CREST ANZ vs CREST International

If you're evaluating cyber security providers in Australia, you've probably come across the CREST logo more than once.

CREST ANZ vs CREST International

Not all CREST accreditations are the same.

There are two separate organisations using the CREST name in Australia: CREST ANZ and CREST International.

They are not the same body, they don't share accreditation standards, and one does not confer the other.

Important Clarification: CREST Australia New Zealand Ltd (“CREST ANZ”)

CREST ANZ operates as a separate organisation and does not deliver CREST (International) accreditation or certification frameworks.

The formal relationship between CREST (International) and CREST ANZ ended in April 2019 and for the avoidance of doubt, CREST ANZ has no rights to the CREST International suite of company accreditations or individual certifications.

CREST ANZ has not adopted our Accreditation Standards and therefore CREST ANZ membership alone is not recognised by CREST International as being equivalent.

CREST (International) accreditation and certification are distinct and independently governed, with specific standards, assessment processes, and global recognition.

The above is quoted from CREST International's buyer's procurement guide:

Procuring Trusted Cyber Security Services
Download CREST International’s Cyber Security Procurement Guide for Australia and New Zealand. Learn how to select trusted providers for penetration testing, threat intelligence, incident response and SOC services.

Additionally, CREST International appears to be the registered owner of the trademark for the CREST logo.

Trade Mark 2316219 | IP Australia | Trade Mark Search
Use the Trade Mark Search to find existing registered and pending trade marks in Australia.

About Project Black

We are proud to be a CREST International accredited company based in Australia.

That means our processes, methodologies, and the individuals who scope, deliver, and sign off on our engagements have been assessed against CREST's global standards.

Project Black
Project Black is a research driven Australian cyber security consultancy backed by a track record of discovering zero-day vulnerabilities. We specialise in penetration testing and application security.