CREST is a not for profit organisation that serves the needs of a technical information security marketplace that requires the services of a regulated professional services industry.
CREST represents the technical information security industry by:
CREST provides organisations wishing to buy penetration testing services, threat intelligence or incident response services with confidence that the work will be carried out by qualified individuals with up to date knowledge, skill and competence of the latest vulnerabilities and techniques used by real attackers.
A PDF with background information on CREST (International) is available here: What is CREST (International)
A copy of CREST’s Annual Review for 2015/16 can be downloaded here: CREST Annual Review