What We’re About

NetSPI is a penetration testing company that is transforming the cyber security testing industry with tech-enabled services and prevention-based cyber security techniques. Global enterprises choose NetSPI’s penetration testing service to test their applications, networks, and cloud infrastructure at scale and manage their attack surfaces.

What We're About

The Industry Leader in Penetration Testing

NetSPI conducts more than 250,000 hours of security testing every year and is changing pentesting entirely. We make it easier to track trends and improve your vulnerability management program. How? Because our people, our processes, and our technology are unrivaled.

See Case Studies
Screenshot of a penetration testing service metrics
Our Strengths
  • Efficiency

    Increase penetration testing efficiency by 40%

  • Depth

    Detection in depth is as important as defense in depth

  • Breadth

    Comprehensive, methodical, process-driven approach

  • Certifications

    Expert team has the knowledge and certifications you need

  • Credible

    Top penetration testing company trusted by global enterprises

  • Actionable

    Accurate, documented results and actionable recommendations

Penetration Testing as a Service

First-class pentesting delivery is a core tenet of the NetSPI experience. Penetration Testing as a Service (PTaaS) gives you real-time visibility into our pentesting results, allows you to secure your environments continuously throughout the year, and puts you back in the driver seat of your penetration testing program.

Learn More About PTaaS
Screenshot of unpremeditated findings from the penetration testing service ranked by severity for remediation

Consistent Processes

Process is ingrained in our company culture. From project management workflows and practitioner guides to standardized checklists and pentesting playbooks, we have formalized quality assurance and oversight to deliver consistent results.

Learn About Our Technology
Laptop with the Resolve vulnerability management platform showing findings from the penetration testing service

Cyber Security Expertise

Since 2001, we have focused on good hiring, ongoing training, constant research, and long retention rates. Our security experts have authored more than 100 scripts and toolsets as well as hundreds of technical and executive blogs.

Access Open Source Tools
Man working as a penetration tester
NetSPI employees enjoying happy hour

Our People

NetSPI wouldn’t be what it is today without its employees and the culture of innovation we have built. Our employees value working with great people, doing important work, and having fun along the way. We pride ourselves on how well our team works together, resulting in a 92% retention rate in 2020. 

Explore A Career With NetSPI

 
Our Leadership Team
Aaron Shilts
Aaron Shilts
President and Chief Executive Officer
Charles Horton
Charles Horton
Chief Operating Officer
Jeni Bahr
Jeni Bahr
Chief Financial Officer
Alex Jones
Alex Jones
Chief Revenue Officer
Norman Kromberg, CISO
Norman Kromberg
Chief Information Security Officer
Heather Rubash
Heather Rubash
SVP, Marketing
Heather Crosley
Heather Crosley
VP, People Operations
Board Members
Deke George
Deke George
Co-Founder
Jake Heller
Jake Heller
KKR
Ben Pederson
Ben Pederson
KKR
Hannah May
Hannah May
KKR

More Educational Resources

Blog

Our technical and business thought leaders share research, insights, and advice.

Webinars

Watch our webinars spanning a variety of vulnerability management topics.

Podcasts

Agent of Influence is a platform for sharing cyber security tips and experiences.

Need a Quote?
Common Questions
What is Penetration Testing as a Service (PTaaS)?

PTaaS is NetSPI’s delivery model for penetration testing. It enables customers to simplify the scoping of new engagements, view their testing results in real time, orchestrate faster remediation, perform always-on continuous testing, and more - all through the Resolve™ vulnerability management and orchestration platform. Learn More

Why should I use NetSPI?

We help organizations defend against adversaries by being the best at simulating real-world, sophisticated adversaries with the products, services, and training we provide. We know how attackers think and operate, allowing us to help our customers better defend against the threats they face daily.

How does NetSPI ensure quality results?

At NetSPI, we believe that there is simply no replacement for human-led manual deep dive testing. Our Resolve platform delivers automation to ensure our people spend time looking for the critical vulnerabilities that tools miss. We provide automated and manual testing of all aspects of an organization’s entire attack surface, including external and internal network, application, cloud, and physical security.

Our proven methodology ensures that the client experience and our findings aren’t only as good as the latest tester assigned to your project. That consistency gives our customers assurance that if vulnerabilities exist, we will find them.