German embedded systems and security solutions provider; offers penetration testing, vulnerability assessments, and security validation services; headquartered in Karlsruhe, Germany; over 50 years of industry experience.
Bitsea GmbH
German-based software development company specializing in open source management, software quality analysis, and IT consulting; offers penetration testing services including red teaming and threat-led assessments; 7 employees (+10% YoY growth), founded 2009, with active industry engagement and a focus on software analysis and consulting.
Secjur
Germany-based cybersecurity firm Secjur GmbH specializes in compliance automation and full-service IT security, including penetration testing; headquartered in Hamburg, with a focus on European markets.
Bits + Bytes It-solutions GmbH & Co. Kg
German cybersecurity company headquartered in Kreuztal, North Rhine-Westphalia; provides data protection, information security, and penetration testing services, with a focus on security assessments and consulting.
Abass GmbH
Germany-based IT service provider specializing in system and security analysis, including penetration testing; offers rapid IT support via ServiceDesk for issues like server outages and network problems; confirmed presence in Germany through homepage and LinkedIn profile.
Fraunhofer-Gesellschaft
Research organization based in Germany with 1,061 employees and EUR 2.2B annual revenue; provides applied research and technological development, including penetration testing services through affiliated institutes; founded in 1949, headquartered in München, Bavaria.
Business IT Solutions Gmbh
German cybersecurity company based in Bremen; provides penetration testing (pentest) services including 'Individueller Pentest' as listed on their cybersecurity page; headquartered at Außer der Schleifmühle 27, Bremen.
Makay Kiberbiztonsági Kft.
Cybersecurity company specializing in penetration testing, threat intelligence, and IT security services; founded in 2017 with 2 employees in Budapest, Hungary. Offers a wide range of security solutions including red teaming, ransomware protection, and data center management.
PCA Cyber Security
Cybersecurity company specializing in penetration testing, threat intelligence, and monitoring for automotive, financial, energy, and manufacturing sectors; 22 employees (+52.6% YoY growth); founded 2019; headquartered in Budapest, Hungary; offers services including automotive cybersecurity, hardware research, payment systems security, and critical infrastructure security.
Gerico Security Srl
Gerico Security Srl is a Milan-based cybersecurity consulting company specializing in penetration testing, risk management, and operational continuity; with 15 employees, 28.6% YoY growth, founded in 2019, and offering services including offensive security, cybersecurity audits, and compliance consulting (ISO27001, ISO22301, PCI-DSS).
Skaylink.lt
Lithuanian IT services provider based in Vilnius; offers cloud, DevOps, and IT security solutions including penetration testing and security audits; specializes in active security testing with simulated attacks to identify vulnerabilities.
Fox IT
Netherlands-based cybersecurity firm specializing in penetration testing, red teaming, and attack simulation; offers in-depth vulnerability assessments and threat emulation services trusted by global corporations and governments.
SAFFRON Sp. z o.o.
Poland-based IT services and consulting company specializing in cybersecurity, GRC-as-a-Service, and penetration testing; 6 employees with 28.6% YoY growth; founded 2015; headquartered in Gdańsk, Poland; offers security testing, risk management, compliance, and cybersecurity governance services.
MULTIKOM AUDYT
IT & security consulting firm specializing in management system audits, risk, information security, and penetration testing; 3 employees; based in Jaworzno, Poland; offers security officer roles, training, and workshops.
All for One Poland
IT services company based in Poland; specializes in SAP management, digitalization, and cybersecurity testing including penetration testing services on IT infrastructure and financial applications. 330 employees; Founded 1995; Industry: Information Technology & Services.
Apriorit
Poland-based software engineering firm specializing in cybersecurity, with a focus on kernel-to-cloud solutions; provides penetration testing services to actively identify vulnerabilities and enhance security posture.
Nflo Sp. Z O.o.
Polish cybersecurity firm specializing in penetration testing services; explicitly lists penetration testing and related certifications such as Kali-based tests; headquartered in Warsaw, Poland.
BLUE energy Sp. z o.o.
Business consulting and services company based in Poznań, Poland; 43 employees; founded 2010; specializes in cybersecurity, automation, process optimization, audits, testing, and automation platforms; explicitly offers penetration testing services ('testy penetracyjne') to clients.
Sii Poland
Poland-based IT, engineering, and BPO solutions provider; offers cybersecurity services including penetration testing with dedicated pentest roles and attack simulations; headquartered in Poland, serving clients with active pentest engagements.
Patronusec
Cybersecurity firm based in Poznań, Poland; provides penetration testing services including infrastructure, application, web app, and network assessments; headquartered at ul. Św. Marcin 29/8, 61-806 Poznań, Poland.
Onwelo
IT solutions provider specializing in cybersecurity; offers penetration testing services to identify and eliminate vulnerabilities in IT infrastructure; based in Warsaw, Poland, with a focus on security testing and IT consulting.
Nokto Studios
Romania-based engineering consultancy specializing in embedded product development with end-to-end services; also offers penetration testing (pentest) cybersecurity consultancy, supporting offensive security activities.
Izertis
Spain-based technology consulting company specializing in digital transformation and cybersecurity; offers penetration testing and red team services; headquartered in Gijón, Spain, founded in Gijón, with a focus on security assessments and digital metamorphosis.
Bodforss
Sweden-based cybersecurity consulting firm headquartered in Göteborg; offers penetration testing including logical penetration tests with vulnerability analysis and actionable recommendations. The company has a branch in Stockholm.
Advania Group
Advania Group is a Swedish-based IT services and consulting firm with 165 employees and $1.4B annual revenue, operating across Nordics, UK, and Ireland; known for cybersecurity, cloud, and IT infrastructure services, and certified for penetration testing by UK NCSC.
Advertise on pentest.fyi
You could be here!
BlackBerry
Canadian cybersecurity company based in Waterloo, Ontario; specializes in secure communications, QNX embedded systems, and offers penetration testing services such as IoT security assessments, open source reviews, regulatory pentests, and adversary simulations.
Coral eSecure Private Limited
Canadian-based cybersecurity consulting firm specializing in penetration testing, privacy, and compliance standards; with 20+ years of experience, $10M annual revenue, and a focus on certification support for standards like SOC, NIST, HIPAA, GDPR, and ISO 27701.
NCC Group
UK-based IT services and cybersecurity consulting company; specializes in penetration testing, security assessments, and managed security services with 1,161 employees and $412.5M annual revenue. Operates globally with a focus on cyber resilience, responsible business, and sustainability; founded in 1999, market cap GBP 506.6M.
iSoft
UK-based cybersecurity firm specializing in penetration testing and ethical hacking; headquartered in Stockport, Cheshire, UK, with a presence in Manchester. Focuses on identifying vulnerabilities and safeguarding data against advanced cyber threats.
Stefanini Group
Brazilian multinational business consulting and digital solutions provider; 4,415 employees with 7.8% YoY growth, $1.4B revenue; offers digital transformation, AI, cybersecurity, and penetration testing services, with explicit emphasis on ethical hacking and vulnerability discovery.
Deloitte
Global professional services firm headquartered in Bogotá, Colombia; 355,547 employees, $67.2B revenue, founded 1845; offers business consulting, financial advisory, risk management, audit, legal, and cybersecurity services including penetration testing and red-team operations.
NRIセキュアテクノロジーズ株式会社 / NRI SecureTechnologies, Ltd.
NRI Secure Technologies Ltd. is a Japan-based private cybersecurity company specializing in computer and network security, with 130 employees and $10M annual revenue; founded in 2000 in Chiyoda, Tokyo. The firm offers penetration testing, vulnerability assessments, security consulting, and managed detection and response services, leveraging extensive expertise to deliver world-class security solutions. It maintains a significant online presence with 122,940 monthly visits and ranks #274,144 globally, serving clients across various sectors.
TopCertifier
Vietnam-based cybersecurity firm specializing in penetration testing services; offers VAPT Certification Consulting, Server, Network, and Infrastructure Penetration Testing; headquartered in Hanoi, Vietnam.
MGM Technology Partners
Vietnam-registered enterprise with offices in Da Nang and Ho Chi Minh City; offers penetration testing services including Red Teaming Assessments and attack simulations; involved in enterprise software development with the A12 Low Code Platform; recognized with IT award nominations.
TopCertifier
Certification company based in Philippines; offers ISO, CE Mark, VAPT, and HACCP certifications; explicitly references headquarters at GT Tower, Makati, Philippines; provides active penetration testing services including network and web application security testing.
Cyient
Private engineering services firm based in Hyderabad, India, with 10,553 employees (+4.2% YoY), $659.5M annual revenue, and INR 199.8B market cap; specializes in digital transformation, industry 4.0, geospatial, and cybersecurity solutions, including penetration testing services as part of its cybersecurity offerings.