OSCP-certified testers. Manual testing mapped to Annex A.8.8 and A.8.29. Stage 2 audit-ready report your certification body will accept — starting at $2,000.
Annex A.8.8 — Technical Vulnerability Mgmt
We produce the technical evidence A.8.8 requires — active identification of vulnerabilities, assessment of exposure, and documented remediation. A manual penetration test your Stage 2 auditor can evaluate directly.
Annex A.8.29 — Security Testing in Dev
For in-scope applications and systems, we provide security testing evidence A.8.29 requires — pre-release and periodic testing mapped to your development lifecycle and ISMS scope definition.
Stage 2 Audit Ready in 5 Days
Report mapped to specific Annex A controls. CVSS scores, reproduction steps, and remediation guidance formatted for certification body review. Schedule 4–8 weeks before your Stage 2 date for remediation time.
SoA-Compatible Findings
Every finding references the Annex A control it validates or fails. Your compliance team can update your Statement of Applicability and risk register directly from our deliverable. No translation required.
Fixed Price from $2,000
No hourly billing. No surprise scope changes. Fixed quote within 24 hours of your scoping call. The price you’re quoted is the price you pay.
OSCP-Certified Testers
Every tester holds OSCP or equivalent (CREST, CEH). Credentials your certification body recognizes. ISO/IEC 27008-aligned methodology documentation available on request.
Every report pre-formatted to satisfy certification body requirements — BSI, DNV, LRQA, TUV, and SGS all recognized.
Manual testing across every attack surface within your ISMS certification scope.
ISMS SCOPE BOUNDARY TESTING
We test every system and application within your ISO 27001 certification scope — mapped precisely to your Statement of Applicability. External perimeter, internal network, web applications, APIs, and cloud environments inside the ISMS boundary.
SURVEILLANCE AUDIT EVIDENCE
Certification bodies don’t just check your Stage 2 report — surveillance auditors want to see that security testing has operated consistently. Our annual engagement gives you fresh A.8.8 evidence for every surveillance cycle.
READY FOR YOUR ISO 27001 PENTEST?
Tell us about your ISMS scope and Stage 2 date. Get a fixed scope and quote from a certified pentester within 1 business day.
Annex A.8.8 — Technical Vulnerability Mgmt
We produce the technical evidence A.8.8 requires — active identification of vulnerabilities, assessment of exposure, and documented remediation. A manual pentest your Stage 2 auditor evaluates directly.
Annex A.8.29 — Security Testing in Dev
Security testing evidence A.8.29 requires — pre-release and periodic testing mapped to your development lifecycle and ISMS scope definition.
Stage 2 Audit Ready in 5 Days
Report mapped to specific Annex A controls with CVSS scores, reproduction steps, and remediation guidance. Schedule 4–8 weeks before your Stage 2 date for remediation and free retest time.
SoA-Compatible Findings
Every finding references the Annex A control it validates or fails. Your compliance team updates your Statement of Applicability and risk register directly from our deliverable.
Fixed Price from $2,000
No hourly billing. No surprise scope changes. Fixed quote within 24 hours of your scoping call. The price you’re quoted is the price you pay.
OSCP-Certified Testers
Every tester holds OSCP or equivalent (CREST, CEH). Credentials your certification body recognizes — BSI, DNV, LRQA, TUV, and SGS all accepted.
Reports pre-formatted for BSI, DNV, LRQA, TUV, and SGS certification bodies.
Manual testing across every attack surface within your ISMS certification scope.
ISMS SCOPE BOUNDARY TESTING
We test every system and application within your ISO 27001 certification scope — mapped precisely to your Statement of Applicability. External perimeter, internal network, web applications, APIs, and cloud environments inside the ISMS boundary.
SURVEILLANCE AUDIT EVIDENCE
Certification bodies check that security testing has operated consistently year over year. Our annual engagement gives you fresh A.8.8 evidence for every surveillance cycle, with findings that reference your live risk register.
Annex A.8.8 — Technical Vulnerability Mgmt
We produce the technical evidence A.8.8 requires — active identification of vulnerabilities, assessment of exposure, and documented remediation. A manual pentest your Stage 2 auditor evaluates directly.
Annex A.8.29 — Security Testing in Dev
Security testing evidence A.8.29 requires — pre-release and periodic testing mapped to your development lifecycle and ISMS scope definition.
Stage 2 Audit Ready in 5 Days
Report mapped to specific Annex A controls with CVSS scores, reproduction steps, and remediation guidance. Schedule 4–8 weeks before your Stage 2 date for remediation and free retest time.
SoA-Compatible Findings
Every finding references the Annex A control it validates or fails. Your compliance team updates your Statement of Applicability and risk register directly from our deliverable.
Fixed Price from $2,000
No hourly billing. No surprise scope changes. Fixed quote within 24 hours of your scoping call. The price you’re quoted is the price you pay.
OSCP-Certified Testers
Every tester holds OSCP or equivalent (CREST, CEH). Credentials your certification body recognizes — BSI, DNV, LRQA, TUV, and SGS all accepted.
Reports pre-formatted for BSI, DNV, LRQA, TUV, and SGS certification bodies.
Manual testing across every attack surface within your ISMS certification scope.
ISMS SCOPE BOUNDARY TESTING
We test every system and application within your ISO 27001 certification scope — mapped precisely to your Statement of Applicability. External perimeter, internal network, web applications, APIs, and cloud environments inside the ISMS boundary.
SURVEILLANCE AUDIT EVIDENCE
Certification bodies check that security testing has operated consistently year over year. Our annual engagement gives you fresh A.8.8 evidence for every surveillance cycle, with findings that reference your live risk register.
READY FOR YOUR ISO 27001 PENTEST?
Tell us about your ISMS scope and Stage 2 date. Get a fixed scope and quote from a certified pentester within 1 business day.
Does ISO 27001 require a penetration test?
Annex A.8.8 (management of technical vulnerabilities) and A.8.29 (security testing in development and acceptance) create practical requirements for active security testing. Certification bodies treat penetration test evidence as the strongest available demonstration of these controls operating effectively.
How often should an ISO 27001 pentest be performed?
Annual penetration testing aligned with your ISMS surveillance audit cycle is industry standard. Additional testing should be performed after significant changes to the certification scope, infrastructure, or in-scope applications.
What’s the difference between ISO 27001:2013 and ISO 27001:2022 for pentesting?
The 2022 revision added A.8.8 and A.8.29 as more explicit controls around technical vulnerability management and security testing. Reports must reference the 2022 control numbering. We update reports automatically for clients transitioning from 2013.
Will the pentest report satisfy my Stage 2 auditor?
Yes. Our reports are mapped to specific Annex A controls with CVSS scores, reproduction steps, and remediation guidance. Certification bodies from BSI, DNV, LRQA, and TUV recognize this format. Free retest produces an updated report showing closed findings.
How much does an ISO 27001 penetration test cost?
Starting from $2,000. Fixed price. Free retest included. Quote within 24 hours of scoping.
.svg)