Established in 2003, MWR is an independent cyber security consultancy with research at the heart of what we do.
We provide specialist advice and solutions in all areas of security, from professional and managed services, through to developing commercial and open source security tools. We focus on working with clients to develop and deliver security programs, tailored to meet the needs of each individual organization.
In a rapidly changing technology landscape, innovation is essential and our ambition to push boundaries sets us apart. Evidence of this approach is well documented on our dedicated research and development platform, MWR Labs. Our expertise in cyber security and incident response has led to MWR being a regular contributor to the annual Verizon Data Breach Investigations Report (DBIR), comprised of real-world data breaches and security incidents. The latest report can be viewed here.
Central to MWR's philosophy is the desire to deliver high quality cyber security consulting services and unsurpassed levels of support to our clients.
Recently announced as one of the FT 1000: Europe’s Fastest Growing Companies, MWR now has offices around the world providing industry leading cyber security services and forward thinking research.
As a business, we see how things work, or don’t work. We break them down to find out. By understanding how to break things, we can help other people protect what’s valuable to them. MWR’s vision is to help other people’s businesses grow using our unique understanding of cyber security.
MWR works alongside organizations and their requirements to develop a comprehensive understanding of strategic needs. This approach allows us to provide security solutions that empower our clients, rather than restrict them.
We’ll never just fix the symptoms of a security issue, but will take the time to look for the root cause. Our integrity is fundamental to everything we do - we hate hype, abhor buzzwords and place an enormous emphasis on the outcomes our clients receive.
With offices in London, Johannesburg, Dubai, New York and Singapore, MWR services clients on a truly global basis. This worldwide reach opens up our diverse talent pool across borders - and can even facilitate round-the-clock service where needed.
We believe that being at the forefront of research drives the high level of service MWR offers. Our ability to invest time into new endeavors keeps our consultants on the leading edge of security and gives us a unique insight into the mind of the attacker.
It begins... MWR InfoSecurity is founded.
MWR publishes it's first security advisory, an early step in establishing our research-led culture
Our first presentation at DEFCON, the first of many successful security conference appearances
We officially launch MWR Labs, the home of our leading security research, resources and testing tools
HackFu, our unique themed cyber security experience kicks off, becoming an annual fixture.
MWR secures its first of multiple pwn2own wins, this time finding a major vulnerability in Apple’s Safari browser
Launch of Countercept, a managed attack detection service leveraging the years of cyber security expertise within MWR
Now with 6 offices in 5 countries across the globe, MWR continues to grow, providing industry leading cyber security services and forward thinking research
MWR has a dedicated commitment to research, with each of our consultants given 25% of their time to devote to security research. Whether it is used to investigate new software, hardware or protocols, we encourage our team to push the boundaries of what’s possible.
Since our inception, MWR’s research has won numerous industry awards, been presented at top-tier security conferences and gained worldwide press coverage. But most important of all, our research goes into supporting the high level of technical expertise available to our clients.
For example, by taking the time to break the latest smartphone, our consultants will have a deeper understanding of the device and therefore the methods a skilled attacker could use to find their way in. Along with the personal development this offers our people, the knowledge gained gives MWR the ability to secure our clients to the highest possible standard.
Being able to solve complex cyber security problems requires unique skillsets. MWR consultants combine a passion for security with technical excellence and so we actively search for, and employ those that share that ethos. We love hacking things and solving problems at MWR. If this wasn’t our job, we’d be doing it as a hobby.
We are at the forefront of cyber security, so we want people with dedication to ride that wave with us, and to help keep us there!
In addition to the above, communication is a vital quality for MWR consultants. It is essential to us we can find bugs, breach systems and own networks, but also explain to our clients how it was done in order for the right fixes to be made.
MWR is an accredited member of The Cyber Security Incident Response Scheme (CSIR) approved by CREST (Council of Registered Ethical Security Testers).
MWR is certified under the Cyber Incident Response (CIR) scheme to deal with sophisticated targeted attacks against networks of national significance.
We are certified to comply with ISO 9001 and 14001 in the UK, internationally accepted standards that outline how to put an effective quality and environmental management systems in place.
MWR is certified to comply with ISO 27001 to help ensure our client information is managed securely.
As an Approved Scanning Vendor MWR is approved by PCI SSC to conduct external vulnerability scanning services to PCI DSS Requirement 11.2.2.
We are members of the Council of Registered Ethical Security Testers (CREST), an organisation serving the needs of the information security sector.
MWR is a supplier to the Crown Commercial Service (CCS), which provides commercial and procurement services to the UK public sector.
MWR is a Qualified Security Assessor, meaning we have been qualified by PCI to validate other organisation's adherence to PCI DSS.
As members of CHECK we are measured against high standards set by NCSC for the services we provide to Her Majesty's Government.
MWR’s consultants hold Certified Simulated Attack Manager (CCSAM) and Certified Simulated Attack Specialist (CCSAS) qualifications and are authorized by CREST to perform STAR penetration testing services.
MWR is committed to the implementation of broad-based Black Economic Empowerment in South Africa and currently have a procurement recognition level of 100%.
MWR InfoSecurity is a CREST Certifying Body for Cyber Essentials. For more information visit http://www.cyberessentials.org