Back to CREST Website
Service Selection Platform

Prism Infosec Ltd

Prism Infosec is an award-winning cyber security consultancy based in Cheltenham and Liverpool, UK and was founded in 2006. The Company has delivered information security consultancy and assessment services to some of the world’s largest organisations.

Uniquely, Prism Infosec’s consultants possess both business and management focus but also a broad range of technical skill. Whether delivering advice on cutting edge information security architectural solutions, conducting management controls audits, or in-depth technical penetration testing our consultants always deliver a quality end-to-end service.

It is our ethos that our clients work with professional and experienced consultants (all background checked and vetted to the BS:7858 standard as a minimum and UK HMG clearance where necessary) at all times and customer satisfaction is our number one priority. We always ensure a prompt and efficient service and provide deliverables that can be used effectively by our audience at any level of the business.

Prism Infosec is a member of CREST and also certified to the UK Government originated Cyber Essentials Plus (CE+) scheme. Prism Infosec is a Cyber Essentials Plus certifying body with IASME, so we also offer certification services to our clients.

Prism Infosec maintains an ISO9001:2015 certified (UKAS-accredited) Quality Management System (QMS) and ISO27001:2013 certified (again UKAS-accredited) ISMS which ensures that quality and information security is at the heart of all our service offerings and client relationships.

Prism Infosec is also a Payment Card Industry (PCI) Qualified Security Assessor (QSA) Company, delivering cutting edge PCI assessment services and testing.

The Company prides itself on the delivery of complex engagements to its customers, across a number of our service offerings:

  • Enterprise application testing;
  • Bespoke infrastructure and red team engagements; 
  • obile application reviews (iOS, Android, Blackberry, Windows Phone);
  • Cryptographic analysis and reverse engineering; and
  • Social Engineering, phishing campaigns and simulated cyber-attacks.

Prism Infosec’s innovative approach to the delivery of PCI projects and technical security testing was recognised with a PCI Award for Technical Excellence in January 2020. The award was presented for the delivery of a client project that was considered by the review panel to be an outstanding example of best practice.

Accredited Services

Intelligence Led Penetration Testing (STAR)
Contact
Phil Robinson
+44 (0)1242 652100
[email protected]

Prism Infosec has a special focus on red teaming engagements. We believe red teaming is not only an essential practice to building a defensive teams capabilities and approach but also serves as a clear indication of an organisations true risk to a cyber attack. Prism Infosec have built their capabilities around clearly demonstrating where and how the attack chain succeeded and where the kill chain failed.  If these are questions you want answered, call us.

CREST Qualified Consultants:
CREST Certified Infrastructure Tester:
CREST Certified Web Application Tester:
Penetration Testing
Contact

Prism Infosec delivers complex and bespoke penetration testing services in the following areas:

  • Enterprise Applications
  • Mobile Application Testing (iOS, Android, Windows, Blackberry)
  • Infrastructure Testing
  • Social Engineering
  • Physical Security Reviews
  • Code Reviews (Web and Mobile Applications)
  • Transport Security Reviews
  • Mobile Ticketing
  • Red Teaming and Social Engineering
  • Radio / Wireless Security Assessments

Additionally, Prism Infosec can provide:

  • Web Application Testing
  • PSN Compliance / ITHCs
  • PCI Testing
  • Firewall Reviews
CREST Qualified Consultants:
CREST Practitioner Security Analyst:
CREST Registered Penetration Tester:
CREST Certified Web Application Tester:
CREST Certified Infrastructure Tester:
Vulnerability Assessment (VA)
Contact

Prism Infosec deliver manual and automated vulnerability assessment services and solutions, both internally and over the Internet. Whether periodic scans are required, or to monitor ongoing changes to the environment, Prism Infosec design and specify tailored solutions to clients.

The output from the service is a list of known vulnerabilities within the environment and details of their criticality which can be quickly used to construct a remediation action plan.

CREST Qualified Consultants:
CREST Practitioner Security Analyst:
CREST Registered Penetration Tester:
CREST Certified Web Application Tester:
CREST Certified Infrastructure Tester:
Application Status:
Application Audited:
Technical Assessment:

Government Schemes

ASSURE

Prism Infosec is based in Cheltenham and Liverpool, UK and was founded in 2006. The Company has delivered information security consultancy and assessment services to some of the world’s largest organisations.

Uniquely, Prism Infosec’s consultants possess both business and management focus but also a broad range of technical skill. Whether delivering advice on cutting edge information security architectural solutions, conducting management controls audits, or in-depth technical penetration testing our consultants always deliver a quality end-to-end service.

It is our ethos that our clients work with professional and experienced consultants (all background checked and vetted to the BS:7858 standard) at all times and customer satisfaction is our number one priority. We always ensure a prompt and efficient service and provide deliverables that can be used effectively by our audience at any level of the business.

The Company prides itself on the delivery of complex engagements to its customers, across a number of our service offerings: 

  • Cyber Security Reviews
  • Privacy Assessments
  • GDPR Compliance
  • Risk Assessments
  • Enterprise Application Testing and API Communication Analysis
  • Operational Technology Security Reviews and Audits

Prism Infosec deploy consultants and auditors with significant experience and as such can offer a pragmatic approach to understanding and assessing risk that is pertinent to the organisations that they work with. Our averse approach to the auditing and assessment of operational technology and process control networks ensures that the risk of service interruption associated with assurance activities is appropriately managed.

ASSURE Membership No: 20S010005

Non-Accredited Services

Security Architecture
(No CREST qualified consultants for this service)
Address Eagle Tower
Montpellier Drive
Cheltenham
Gloucester
GL50 1TA
UK
Telephone +44 (0)1242 652100
Email [email protected]
Website https://prisminfosec.com

Address Office 106 Anfield Business Centre 58 Breckfield Road South Liverpool L6 5DR UK
Telephone +44 (0)1242 652100
Email [email protected]
Website https://prisminfosec.com