Firmus ad FINAL552x311


Firmus Sdn Bhd, Malaysia’s leading cyber security service and consultancy company, has been accepted by CREST (International) to be an accredited member for the provision of Penetration Testing Services.

FIRMUS was accredited for its policies, processes and procedures relating to their service provision, as up to CREST standard.  These policies, processes and procedures have been assessed by CREST and have been deemed fit for purpose.

CREST is a not for profit organisation that serves the needs of a technical information security marketplace that requires the services of a regulated professional services industry. It provides organisations wishing to buy penetration testing services, threat intelligence, or incident response services, with confidence that the work will be carried out by qualified individuals with up to date knowledge, skill and competence of the latest vulnerabilities and techniques used by real attackers.

Chief Executive Officer of Firmus, Alan See, said that the accreditation is an affirmation of Firmus’ commitment to process, policies and procedures excellence and compliance in Penetration Testing service.

“CREST Certification for Firmus is testimony that our Penetration Testing service demonstrates a level of assurance in processes and procedures,” he said, adding,“Our Penetration Testing services will be carried out by qualified staffs with up to date knowledge, skill and competence of the latest vulnerabilities and techniques used by real attackers.”

FIRMUS had previously won the ‘Cyber Security Company of the Year’ in 2016 and its Co-Founder and CEO, Alan See was recently awarded ‘Cyber Security Professional of the Year’ in mid-October, 2017.


Firmus Sdn Bhd is a Malaysian regional info-security service and consultancy company. Established by IT Security Veterans in 2008, Firmus offers a comprehensive suite of security solutions and services that address internet security and risk management requirements. Among the company’s core services include critical infrastructure protection, risk assessment and compliance, security testing as well as training.  Firmus currently serves more than 100 customers across multiple industries with banks and financial institutions being its major clientele group, other clients hail from the telecommunications, airlines, broadcasting, airports, shipping ports, gaming, etc industries.


CREST is a not-for-profit accreditation and certification body that represents and supports the technical information security market. CREST was set up in 2006 in response to the clear need for more regulated professional services and is now recognised globally as the cyber assurance body for the technical security industry. It provides internationally recognized accreditations for organisations and individuals providing penetration testing, cyber incident response and threat intelligence services.

All CREST member companies undergo stringent assessment;  while CREST qualified individuals have to pass rigorous professional level examinations to demonstrate knowledge, skill and competence.  CREST also supports the industry by providing in-depth guidance material and commissioning detailed research projects all of which is provided to the industry free of charge.



There are no comments

Add yours