RandomStorm Ltd
Speciality: Network and Social Engineering Pentesting
UK-based network security company providing enterprise security management tools and penetration testing services; employs 4 people, founded 2007, with $2.5M annual revenue; headquartered in United Kingdom.
CHECK Certification
The CHECK (CHecklist Evaluating Computers and Key security) scheme was established by CESG (the UK government's National Technical Authority for Information Assurance, now part of the National Cyber Security Centre) in 1997. It was created to provide a structured framework for conducting information technology security assessments and penetration testing within UK government and critical national infrastructure environments. The scheme was designed to ensure that individuals performing security testing on sensitive systems possessed verified skills and adhered to established standards and methodologies.
The CHECK certification is highly valued because it represents government-endorsed validation of a security professional's ability to conduct rigorous, methodical security assessments. Organizations handling sensitive government data or operating within critical national infrastructure sectors often require CHECK-certified testers to ensure compliance with UK security standards. The certification's importance stems from its strict vetting process, which includes security clearance requirements and demonstration of technical competency, making CHECK holders trusted to access and test sensitive systems where standard commercial certifications may not suffice.
PCI DSS Certification
Origin
The Payment Card Industry Data Security Standard (PCI DSS) was created in 2004 by the major credit card companies: Visa, Mastercard, American Express, Discover, and JCB International. These companies formed the PCI Security Standards Council in 2006 to manage and evolve the standard. PCI DSS was developed in response to increasing credit card fraud and data breaches, establishing a unified set of security requirements for all organizations that store, process, or transmit cardholder data. The goal was to create consistent security measures across the payment card industry to protect sensitive payment information.
Industry Value and Importance
PCI DSS compliance is mandatory for any business that handles credit card transactions, making it one of the most critical security standards in commerce today. The certification demonstrates that an organization has implemented robust security controls, including network protection, access management, encryption, and regular security testing. Non-compliance can result in severe consequences, including substantial fines (up to $100,000 per month), increased transaction fees, loss of payment processing privileges, and reputational damage following a breach. For IT professionals, PCI DSS expertise is highly valued as organizations across all industries need qualified personnel to implement, maintain, and audit these security controls.