About Us

Who We Are

We are a cybersecurity consultancy established in 2019 in Leeds, United Kingdom. Our core competencies are security testing, compliance audits and strategic consultancy. We believe in integrity, transparency, loyalty to our clients and staff, and bringing innovation to our services. Ultimately we work with you to ensure you are in a better position to withstand emerging cyber threats.

With over 50 combined years in the IT industry, our team of ethical hackers and account managers are happy to recommend modern testing approaches, deliver quality assessments and provide post-assessment support. Our tailored approach ensures engagements of any size remain efficient and cost-effective.

Our Service

Our pre- and post-testing procedures ensure that every test runs smoothly and efficiently. The primary focus of our consultants and account managers is producing concise and contextualised deliverables suitable for reading at all levels of company management.

We understand the pressures of IT security management and the constraints that budgets can impose. We always provide a pragmatic face-to-face approach on every project from scoping to report delivery, ensuring our clients maximise their budgets.

All of our consultants are accredited by CREST and have a minimum of three years working in the field. This means we can deliver everything from a first network security assessment, through to annual testing schedules or complexed red team exercises.

We are a CREST Member company

All CREST member companies have submitted policies, processes and procedures relating to their service provision to CREST. These documents have been assessed and deemed fit for purpose by CREST. Resubmission is required every year and a full reassessment is required every three years to ensure compliance has been maintained. The CREST member company signs up to a binding and enforceable company Code of Conduct that ties them to their CREST submission. They also agree to align their complaints process with that of CREST. This forms the basis of any complaint and resolution measure.

CREST qualifications have been reviewed and endorsed by governments and regulators.
All CREST qualified professionals have to resit the examinations every three years.
All those holding a CREST qualification have signed a personal code of conduct. This ensures that they act in an ethical manner and adhere to the policies, processes and procedures of the CREST Member company they are working for.

We maintain the following qualifications:

CREST Certified Testers (CCT) have passed an industry recognised set of examinations to demonstrate their skill, knowledge and competence. These individuals will typically have at least 10,000 hours (5+ years) of relevant professional experience. They are capable of working independently, running full testing programmes and managing and co-ordinating teams.
CREST Registered Testers (CRT) have passed an industry recognised set of examinations to demonstrate their skill, knowledge and competence. These individuals will typically have at least 6,000 hours (3+ years) of relevant professional experience and be in a position to work independently.
CREST Practitioner Security Analysts (CPSA) have passed the entry level examination into the profession and and typically have around 2,500 hours (1+ years) of relevant professional experience and are capable of conducting routine assignments under general direction.

We are Cyber Essentials Plus accredited

Cyber Essentials is an effective, Government-backed scheme that will help you to protect your organisation, whatever its size, against a whole range of the most common cyber attacks. There are two levels of certification, Cyber Essentials Basic and Cyber Essentials Plus. We at Halo practice what we preach by holding Cyber Essentials Plus certification, proving our internal processes, policies and security controls are in line with National Cyber Security Centre (NCSC) standards.

We are IASME Governance Gold and Cyber Assured Level 1 accredited

The IASME Cyber Assurance (formerly known as IASME Governance) comes in two levels – Level 1 & Level 2. Halo obtained IASME Governance Gold standard as well as Cyber Assured Level 1 certification, which showcases our commitment to upholding a strong cyber security strategy as demonstrated by our processes and policies.