CREST and EC-Council announce certification equivalency for penetration testers

Leading cyber security certification bodies CREST and EC-Council have announced mutual equivalency for their professional entry-point technical qualifications.  This significant initiative reflects the need to create an industry framework for equivalent technical cyber security qualifications measured against the same criteria to replicate the approach in other professions.

The announcement helps to address the confusion around qualifications, providing clear development credentialed pathways and access to professional careers.  This gives the buying community a much better idea of the level of skill, knowledge and competence of the individuals, allowing them to recruit and contract in a more informed and intelligent manner.  Both CREST and EC-Council qualifications are recognised globally and have been formally reviewed by governments and regulators.

The direct equivalency relates to the EC-Council Security Analyst (ECSA v10) qualification with the CREST Practitioner Security Analyst (CPSA) qualification. In addition, equivalency can also be granted for the for ECSA (Practical) with the CREST Registered Tester (CRT) certification, provided that the candidate already holds a valid CREST CPSA qualification.  The requirement that a Code of Conduct is signed remains an important part of the process ensuring ethical practices within the industry.  Re-examination and Continuous Professional Development are required to retain the qualifications to ensure currency.

“This formal agreement with EC-Council reflects the growing demand for skilled and experienced penetration testers and helps to establish a global ecosystem of certified professionals so that companies and organisations anywhere in the world have the confidence and trust in their purchasing and recruitment decisions,” said Ian Glover, president of CREST.

“This collaboration offers major benefits for current CREST and EC-Council professionals certified via rigorous hands-on exams that are proctored and is a testament of the high-quality exams provided by both organizations. Building professional, well-defined career pathways will encourage more high-quality entrants to the industry, to create a larger pool of certified and trusted professionals.  It also  presents greater international job opportunities for penetration testers globally,” added Jay Bavisi, President of EC-Council Group.