Certification Equivalency Recognition Programmes

ECSA (v10) with CPSAECC-logo

CREST will grant direct equivalency with the CREST Practitioner Security Analyst (CPSA) qualification to candidates holding the ECSA v10 qualification provided that it has been issued within the three years prior to application.

To retain CREST CPSA qualification, on a three-year cycle candidates must take and pass the CREST CPSA examination.

Prior to submitting their application, eligible candidates must register with Pearson Vue (PV) in order to create a PV ID number.  They should then contact CREST for access to the portal to submit their equivalency application.  The application  for equivalency must include their EC-Council ID for proof of certification.  All candidates will be required to sign the CREST Code of Conduct for Qualified Individuals.   As part of the Code of Conduct, candidates will be required to attest that they are familiar and will comply with the local legal and regulatory requirements for delivering assessments in region.  On signing this document, CPSA equivalency will be granted from the date that the ECSA v10 was issued.

To apply, please email [email protected].  The time from initial application to CREST CPSA equivalency being granted is expected to be five (5) weeks.

Processing Fees
Candidates will be required to pay a £100 administration fee (or 150USD / 185AUD / 115EUR) which will cover the processing of their application. If this the administration fee is not paid within 30 days, the application will be declined and a new application will need to be submitted.

ECSA (Practical) with CRT

Candidates that wish to have equivalent status granted will be required to submit evidence of their ECSA (Practical) exam pass (including EC-Council ID) to CREST for validation. To apply, please email [email protected].

CRT equivalency will be granted where the candidate has taken and passed the ECSA (Practical) certification within three (3) years of the date that they apply to CREST for recognition and provided that they also hold a valid pass in the CREST Practitioner Security Analyst (CPSA) examination.  CRT equivalency will be granted from the date that the CPSA qualification was issued.

A CPSA qualification attained via ECSA written equivalency may be used as the CPSA pre-requisite for candidates wishing to sit the CREST Registered Penetration Tester examination but not as the CPSA pre-requisite for this CRT equivalency.

Eligible candidates that submit an application for equivalency will be required to sign the CREST Code of Conduct for Qualified Individuals.  As part of this Code of Conduct, candidates will be required to attest that they are familiar and will comply with the local legal and regulatory requirements for delivering assessments in region.  On signing this document, CRT equivalency will be granted from the date that the CPSA qualification was issued.

To retain the CRT qualification, candidates will be required to take and pass the CREST CPSA and either the CREST CRT qualification or the CREST Registered Security Analyst (CRSA) qualification on a three-year cycle.  Please note that a CPSA qualification attained via ECSA V10 equivalency may not be used as the CPSA pre-requisite for candidates wishing to sit the CRT or CRSA examination.

The time from initial application to CREST CRT equivalency being granted is expected to be five (5) weeks.

Processing Fees
Candidates will be required to pay a £100 (or 150USD / 185AUD / 115EUR) administration fee which will cover the processing of their application.  If this the administration fee is not paid within 30 days, the application will be declined and a new application will need to be submitted.