SEC Consult

Leading European cybersecurity consultancy from Vienna with a prolific vulnerability research program and deep expertise in IoT and embedded systems security.

About

SEC Consult is a leading European cybersecurity consultancy headquartered in Vienna, Austria, providing comprehensive penetration testing and security advisory services across Europe and internationally. Founded in 2002, SEC Consult has grown into one of the most respected security consultancies in the DACH region and broader European market, with offices in Austria, Germany, Singapore, and other locations.

The company is known for its deep technical expertise and vulnerability research program, having discovered and responsibly disclosed hundreds of vulnerabilities in widely used software products, particularly in embedded devices, IoT systems, and enterprise applications. SEC Consult's services include web application penetration testing, network testing, mobile application testing, IoT and embedded device security, red teaming, and source code review. Their Vulnerability Lab has published research on critical vulnerabilities affecting millions of devices worldwide, demonstrating the caliber of their technical team.

The company follows OWASP, OSSTMM, and PTES methodologies and holds ISO 27001 certification. SEC Consult serves enterprise clients across financial services, telecommunications, manufacturing, and government sectors, with particular expertise in European regulatory compliance including GDPR, NIS 2, and DORA. Their consultants hold certifications including OSCP, OSCE, CREST CRT, and CISSP.

Services

Web Application Penetration Testing Network Penetration Testing Mobile App Penetration Testing IoT Penetration Testing API Penetration Testing Cloud Penetration Testing Red Teaming Source Code Review Vulnerability Assessment SCADA/ICS Penetration Testing

Methodologies

OWASPOSSTMMPTESTIBER-EU

Compliance Expertise

GDPR NIS 2 DORA TISAX ISO 27001 PCI DSS

Team Activity

Active in CTF competitions

Austrian Export Award

Speaker: Black Hat Europe

Speaker: Hack In The Box

Speaker: DeepSec

Score Breakdown

43/100

Accreditations15/100 (30%)

Reviews0/100 (25%)

Team Activity59/100 (15%)

Experience100/100 (15%)

Service Breadth100/100 (15%)

Details

Headquarters: Vienna, Austria
Founded: 2002
Team Size: 51-200
Markets: Europe, APAC, Global
Geography: Regional

Accreditations

ISO 27001

Best For

EnterpriseMid-Market

Industries

Financial Services Telecommunications Manufacturing Government Technology

Visit SEC Consult Write a Review

Related Providers

Best UK ProviderBest for EnterpriseResearch Leaders

NCC Group

Global cybersecurity consultancy with CREST, CHECK, and CBEST accreditation, renowned for deep technical research and comprehensive penetration testing services.

Score

LOCManchester, United Kingdom

Web ApplicationNetworkMobile App+13

CRESTCHECKCBEST+6

View Profile Visit Site

Top UK ProviderElite TestersResearch-Driven

SECFORCE

Leading UK offensive security consultancy based in Canary Wharf, delivering CREST-accredited penetration testing and adversary simulation to organisations with the most demanding security requirements.

Score

LOCLondon, United Kingdom

Web ApplicationNetworkMobile App+9

CRESTISO 27001Cyber Essentials

View Profile Visit Site

WithSecure

Leading European cybersecurity firm offering penetration testing with deep expertise in EU regulatory compliance including GDPR, NIS 2, and TIBER-EU.

Score

LOCHelsinki, Finland

Web ApplicationNetworkCloud+7

CRESTISO 27001

View Profile Visit Site

Nettitude

CREST, CHECK, and CBEST accredited UK consultancy within Lloyd's Register, delivering premium penetration testing for government and critical infrastructure.

Score

LOCLondon, United Kingdom

Web ApplicationNetworkMobile App+10

CRESTCHECKCBEST+2

View Profile Visit Site