NIST Penetration Testing Providers
National Institute of Standards and Technology SP 800-115 · Published by National Institute of Standards and Technology
NIST Special Publication 800-115, the Technical Guide to Information Security Testing and Assessment, provides a structured methodology for planning and conducting security assessments developed by the United States National Institute of Standards and Technology. This publication establishes a framework for organisations to evaluate the effectiveness of their security controls through testing techniques including vulnerability scanning, penetration testing, and social engineering.
NIST SP 800-115 defines four phases of security testing: planning, discovery, attack, and reporting. The planning phase covers scope definition, rules of engagement, and approval processes. The discovery phase includes information gathering, vulnerability scanning, and analysis. The attack phase covers exploitation, privilege escalation, and lateral movement. The reporting phase defines how findings should be documented, prioritised, and communicated to stakeholders.
As a US government publication, NIST SP 800-115 is authoritative for federal agencies and contractors, and is widely referenced in private sector security testing programmes. It aligns with the broader NIST Cybersecurity Framework (CSF) and NIST SP 800-53 security controls, making it particularly relevant for organisations that use NIST as their primary security framework. The methodology's emphasis on thorough planning and clear reporting makes it a strong foundation for regulatory-driven penetration testing programmes.
Key Features
- —Four-phase testing framework
- —US government authoritative standard
- —Aligns with NIST CSF and SP 800-53
- —Covers planning through reporting
- —Social engineering testing guidance
Best For
- —US federal agency testing
- —FedRAMP assessments
- —CMMC compliance
- —NIST CSF aligned organisations
- —Regulatory-driven testing programmes
Providers using NIST (57)
SECFORCE
Leading UK offensive security consultancy based in Canary Wharf, delivering CREST-accredited penetration testing and adversary simulation to organisations with the most demanding security requirements.
NetSPI
Leading penetration testing firm with the Resolve platform for continuous attack surface management, trusted by nine of the top ten US banks.
Pen Test Partners
The UK's largest independent security testing firm, renowned for IoT/OT research, CBEST red teaming, and CHECK/CREST-accredited penetration testing across all sectors.
PwC Cyber Security
Global Big Four professional services firm delivering CREST, CHECK, and CBEST-accredited penetration testing and red teaming services from London, serving the UK's largest enterprises and regulated organisations.
Dionach
Global enterprise cybersecurity consultancy founded in 1999 in Oxford, holding rare CREST STAR-FS accreditation and delivering penetration testing, red and purple teaming, and PCI QSA services across five international offices.
MDSec
Elite UK offensive security consultancy specialising in CBEST/STAR/TIBER red teaming, advanced adversary simulation, and CREST-accredited penetration testing for FTSE 100 clients.
Trustwave
Global managed security provider with the elite SpiderLabs penetration testing team and deep PCI DSS compliance expertise.
Secarma
Manchester-based independent cybersecurity consultancy with over 20 years of experience delivering CREST and CHECK-accredited penetration testing, red teaming, and compliance certification services.
Aristi
CHECK and CREST-accredited Birmingham-based cyber security consultancy with over 15 years of experience delivering penetration testing, red teaming, and OT security assessments for government and private sector clients.
Bridewell
Fast-growing CREST and CHECK-accredited UK cybersecurity consultancy with deep expertise in critical national infrastructure sectors.
JUMPSEC
Full-service London-based cybersecurity consultancy with CREST, CHECK, and NCSC accreditations delivering offensive testing, managed detection, and strategic advisory services.
Mandiant
World-renowned cybersecurity firm now part of Google Cloud, delivering threat intelligence-led penetration testing and red teaming informed by front-line incident response experience.
NIST FAQs
Is NIST SP 800-115 mandatory for US federal agencies?+
While not universally mandatory, NIST SP 800-115 is the authoritative technical guide for federal security testing and is widely adopted across US government agencies and their contractors. FedRAMP and CMMC reference NIST testing standards.
How does NIST SP 800-115 relate to the NIST Cybersecurity Framework?+
SP 800-115 provides the technical testing methodology that supports the NIST CSF's Identify and Protect functions. It helps organisations assess whether the security controls defined by NIST SP 800-53 are effectively implemented.
Can non-US organisations use NIST testing methodology?+
Absolutely. While developed for US government use, NIST SP 800-115 is freely available and widely adopted internationally. Many organisations outside the US use it alongside other frameworks like OWASP and PTES.