CREST ANZ vs CREST International
If you're evaluating cyber security providers in Australia, you've probably come across the CREST logo more than once.
Not all CREST accreditations are the same.
There are two separate organisations using the CREST name in Australia: CREST ANZ and CREST International.
They are not the same body, they don't share accreditation standards, and one does not confer the other.
Important Clarification: CREST Australia New Zealand Ltd (“CREST ANZ”)
CREST ANZ operates as a separate organisation and does not deliver CREST (International) accreditation or certification frameworks.
The formal relationship between CREST (International) and CREST ANZ ended in April 2019 and for the avoidance of doubt, CREST ANZ has no rights to the CREST International suite of company accreditations or individual certifications.
CREST ANZ has not adopted our Accreditation Standards and therefore CREST ANZ membership alone is not recognised by CREST International as being equivalent.
CREST (International) accreditation and certification are distinct and independently governed, with specific standards, assessment processes, and global recognition.
The above is quoted from CREST International's buyer's procurement guide:

Additionally, CREST International appears to be the registered owner of the trademark for the CREST logo.


About Project Black
We are proud to be a CREST International accredited company based in Australia.
That means our processes, methodologies, and the individuals who scope, deliver, and sign off on our engagements have been assessed against CREST's global standards.


