Contact
Julian Storr
[email protected]

STAR-FS tests are intelligence-led but require significantly less input from regulatory bodies, allowing the faster production of deliverables that enable organisations to uplift their security posture and improve their detection and response capabilities.

AmberWolf maintain a skillset that complies with and exceeds the STAR-FS requirements to have CCSAM and CCSAS consultants with a minimum of four thousand hours of testing financial institutions.

Contact
Julian Storr
[email protected]

CBEST is the original regulated TLPT (Threat-Led Penetration Testing), developed by the Bank of England as a supervisory tool for testing resilience of regulated financial service entities. These exercises involve performing multiple red-team scenarios against an organisation without the wider knowledge of their defensive teams, testing their people, process and technologies in resilience to attack as well as the detection and response capability of targeted organisations.

Within the UK market CBEST is generally considered the highest level of accreditation awarded to cyber security consultancies within the UK, with AmberWolf being one of a small number of accredited organisations.

Our team have deep-rooted experience of performing CBEST engagements, dating back to 2016, with staff having consistently held CCSAS and CCSAM qualifications since 2015. Our staff have delivered CBESTs for some of the world’s largest financial institutions, as well as delivering similar engagements under other regulated schemes including TIBER, ICAST, AASE and CORIE.

AmberWolf is built around its expertise in attack-simulation capabilities. Our breadth of experience delivering these engagements and technical capability enables simulation of offensive activities within live production IBS (Important Business Services) systems whilst managing operational risk. AmberWolf understands some of the unique challenges facing many financial service organisations, with our balanced reports detailing identified risks and remediation advice tailored to the technology stacks and existing business processes within the organisation.

Contact
Julian Storr
[email protected]

TIBER-EU is the TLPT (Threat-Led Penetration Testing) scheme for European financial services. Originally based on the Bank of England’s CBEST scheme. TIBER engagements focus on testing Cyber Resiliency for the EU financial services market.

Our team have deep-rooted experience of performing regulated TLPT engagements, dating back to 2016, with staff having consistently held CCSAS and CCSAM qualifications since 2015. Our staff have delivered CBESTs for some of the world’s largest financial institutions, as well as delivering similar engagements under other regulated schemes including CBEST, ICAST, AASE and CORIE.

AmberWolf is built around its expertise in attack-simulation capabilities. Our breadth of experience delivering these engagements enables simulation of offensive activities within live production IBS (Important Business Services) systems whilst managing operational risk.

Contact
Julian Storr
[email protected]

GBEST is a scheme designed to test the cyber resilience of government departments, based on Bank of England’s CBEST scheme with a focus on testing resilience and demonstrating impact of sophisticated cyber attacks against government services.

AmberWolf is one of a very small number of firms with staff who have experience of performing GBEST engagements. We are happy to have the capability to provide this service to UK government departments.