CREST provide globally recognised professional level certifications for individuals providing the following services:
CREST do not offer training courses, they create exams and the syllabus for those exams, leveraging a community of expert associates. By leveraging this community, CREST can remain neutral and uphold the standards of the cyber security training industry. CREST training providers take the CREST exam syllabus and build CREST approved training courses around them. It is common to see non-CREST approved training providers attempting to build training courses using these syllabi. However, many of these providers are not CREST approved and use instructors who lack the relevant CREST qualifications, as a result many who take these courses go on to fail the exam as the instructor lacks the prerequisite knowledge to build such training courses. As a CREST approved training provider, both the instructor and the course must be validated by CREST. A key requirement of CREST before granting approval to a training provider, is to ensure sufficient insurances are in place, and that all course material and instructors meet their exacting standards.
CREST certifications are broken down into the following levels:
The below table lists all available CREST certifications:
Pathway(Click to sort Ascending)
Skill Level(Click to sort Ascending)
Certification Name(Click to sort Ascending)
Short Name(Click to sort Ascending)
|Penetration Testing||Practitioner||CREST Practitioner Security Analyst||CPSA|
|Penetration Testing||Registered||CREST Registered Security Analyst||CRSA|
|Penetration Testing||Certified||CREST Certified Infrastructure Tester||CCINF|
|Penetration Testing||Certified||CREST Certified Web Application Tester||CCAPT|
|Penetration Testing||Certified||CREST Certified Simulated Attack Specialist||CCSAS|
|Penetration Testing||Certified||CREST Certified Simulated Attack Manager||CCSAM|
|Threat Intelligence||Practitioner||CREST Practitioner Threat Intelligence Analyst||CPTIA|
|Threat Intelligence||Registered||CREST Registered Threat Intelligence Analyst||CRTIA|
|Threat Intelligence||Certified||CREST Certified Threat Intelligence Manager||CCTIM|
|Incident Response||Practitioner||CREST Practitioner Intrusion Analyst||CPIA|
|Incident Response||Registered||CREST Registered Intrusion Analyst||CRIA|
|Incident Response||Certified||CREST Certified Incident Manager||CCIM|
|Incident Response||Certified||CREST Certified Network Intrusion Analyst||CCNIA|
|Incident Response||Certified||CREST Certified Host Intrusion Analyst||CCHIA|
|Incident Response||Certified||CREST Certified Malware Reverse Engineer||CCMRE|
*Take a look at which CREST certifications align to the NCSC CHECK Status Scheme.
All arcX training courses are aligned to a CREST examination and go above and beyond the knowledge required to pass. arcX training courses involve extensive testing, with access to browser-based virtual labs to consolidate understanding.
CREST use Pearson Vue test centres and their own centres to ensure examinations are proctored correctly and in line with their standards. We highly recommend checking where your local Pearson Vue testing centre is in your country.
To book a CREST exam that can be taken in a Pearson Vue centre, go to the Pearson Vue website and navigate to the ‘For Test-Takers’ section. Here you will be able to search for CREST and find your examination listed. If you haven’t already done so, you will be asked to create an account to proceed with your booking.
Take a look at our current CREST accredited offering:
In-development (Register interest):
We will continue to add to our CREST training course offering, so we would recommend checking back regularly or contact us regarding courses currently unavailable.
Commonly asked questions relating to CREST