Outflank

Outflank

Speciality: Red Teaming

Amsterdam, Netherlands 15 employees Publishes CVEs
Visit Website View on LinkedIn
[01] About

Cybersecurity company specializing in red teaming and offensive security tooling; 11 employees with 7.1% YoY growth, $2M revenue, founded 2016, based in Amsterdam, Netherlands • Provides penetration testing and advanced threat resilience services, with a focus on attack kill chain assessment and security training.

Red Team Tooling & Tradecraft : Comprised of seasoned red teamers, Outflank is dedicated to elevating the field of offensive security through cutting edge research that enriches engagements, refines security tooling, and benefits the broader security community. Their wealth of experience and expertise has resulted in the creation of Outflank Security Tooling (OST), a broad set of evasive red team tools which is ideal for replicating real-world, advanced attack scenarios. A rapid pace of development ensures that users are equipped with the most modern, innovative techniques and tooling to effectively assess environments and bolster the resilience of blue teams. In addition to developing OST, the Outflank team offers collaborative red teaming services that provide visibility into an organization's defensive capabilities and strategic recommendations for improving security posture. Outflank is a proud to be a part of Fortra's comprehensive cybersecurity portfolio, whose mission is to simplify today's complex cybersecurity landscape by bringing complementary solutions together to solve problems in innovative ways. In particular, Outflank integrates and can be bundled with Cobalt Strike for an unparalleled combination ideal for sophisticated adversary simulations.
[02] Services
Outflank Provides Expert Red Teaming Services
Offensive Security Tooling
Advanced Threat Emulation To Enhance Organizational Security.
[03] Certifications
CISSP

CISSP Certification Overview


Origin


The Certified Information Systems Security Professional (CISSP) was created by the International Information System Security Certification Consortium, commonly known as (ISC)², in 1994. The certification was developed in response to the growing need for a standardized, vendor-neutral credential that could validate the expertise of information security professionals. (ISC)² designed the CISSP to establish a common body of knowledge for the cybersecurity field and provide a benchmark for measuring professional competence in information security.


Industry Value


The CISSP is widely regarded as one of the most prestigious and recognized certifications in cybersecurity, often required or preferred for senior-level security positions. Its value stems from its comprehensive coverage of eight security domains, including security operations, asset security, and security architecture, which demonstrates a candidate's broad expertise across the entire security landscape. The certification is accredited to ISO/IEC Standard 17024 and meets U.S. Department of Defense Directive 8570 requirements, making it particularly valuable for government contractors and enterprise organizations. Employers value CISSP-certified professionals because the rigorous examination process and experience requirements (minimum five years) ensure holders possess both theoretical knowledge and practical experience in managing and implementing security programs.
OSWP

OSWP Cybersecurity Certification


Origin


The Offensive Security Wireless Professional (OSWP) certification was created by Offensive Security, the same company behind the renowned OSCP certification. Launched in 2008, the OSWP was developed to address the growing need for professionals skilled in wireless network security assessment. Offensive Security created this certification to provide hands-on, practical training in identifying and exploiting vulnerabilities in 802.11 wireless networks, maintaining their philosophy of "Try Harder" and emphasizing real-world penetration testing skills over theoretical knowledge.


Industry Value


The OSWP is valued in the cybersecurity industry because it demonstrates proven practical ability in wireless network penetration testing through a hands-on exam format. Unlike multiple-choice certifications, holders must successfully crack WEP and WPA/WPA2 encryption and document their methodology in a professional penetration testing report. This certification is particularly respected because it validates actual technical competency rather than memorization, making OSWP holders attractive candidates for penetration testing roles, security consulting positions, and network security positions where wireless infrastructure assessment is critical.
CISA

CISA Certification Overview


Origin and History


The Certified Information Systems Auditor (CISA) certification was created by ISACA (Information Systems Audit and Control Association) in 1978. ISACA developed this credential in response to the growing need for standardized expertise in auditing, controlling, and securing information systems. As one of the oldest IT audit and security certifications available, CISA was designed to validate the knowledge and skills of professionals responsible for assessing an organization's IT and business systems vulnerabilities and implementing appropriate controls.


Industry Value and Importance


CISA is highly valued in the industry because it demonstrates a professional's ability to assess risk, implement controls, and ensure compliance with regulatory requirements. The certification is globally recognized and often required or preferred for roles in IT audit, cybersecurity, risk management, and compliance positions. Many organizations, particularly financial institutions, government agencies, and publicly traded companies, specifically seek CISA-certified professionals to meet internal audit requirements and regulatory obligations. The credential's emphasis on both technical knowledge and practical application makes it particularly relevant for professionals who need to bridge the gap between IT operations and business governance.

OCSP
[05] Notable Clients
  • Secura
  • Bulletproof Cybersecurity
  • Van Lanschot Kempen Wealth Management
  • Vectra
  • Boubyan Bank