Press Release

CREST joins with Hong Kong Institute of Bankers (HKIB) and Hong Kong Applied Science and Technology Research Institute (ASTRI) to strengthen cybersecurity skills and competence in Hong Kong.

18 November 2016: CREST has announced that it is collaborating with the Hong Kong Institute of Bankers (HKIB) and the Hong Kong Applied Science and Technology Research Institute (ASTRI) to deliver its high-level cybersecurity accreditations and examinations across Hong Kong from December 2016.

CREST provides internationally recognised accreditation for organisations and individuals providing penetration testing, cyber incident response and threat intelligence services.

From December, CREST will be working closely with both HKIB and ASTRI to develop tailored assurance programmes aligned to the needs of the dynamic Hong Kong market.

Rowland Johnson, director of CREST international, commented: “We are delighted to be working together with HKIB and ASTRI to deliver CREST certifications and accreditations in Hong Kong. We have seen a significant increase in cyber-attacks on the financial services sector.

Governments and regulators around the world recognise the importance of developing greater skills to fight cyber-crimes. With increasing demand for penetration testing and red teaming services within Hong Kong, high level CREST certifications give customers the trust and confidence they need when sourcing cybersecurity solutions.”

“CREST certifications have already become the de-facto standard in the UK and Australia; this latest announcement means that CREST will now be able to deliver increased levels of confidence to the buying community in Hong Kong in its fight against cyber-crime,” Ian Glover, president of CREST. “In partnership with HKBI and ASTRI, CREST seeks to strengthen and professionalise the cybersecurity skills and standards in Hong Kong.”

CREST is a not-for-profit accreditation and certification body that represents and supports the technical information security market.

CREST provides internationally recognised accreditations for organisations and individuals providing penetration testing, cyber incident response and threat intelligence services.

All CREST member companies undergo stringent assessment; while CREST qualified individuals have to pass rigorous professional-level examinations to demonstrate knowledge, skill and competence.

CREST also supports the industry by providing in-depth guidance material and commissioning detailed research projects all of which is provided to the industry free of charge.

Working alongside the UK’s Bank of England (BoE), government and industry, CREST also developed a framework to deliver controlled, bespoke, intelligence-led cybersecurity tests.
STAR (Simulated Targeted Attack and Response) incorporates penetration testing and threat intelligence services to accurately replicate threats to critical assets.

The STAR tests use Threat Intelligence to deliver these attack simulations to provide assurance that organisations have appropriate countermeasures and responses to detect and prevent cyber-attack.

The STAR scheme is a prerequisite for membership of the BoE CBEST scheme, used to provide assurance to the most critical parts of the UK’s financial services.

CREST accreditations are also supported by comprehensive codes of conduct for both the company and individual.

These codes are used to ensure the quality of the services provided, the integrity of the companies and individuals and adherence to audited policies, processes and procedures.

This provides a significant level of protection for any organisation procuring these types of services.


For media enquiries contact: Allie Andrews,, +44 (0) 7940 452710

Leave a Reply