Precursor Security
CREST Accredited24/7 UK SOCPen Testing from £2,500

Penetration Testing & Managed SOC.
Under one roof.

Most security firms are either pen testers or SOC providers. Precursor is both. We combine CREST-accredited penetration testing with a 24/7 UK-based SOC, feeding live threat intelligence directly into every engagement. Your defences are tested against what adversaries are doing today. Not last year's playbook.

Book a Free Scoping CallSee Pricing
CREST Triple Accredited
Pen Testing from £2,500
24/7 UK SOC from £900/month
Free Scoping Call
Scroll

Precursor Security is a CREST-accredited UK cyber security firm delivering penetration testing, 24/7 managed SOC, and compliance services from a single integrated platform.

CREST accreditation is the UK Government and NCSC recommended benchmark for cyber security providers. Fewer than 70 firms hold both Penetration Testing and SOC accreditation. Precursor Security holds triple CREST accreditation: Penetration Testing, Vulnerability Assessment, and SOC. That makes us one of a handful of firms in the UK that can credibly deliver both sides of the security equation.

What that means for your purchase order: our consultants are individually assessed and certified by CREST, not just the organisation. You are buying tested expertise, not a brand.

Triple CREST Accredited
Pen Test + VA + SOC
Fewer Than 70 Firms
World-wide
UK-Based Consultants
No offshoring
Starts Within 2 Weeks
Of scope sign-off
Three Pillars. One Firm.

Penetration Testing. SOC. Compliance.

Most firms do one. We do all three, at CREST-accredited level, so your offensive findings, defensive detections, and compliance evidence feed into a single closed-loop.

CREST Penetration Testing

Network, web application, cloud, mobile, and API penetration testing by individually CREST-certified consultants. Fixed pricing from £2,500. Manual testing, not just automated scans dressed up as pen tests.

Explore Pen Testing

24/7 Managed SOC & MDR

UK-based Security Operations Centre with eyes on glass 24/7/365. No offshoring. Human analyst triage on every confirmed threat. Integrates with your existing Microsoft Sentinel, CrowdStrike, or Defender XDR.

Explore Managed SOC

Compliance & Certification

ISO 27001 consultancy, Cyber Essentials certification, PCI DSS, GDPR, and CSRB 2025 readiness. Every pen test finding and SOC alert maps directly to your regulatory controls.

Explore Compliance

Trusted by organisations across healthcare, financial services, government, legal, education, and retail sectors.

3,000+
Security Assessments Delivered
24/7
UK SOC Coverage
3x
Triple CREST Accredited
UK
On-Shore Analysts Only

Trusted across regulated UK sectors

Financial ServicesHealthcare & NHSGovernmentLegalEducationSaaS & Technology
Live Defence Architecture

15 Minutes.

Alert to Action.

Cyber threats don't stick to office hours. Our 100% UK-based SOC provides 'Eyes on Glass' monitoring 24/7/365. Your data never leaves the island. We detect, triage, and contain threats while your team sleeps. Managed SOC from £900/month.

Optimized Integration

Microsoft SentinelCrowdStrikeDefender XDR
Bring your own EDR. We integrate with CrowdStrike, Microsoft Defender, and more.
Fully compliant with CSRB 2025 incident reporting timelines.
Get a Managed SOC Quote
 Tour the UK SOC
< 9m ALERT LOGGED
SOC
James HarrisonShift Lead
THREAT NEUTRALIZED
CVE Isolated
SCAN_ACTIVE
Offensive Security

We find the vulnerabilities

before attackers do.

PREVENTEDSQL Injection in Fintech App
PATCHEDRCE in Healthcare Cloud
REPORTEDWeak Credential Policy
BLOCKEDCross-Site Scripting (XSS)
SECUREDExposed S3 Bucket
PREVENTEDSQL Injection in Fintech App
PATCHEDRCE in Healthcare Cloud
REPORTEDWeak Credential Policy

Our CREST-accredited consultants don't just run scanners. They replicate the same techniques used by real-world threat actors, informed by live intelligence from our 24/7 SOC. You get a clear, prioritised report with exact remediation steps, not a 200-page PDF of automated findings. Pen testing from £2,500. Fixed pricing. Retest included.

  • Find what automated scanners miss
  • Reports your board can actually read
  • Free retest to confirm the fix worked
Get a Free Pen Test Quote
Governance & Risk

Audit Ready.
Every Single Day.

Stop scrambling before an audit. Every pen test finding and SOC alert can be directly linked to your regulatory controls: ISO 27001, GDPR, PCI DSS, and the new CSRB 2025 requirements. Cyber Essentials certification from £1,500. ISO 27001 gap analysis from £3,000.

ISO 27001 Mapped
CSRB 2025 Ready
Real-time Reporting
Board-Level Exports
Explore Compliance Services
Immutable Ledger SYNCED
Control A.5.7ISO 27001 Verified

Physical & Logical Security

The Precursor Advantage.

Experience our dedicated UK infrastructure and closed-loop offensive integration.

Newcastle, United Kingdom

See the SOC.

Visit our analyst floor in Newcastle. See the screens, meet the team, and watch a live threat hunt in progress. We run tours for procurement teams, CISOs, and board members. No sales pitch. Just evidence.

Book a SOC Tour
Offensive & Defensive Synergy

The Closed-Loop Advantage.

Our penetration testers use live SOC threat intelligence to test your defenses against active attack patterns. This continuous loop between offensive and defensive operations means your security posture strengthens every single day.

Red Team
Blue Team
Explore Penetration Testing
Unified Portal

One Pane of
Glass.

Red Team finds it. Blue Team blocks it. You track it all through our SOC Portal and Penetration Test Portal in real-time. No more fragmented security silos.

Live Vulnerabilities

Real-time exfiltration attempts and identified gaps.

Active Defence

24/7 SOC verification and remediation status.

Request Portal Demo
VULNERABILITY_FEED
JD

Live Exposure

Viewing real-time data from Active Pentests

12
Critical Vulnerabilities
SQL Injection
In Scope
7m ago
Unauthenticated API
Reported
1h ago
Subdomain Takeover
Exploited
2h ago
Client Analyst
Precursor Intelligence

Latest Analysis

Guide
16 May 2024

Beginner's Guide to Vulnerability Triage

An actionable guide to triaging and prioritising vulnerabilities using CVSS, EPSS, CISA KEV, and compensating controls.

9 min read
Read
Guide
17 Jun 2025

Row-Level Recklessness: Testing Supabase Security

Common security pitfalls in Supabase apps: MFA bypasses, misconfigured RLS policies, and practical testing guidance.

10 min read·Joss Sparkes
Read
Strategic
1 Feb 2024

Communicating Cyber Security Risk to the Board

Ten practical tips for senior security leaders communicating risk, investment cases, and incident status to boards and executives.

7 min read
Read
SOC
4 Sep 2025

Preventing Direct Send Phishing in M365

Precursor's SOC observed attackers exploiting Microsoft 365's Direct Send feature to send convincing phishing emails from trusted internal domains.

6 min read
Read
Strategic
14 Feb 2025

AI for Security: From Copilots to Agents

Deep dive into the transformative role of AI in Security Operations: from LLM copilots to fully agentic automated SOC workflows.

10 min read
Read
Guide
3 Feb 2025

Managing Exposure to Malicious Browser Extensions

51% of installed browser extensions are high risk. How Microsoft Defender XDR, Sentinel, and CrowdStrike can detect and contain them.

8 min read
Read
Threat Intel
16 Jan 2025

Belsen Group Leaks 15,000+ FortiGate Credentials

Precursor observed a hacking group sharing over 15,000 FortiGate credentials following a historic mass exploitation campaign. What to do now.

5 min read
Read
News
8 Nov 2024

Precursor Awarded Position on CCS G-Cloud 14

Precursor Security accepted onto the Crown Commercial Service G-Cloud 14 framework, enabling direct procurement by UK public sector bodies.

3 min read
Read
Threat Intel
2 Sep 2024

WooCommerce Subscriptions Persistent XSS (CVE-2019-18834)

A persistent XSS vulnerability in WooCommerce Subscriptions allowed unauthenticated users to execute scripts in the WordPress admin panel.

5 min read
Read
SOC
20 Aug 2024

Incident Response in Citrix Environments

SOC Lead analysis of the ransomware landscape targeting Citrix environments, with the incident response playbook for containment.

7 min read
Read
Strategic
19 Aug 2024

Cyber Insurance and MSSPs: Working Together

How cyber insurers and managed security providers increasingly collaborate on risk assessment, underwriting, and incident response.

7 min read
Read
News
7 Aug 2024

Precursor Achieves CREST SOC Accreditation

The Precursor SOC achieved CREST accreditation, independently validating our commitment to delivering the highest quality MDR services.

3 min read
Read
Threat Intel
7 Aug 2024

VMware ESXi Exploited by Ransomware Actors (CVE-2024-37085)

Microsoft Research revealed a vulnerability allowing malicious actors to obtain administrative control over VMware ESXi and deploy ransomware.

4 min read
Read
Threat Intel
29 Jul 2024

SEO Poisoning Delivering MSIX Installer Malware

Precursor SOC tracks threat actors abusing SEO search terms to trick users into installing malware via signed MSIX packages.

5 min read
Read
SOC
10 Jun 2024

Understanding Managed Detection and Response

50% of UK businesses experienced a cyber breach in the last 12 months. How MDR improves detection, security posture, and cyber insurability.

8 min read
Read
Strategic
16 May 2024

Cyber Security in M&A and Investments

Cyber due diligence for M&A and SaaS investment: how to identify inherited technical debt and security risk before the deal closes.

8 min read
Read
Guide
16 May 2024

7 Steps to Secure Your Microsoft 365 Environment

Microsoft 365 handles business-critical operations for organisations of every size. Seven key steps to lock down your tenant effectively.

8 min read
Read
Threat Intel
28 Apr 2024

MITRE ATT&CK v15 Released

MITRE releases ATT&CK v15 with a key focus on detection engineering, visibility improvements, and expanded ICS coverage.

4 min read
Read
Compliance
12 Feb 2024

Cyber Essentials: The Essential Guide

Full breakdown of all five Cyber Essentials controls, scope definition, and the recent requirement updates that affect certification.

10 min read
Read
Compliance
7 Feb 2024

Beginner's Guide to the NHS DSP Toolkit

NHS DSP Toolkit overview, Standard 9 deep-dive, evidence requirements, and submission guidance for NHS and healthcare organisations.

8 min read
Read
Guide
7 Feb 2024

Vulnerability Remediation: Don't Forget Regression Testing

Why regression test coverage is essential after patching vulnerabilities, and how to build it into your remediation workflow.

5 min read
Read
Guide
7 Feb 2024

How to Secure Microsoft Office Desktop Deployments

Despite the push to cloud, Office desktop apps remain widely deployed. Technical guide to hardening Word, Excel, and PowerPoint.

7 min read
Read
Strategic
7 Feb 2024

Why Law Firms Are Attractive Targets for Cyber Criminals

The legal sector handles sensitive data and large client funds — making it a prime target. What to do about it.

6 min read
Read

View All

Intelligence

Free Scoping Call

You need to know if your defences hold.

Book a free 30-minute scoping call. We identify which assessments apply to your environment, confirm scope in writing, and provide a fixed-price quote. No obligation. No day-rate surprises.

Book Your Scoping Call
Talk to an Engineer
CREST Triple Accredited Fixed Price Quotes Free Scoping Call UK Based Team

Frequently Asked Questions

Common questions about Precursor Security and our services.

Precursor Security is a CREST-accredited UK cyber security firm founded in 2018, headquartered in Leeds. We deliver both offensive security (penetration testing, red team operations, social engineering) and defensive security (24/7 managed SOC, MDR, incident response) under one roof. This closed-loop model means our SOC intelligence directly informs our pen testing methodology, and vice versa.
We offer three pillars of cyber security services. Offensive Security includes CREST-accredited penetration testing, red team operations, social engineering, and configuration reviews. Defensive Security includes a 24/7 UK-based Security Operations Centre (SOC), Managed Detection and Response (MDR), threat hunting, and incident response. Compliance services include ISO 27001 consultancy, Cyber Essentials certification, GDPR, PCI DSS, and UK Cyber Security Resilience Bill readiness.
Yes. Precursor Security holds CREST accreditation for both Penetration Testing and Security Operations Centre (SOC) services. We are one of fewer than 70 organisations globally to hold both accreditations. CREST accreditation is independently audited and recognised by the UK Government, NCSC, and regulators as the benchmark for technical cyber security services.
Our headquarters are in Leeds, West Yorkshire. We operate a dedicated 24/7 Security Operations Centre facility and maintain offices across the UK, including London. All staff are UK-based and DBS-checked. Your data never leaves UK jurisdiction.
Penetration testing engagements start from £2,500 for a standard assessment. We provide fixed-price quotes after a free scoping call, so there are no surprises on your invoice. Pricing depends on scope, complexity, and testing type. Red team operations start from £15,000. We publish transparent pricing on every service page.
Our closed-loop model is Precursor's core differentiator. Our 24/7 SOC observes live attacks and emerging tactics across our client base in real time. That threat intelligence is fed directly to our penetration testing team, meaning your defences are tested against threats that are active today, not last year's playbook. Most firms are either pen testing boutiques or MSSP/MDR providers. Precursor does both at CREST-accredited level, creating a feedback loop no pure-play competitor can replicate.
Precursor Security's managed SOC and MDR service starts from as low as £900 per month. Pricing depends on the number of endpoints, log sources, and integration complexity. We provide a detailed quote after a free scoping call. No minimum contract term for the first engagement.
A vulnerability scan is an automated tool that checks your systems against a database of known issues. A penetration test involves a human consultant who identifies vulnerabilities and attempts to exploit them, chaining issues together the way a real attacker would. Penetration testing finds business logic flaws, authentication bypasses, and context-aware attack paths that no scanner can discover. CREST-accredited penetration testing is the standard accepted by UK regulators and insurers.
Yes. Precursor delivers ISO 27001 gap analysis and consultancy, Cyber Essentials and Cyber Essentials Plus certification, PCI DSS compliance testing, GDPR data protection services, and CSRB 2025 readiness assessments. Because we also provide the technical testing (penetration testing) and monitoring (SOC), your compliance evidence is generated from the same operations, not assembled from three separate vendors.