Directory
Cybersecurity Companies
61+ companies across 7 specializations
Filter by specialty
Filter by country
Offensive Security
Pioneer of the offensive security industry, creators of Kali Linux and the OSCP certification. Offers professional pentesting services, cutting-edge research, and the gold standard in offensive security training globally.
NCC Group
Global cybersecurity consulting firm with deep expertise in penetration testing, security assessments, and managed security services. Operates across Europe, Asia, and North America serving organizations of all sizes.
Bishop Fox
Leading offensive security firm known for continuous attack surface management, red team operations, and high-quality manual penetration testing. Recognized for innovative research and adversary simulation.
Trustwave
Global managed security services provider with deep expertise in penetration testing, threat hunting, and incident response. Serves financial, retail, healthcare, and government sectors worldwide.
Coalfire
Trusted cybersecurity advisor providing penetration testing, threat and vulnerability management, and compliance assessments. Specializes in cloud security and regulatory compliance for tech companies.
Synack
Most trusted crowdsourced security testing platform, combining vetted ethical hackers with AI-powered attack surface discovery. Delivers continuous penetration testing through a curated network of global researchers.
HackerOne
World's leading bug bounty and vulnerability disclosure platform. Connects organizations with a global community of ethical hackers to find security vulnerabilities through managed bug bounty and VDP programs.
Bugcrowd
Crowdsourced cybersecurity platform providing managed bug bounty, vulnerability disclosure, and penetration testing programs. Curated researcher community covers a wide range of technical specialties.
NetSPI
Proactive security company offering penetration testing as a service, attack surface management, and breach and attack simulation. Combines expert human testers with a powerful delivery platform.
Cobalt
Pentest as a Service (PTaaS) platform combining SaaS delivery with elite, curated security researchers. Provides fast, high-quality penetration testing with real-time reporting and integrated remediation guidance.
Secureworks
Global cybersecurity leader providing threat detection and response, vulnerability management, and managed security services. Taegis XDR platform powers comprehensive security operations for enterprise clients.
Arctic Wolf
Leading security operations company providing MDR, managed risk, and managed cloud monitoring. Delivers 24x7 security operations through their unique Concierge Security Team engagement model.
Expel
Transparent managed detection and response provider using automation and human expertise to find and fix security issues. Integrates with existing security tools and provides clear, actionable alerts with full transparency.
Red Canary
Managed detection and response platform that works on top of your existing security stack. Analyzes endpoint, network, cloud, identity, and SaaS telemetry to surface only real, validated threats.
eSentire
Pure-play MDR provider with 24x7 threat detection, investigation, and response. Protects organizations from known and unknown threats through a combination of machine-driven and human-led detection and response.
Herjavec Group
Global managed security services provider offering MDR, SOC-as-a-service, and professional security services. Supports organizations across North America and Europe with around-the-clock security operations.
Optiv
Security solutions integrator and MSSP delivering end-to-end security programs. Combines advisory, technology, and managed services to help enterprises manage cyber risk at scale.
Deepwatch
Leading managed security platform combining human expertise with advanced automation to deliver MDR. Cloud-native platform integrates deeply with Splunk and other leading security technologies.
Netsurion
Managed threat protection and SIEM-based managed security services for mid-market and distributed enterprises. Co-managed SOC model allows for flexible engagement and deep integration with existing environments.
Fishtech
Security solutions provider offering managed security, cloud security, and professional services. CODA Security Operations Center delivers 24x7 MDR with deep expertise in cloud-native environments.
Mandiant
Global leader in incident response and threat intelligence, now part of Google Cloud. Their elite IR team has responded to more breaches than any other firm; frontline intelligence drives security decisions worldwide.
CrowdStrike Services
Incident response, proactive assessments, and strategic advisory powered by the CrowdStrike Falcon platform. Globally recognized for rapid containment, attribution, and post-incident hardening.
Palo Alto Unit 42
Threat intelligence and incident response team of Palo Alto Networks. Offers IR retainer services, compromise assessments, and post-incident forensics backed by world-class threat research and telemetry.
Kroll
Global leader in risk and financial advisory with a deeply experienced cybersecurity practice. IR team handles thousands of incidents annually, covering digital forensics, data breach response, and ransomware recovery.
Alvarez & Marsal Cyber
Disputes and investigations practice with a dedicated cyber team providing digital forensics, incident response, and litigation support. Combines business advisory expertise with deep technical cyber capabilities.
Booz Allen Hamilton
Global management and technology consulting firm with a major cybersecurity practice serving government and commercial clients. Provides IR, threat hunting, and cyber resilience services at national scale.
Ankura
Cyber practice providing incident response, forensic investigations, ransomware recovery, and breach notification services. Combines technical expertise with legal and regulatory acumen for comprehensive incident handling.
Stroz Friedberg (Aon)
Global leader in digital forensics, incident response, and cyber due diligence, an Aon company. Teams of former law enforcement and intelligence professionals handle complex, high-stakes cyber investigations.
Kivu Consulting
Specializes in cyber incident response and digital forensics for commercial clients and law firms. Known for rapid response, ransomware negotiations, and privacy breach investigations with forensic rigor.
Crypsis Group (Unit 42)
Boutique IR and forensics firm now integrated into Palo Alto Networks Unit 42. Known for handling complex, nation-state level incidents in financial, legal, and highly regulated environments.
Schellman
Leading IT compliance assessor specializing in SOC 2, ISO 27001, PCI DSS, FedRAMP, and HITRUST assessments. Works with technology companies, SaaS providers, and cloud platforms globally.
A-LIGN
Technology-enabled cybersecurity and compliance firm providing SOC 2, ISO 27001, HITRUST, PCI DSS, and FedRAMP assessments. Serves technology startups to Fortune 500 companies.
Drata
Security and compliance automation platform that continuously monitors controls and collects evidence for SOC 2, ISO 27001, HIPAA, and more. Dramatically reduces time and cost of compliance audits.
Vanta
Trust management platform that automates security monitoring and evidence collection for SOC 2, ISO 27001, HIPAA, and GDPR. Helps companies get compliant faster and maintain continuous compliance posture.
Secureframe
Automates security compliance for SOC 2, ISO 27001, PCI DSS, and HIPAA. Integrates with 200+ cloud services to automate evidence collection and streamline the audit process for growing companies.
KirkpatrickPrice
Licensed CPA firm and full-service cybersecurity auditor specializing in SOC 2, ISO 27001, HIPAA, and PCI DSS assessments. Combines audit expertise with education and hands-on remediation guidance.
Tevora
Specialized information security consulting firm focused on GRC, penetration testing, and managed security. Helps organizations navigate complex compliance frameworks and build robust security programs.
Moss Adams
Professional services firm with a dedicated cybersecurity advisory practice covering GRC, SOC assessments, penetration testing, and privacy compliance for mid-market and large enterprises.
Tugboat Logic (OneTrust)
Security assurance platform that simplifies the path to SOC 2, ISO 27001, and other frameworks through automated policy generation, risk assessment, and vendor management. Now part of OneTrust.
Coalfire Systems
Leading cybersecurity firm specializing in compliance, risk management, and security advisory. Certified assessors for PCI DSS, FedRAMP, HITRUST, and more across cloud and on-premises environments.
CloudSEK
AI-powered digital risk monitoring company focused on threat intelligence from the dark web, surface web, and social media. Helps organizations proactively discover external threats and data exposures.
Palo Alto Networks
Global cybersecurity leader providing network security, cloud security (Prisma Cloud), and security operations (Cortex). Serves large enterprises and governments across every major industry worldwide.
Check Point Software
Global provider of network, cloud, and endpoint security solutions. CloudGuard platform delivers cloud-native security posture management and workload protection across multi-cloud environments.
Zscaler
Leading zero trust cloud security platform delivering secure access to internet, SaaS, and private apps for users anywhere. Cloud-native architecture eliminates the need for traditional VPN and network security appliances.
Wiz Professional Services
Cloud security advisory and professional services from the Wiz team. Helps organizations design and implement secure cloud architectures and get maximum value from cloud security tooling across AWS, Azure, and GCP.
NowSecure
Leading mobile application security platform offering automated testing, penetration testing, and compliance for iOS and Android apps. Helps development teams ship secure mobile applications faster.
Contrast Security
Application security platform that instruments applications to detect and prevent attacks in real time. IAST approach finds vulnerabilities during testing with no separate scanning step required.
Data Theorem
API security and mobile application security solutions with a fully automated approach. Analyzer engine continuously tests APIs, mobile apps, and cloud services for vulnerabilities without manual intervention.
WhiteHat Security (NTT)
Application security testing including SAST, DAST, and API security, now part of NTT Application Security. Combines automation with human-verified results to reduce false positives and alert fatigue.
Praetorian
Offensive cybersecurity firm specializing in application security, cloud security, and embedded device security. Chariot platform provides continuous attack surface management with expert-led offensive testing.
SANS Institute
Most trusted and largest provider of cybersecurity training, certification, and research in the world. Offers 60+ hands-on courses covering incident response, penetration testing, cloud security, and more.
KnowBe4
World's largest integrated security awareness training and simulated phishing platform. Helps organizations manage the ongoing problem of social engineering through regular training and realistic phishing simulations.
Proofpoint Security Awareness
Security Awareness Training platform delivering engaging, targeted training and simulated phishing based on real threat intelligence. Helps organizations build a people-centric security culture.
Cybrary
Cybersecurity career development platform offering hands-on training, certification prep, and skills assessments. Threat-informed development approach aligns training with real-world attack techniques and frameworks.
Immersive Labs
Human cyber readiness platform helping organizations measure and improve the cyber capabilities of their entire workforce. Crisis simulation exercises prepare security teams for real-world incidents.
Infigo IS
Croatia's leading offensive security firm, founded in 2009 and based in Zagreb. Infigo IS specializes in penetration testing, red team operations, hardware security research, and security assessments. Widely regarded as one of the top technical security firms in the Adriatic region, with clients in banking, telecom, and government sectors across Europe.
Diverto
Zagreb-based cybersecurity consulting firm providing penetration testing, security architecture reviews, compliance consulting, and incident response. Diverto serves enterprise clients across Croatia, Slovenia, and the broader Adriatic region, with strong expertise in financial sector security.
Span
One of Croatia's largest IT services companies offering managed security services, SOC operations, and security consulting. With over 500 employees and offices throughout Croatia, Span serves enterprise and public sector clients as a full-spectrum IT and cybersecurity partner across the region.
KING ICT
Major Croatian IT services company with a dedicated cybersecurity division delivering network security, identity management, compliance services, and managed security operations. KING ICT serves large enterprise and government clients in Croatia and across Southeast Europe.
Trikoder
Zagreb-based software and security consultancy with strong expertise in application security, DevSecOps, and cloud-native security. Trikoder is known for building secure products from the ground up and conducting thorough security reviews for SaaS and fintech companies.
CARNET / hr-CERT
The Croatian Academic and Research Network (CARNET) operates hr-CERT, Croatia's national computer emergency response team. Coordinates incident response across academic and government institutions and plays a central role in Croatia's national cybersecurity infrastructure and NIS2 compliance framework.
No companies found matching the selected filters.