Banner: Bridewell Achieves CREST CSIR and SOC 2 Certification (Tick with circle on background)

Bridewell Achieves CREST CSIR and SOC 2 Certification

Published 29 June 2022

Last week, Bridewell achieved its fourth certification in collaboration with CREST, gaining the Cyber Security Incident Response (CSIR) certification. This new accreditation is the latest of Bridewell’s several existing certifications with CREST for Vulnerability Assessment (VA), Pen Testing and Security Operations Centre (SOC).

“The CREST IR accreditation continues to confirm Bridewell as a leading Incident Response provider that can support the detection, triage, containment and eradication of complex threats in a structured and methodical way,” says Tom Cox, Cyber Defence Manager at Bridewell, “It also cements the value we can provide to our existing and future clients looking to engage in a modern Incident Response or fully Managed Detection and Response service.”

Further enhancing Bridewell’s Managed Detection and Response (MDR) service, as well as our Incident Response Retainer Service, this will allow clients to better respond to critical threats to their organisation. As companies evaluate their need for a fully managed SOC service, a CSIR accreditation provides yet further evidence of the value an MDR provider can offer over traditional MSSP services.

The accreditation required Bridewell to compile and centralise its incident response documentation as well as work closely with clients to provide detailed and valuable case studies. Bridewell was able to obtain CREST IR with zero advisories showing a high level of maturity within this space.

Becoming SOC 2 Accredited

This latest certification follows Bridewell successfully completing a SOC 2 audit from the AICPA in recent months. SOC 2 governs how organisations manage their customer’s data, and is a reliable measure for third-party vendors of an organisation’s ability to securely handle their data.  The audit reviewed Bridewell’s relevant controls and was assured they met the following five trust principles:

  1. Security
  2. Availability
  3. Processing integrity
  4. Confidentiality
  5. Privacy

The completion of this audit, in conjunction with CREST CSIR, provides further proof of Bridewell’s capabilities as a trusted partner to critical and highly-regulated industries. For companies searching for managed SOC services or an MDR provider, a SOC 2 accreditation should form part of their decision-making criteria. To increase your organisations cyber resilience and maturity in step with a rapidly evolving threat landscape, seeking highly certified service providers is a sure way to work with a partner qualified to resolve your specific challenges.

For more information on how Bridewell’s SOC services can support your organisation, get in touch with the Bridewell team.


Tom Cox

Cyber Defence Manager