From next month, the Council of Registered Ethical Security Testers (CREST) is open for business. Designed to ensure that penetration testing provided meets minimum standards, and appropriate methodologies and processes are in place, it involves practical assault courses to test skill levels of penetration testers, similar to the UK CHECK scheme.I like this idea - seems more relevant and usable to non-government organisations.
read more | digg story