CyberLab has been recognised as a Founding Signatory of the CREST AI Charter
CyberLab has been formally recognised as a Founding Signatory of the CREST AI Charter, joining around 60 organisations globally that signed up at launch. The Charter, developed by CREST, the international not-for-profit body that sets professional standards for the cyber security industry, establishes a shared framework for responsible AI use across cyber security services.
Being a Founding Signatory means CyberLab was part of the inaugural cohort, helping to define what that standard looks like in practice from the outset. The Charter is built around trust, transparency, and accountability: three principles that should be central to how any security partner uses AI when delivering services to customers.
What is the CREST AI Charter?
CREST is the internationally recognised accreditation and certification body for the technical cyber security industry. Its standards underpin some of the most trusted security programmes in the UK and globally, including CHECK, CBEST, and TIBER-EU.
The CREST AI Charter is CREST’s framework for responsible AI use in cyber security services. It sets out a common set of principles that signatory organisations publicly commit to, giving customers an independent benchmark for how AI should be used by the security providers they work with.
As AI is adopted more widely across the security industry, in threat detection, vulnerability assessment, reporting, and beyond, the Charter provides a shared language for accountability.
Why Cyberlab Signed From Day One
AI is already embedded in the way cyber security services are delivered. The question is not whether organisations are using it, but whether they are using it responsibly.
For CyberLab, signing the CREST AI Charter at launch reflects an existing commitment rather than a new one. Our penetration testing, red teaming, and consultancy services are built on rigorous professional standards. Extending those same standards to the use of AI in our work is a natural next step.
“We’re proud to be a Founding Signatory of the CREST AI Charter. AI is already reshaping how cyber security services are delivered, and customers deserve to know it’s being used responsibly. We signed from day one because that standard matters.”
– Steve Clarke, Head of Penetration Testing
Meet Steve on the Tales from the CyberLab Podcast
In this episode of Tales from the CyberLab, Adam Myers is joined by Steve Clarke, Head of Penetration Testing at CyberLab, to unpack the reality of hacking Critical National Infrastructure. From energy and transport to water and healthcare, they explore how Operational Technology systems work, why they are such attractive targets, and what makes securing them so different from traditional IT environments.
What This Means for Our Customers
The CREST AI Charter gives customers something concrete to point to. Rather than taking a provider’s word for it, they can look to an independent, internationally recognised body and see that CyberLab has made a public commitment to responsible AI use.
That matters whether you are commissioning a vulnerability assessment, an IT Health Check, or a broader security posture assessment. The expectations around how AI is used in delivery, reporting, and analysis should be clear and consistent.
CyberLab is trusted by more than 1,200 organisations across the U.K., including 60+ NHS Trusts. Responsible, accountable practice is not a differentiator for us: it is a baseline.
About our CREST Accreditations
CyberLab holds a broad set of CREST accreditations, reflecting the depth and rigour of our technical delivery across:
The CREST AI Charter Founding Signatory status sits alongside these existing accreditations as part of our broader commitment to professional standards in cyber security.
How CyberLab Executed Targeted Attack Simulations in Financial Services
Financial services organisations operate in one of the most heavily targeted sectors globally. As threat actors continue to evolve their tactics, techniques and procedures, traditional security testing alone is no longer enough to provide confidence.
This case study explores how a leading UK financial services organisation partnered with CyberLab to validate its cyber defences through Red Teaming and targeted attack simulations, providing real‑world assurance that security controls, people and processes could withstand modern attack techniques.
Work With a Cyber Security Partner You Can Trust
CyberLab is a CREST-, CHECK- and NCSC-accredited cyber security consultancy trusted by 1,200+ UK organisations, including over 60 NHS Trusts. We deliver penetration testing, compliance, and managed security services to organisations across the public and private sector.
If you would like to speak with our team about your cyber security requirements, get in touch today.