Bancontact
Since June 2021, we have been accredited by Bancontact to conduct security assessments of mobile payment applications. This accreditation confirms our ability to ensure secure payments and compliance with international standards, reinforcing the trust and excellence of our auditing and consulting services in payment security.
CREST
We are the only Portuguese company accredited by CREST for PenTesting services, certified in November 2014 for its technological and management practices. CREST is an organisation recognised by both the industry and the UK government, ensuring that penetration testing services are carried out by professionals who are qualified and up to date with the latest techniques and vulnerabilities. This accreditation reinforces our credibility in providing specialised information security services. For more information, visit us here.
EPI
Since May 2024, we have been accredited by the European Payment Initiative (EPI) to carry out security assessments of the Wero digital wallet, in accordance with the EPI scheme. This accreditation strengthens our ability to ensure secure mobile payments and compliance with European standards, highlighting the excellence of our audit and consultancy services in digital payment security.
GNS
We have been accredited by the National Security Office (PNSC) since November 2017 for access to and handling of classified information, at the National level and Secret classification. In January 2024, we also obtained EU-level accreditation at the Secret classification. This distinction confirms our ability to protect sensitive information and reinforces the credibility of our auditing and consulting services in Information Security.
ISO 27001
We have been certified under the ISO 27001 standard since April 2012, the international benchmark for Information Security Management. This certification ensures the protection of our clients’ project information and the effective management of risk. We were among the first national organisations to achieve this certification, reinforcing our credibility as specialists in consulting, auditing, and advisory services in Information Security. The system has been audited by SGS, an entity accredited by UKAS. We also provide an informational portal dedicated to ISO 27001 at www.27001.pt.
ISO 27701
We were certified to the ISO 27701 standard in October 2023, an international benchmark for Privacy Information Management Systems, ensuring the protection of personal data and compliance with privacy regulations. This certification strengthens our credibility in information security consultancy, auditing and advisory services, and enables us to advise other organisations with full authority. We also provide an information portal dedicated to ISO 27701 at www.27701.pt.
ISO 9001
We were certified under the ISO 9001 standard in September 2014, the international benchmark for Quality Management, applicable to our consulting, auditing, and advisory services in Information Security, as well as the implementation of management systems. This certification enables greater control and standardisation of internal processes, ensuring the delivery of services with excellence and quality. The system promotes continuous improvement, aligning internal practices with client satisfaction as a top priority.
PCI QSA
Integrity S.A. is certified as a Qualified Security Assessor (QSA) by the PCI Consortium, being the first Portuguese company qualified to carry out independent PCI-DSS audits. This certification ensures that our payment card data compliance and security services meet the highest international standards, providing excellence and trust to our clients.
Offensive security
eLearnSecurity Web Application Penetration Tester eXtreme (eWPTX)
GIAC Penetration Tester (GPEN)
OSCE 3 - Offensive Security Certified Expert 3
Offensive Security Certified Professional (OSCP)
OSEP - Offensive Security Experienced Penetration Tester
OSED - Offensive Security Exploit Developer
Offensive Security Web Expert (OSWE)
Security information
Certified in Risk and Information Systems Control (CRISC)
Certified Information Security Manager (CISM)
Certified Information Systems Auditor (CISA)
Certified Information Systems Security Professional (CISSP)
Information Systems Security Management Professional (CISSP-ISSMP)
ISO 22301 Lead Auditor
ISO 22301 Lead Implementer
ISO 27001 Lead Auditor / Lead Implementer
ISO 31000 Risk Manager
ISO 42001 Lead Implementer