TS 13638/T2 Certified · Ankara, Turkey

Class A Certified Penetration Testing Company

Nesil Teknoloji is certified by the Turkish Standards Institution (TSE) as a Class A – the highest level – penetration testing company under the TS 13638/T2 standard. Based in Ankara, we provide top-tier cybersecurity testing services across Turkey.

ISO/IEC 27001 Certified Senior Expert Staff TSE Audit Approved TURKAK Accredited
$ tse --verify company "Nesil Teknoloji"
✓ Company Level ............. Class A (Highest Level)
✓ Standard .................. TS 13638/T2
✓ ISO/IEC 27001 ............. Active (TURKAK Accredited)
✓ Location .................. Ankara, Turkey
✓ Expert Staff .............. Senior + Certified + Registered + Trainee
✓ Audit Status .............. Successfully Completed
# Class A = Highest penetration testing competency level in Turkey
🛡️

Class A Company Qualifications

We meet all requirements of the highest-level certification under TS 13638/T2.

ISO 27001
TURKAK Accredited Certificate
Senior Specialist
Min. 1 Senior Pentest Specialist
Certified Specialist
Min. 1 Certified Specialist
Registered Specialist
Min. 1 Registered Specialist
Trainee Specialist
Min. 2 Trainee Specialists
TSE Audit
Successfully Completed

Company Level Comparison

Under TS 13638/T2, penetration testing companies are certified at three levels: A, B, and C. Class A is the most comprehensive and highest level.

RequirementClass A ★Class BClass C
ISO/IEC 27001 Certificate (TURKAK/IAF)✓ Required✓ RequiredRelevant clauses
Senior Penetration Testing SpecialistMin. 1
Certified Penetration Testing SpecialistMin. 1Min. 1
Registered Penetration Testing SpecialistMin. 1Min. 1Min. 1
Trainee Penetration Testing SpecialistMin. 2Min. 1
Total Minimum Expert Staff5 people3 people1 person
TS 13638 Full Compliance
TSE On-Site Audit
A
Highest Level
ISO/IEC 27001 certificate (TURKAK accredited)
Min. 1 Senior Penetration Testing Specialist
Min. 1 Certified Penetration Testing Specialist
Min. 1 Registered Penetration Testing Specialist
Min. 2 Trainee Penetration Testing Specialists
Full TS 13638 compliance
TSE on-site audit passed
B
Mid Level
ISO/IEC 27001 certificate (TURKAK accredited)
Min. 1 Certified Penetration Testing Specialist
Min. 1 Registered Penetration Testing Specialist
Min. 1 Trainee Penetration Testing Specialist
Full TS 13638 compliance
TSE on-site audit passed
C
Entry Level
TS EN ISO/IEC 27001 relevant clauses
Min. 1 Registered Penetration Testing Specialist
Full TS 13638 compliance
TSE on-site audit passed

Penetration Testing Specialist Competency Hierarchy

Under TS 13638/T2, specialists are certified at 4 levels. Higher levels encompass all lower-level competencies.

1
Senior SpecialistHighest level
2
Certified SpecialistAdvanced level
3
Registered SpecialistMid level
4
Trainee SpecialistEntry level

Note: Higher-level certifications satisfy lower-level personnel requirements.

Why Choose a Class A Company?

Tangible advantages of working with the highest-level certified penetration testing firm.

🏆

Senior Expert Staff

Class A is the only tier that requires TSE-certified Senior Penetration Testing Specialists. Top-level expertise assurance even for the most complex systems.

📋

ISO/IEC 27001 Certified

We hold a TURKAK-accredited ISO/IEC 27001 information security management system certificate. Your data is secure throughout the engagement.

🔍

TSE Audit Approved

Full compliance with all TS 13638 clauses verified through TSE on-site audit, including review of sample penetration testing projects.

👥

Comprehensive Team Structure

A broad team of Senior, Certified, Registered, and Trainee specialists. The right level of expertise is assigned to every project.

📊

Standards-Compliant Reporting

Detailed, systematic reporting aligned with TS 13638/T2. Findings, risk levels, and remediation recommendations presented clearly.

🏛️

Regulatory & Tender Compliance

TSE Class A certificate is the highest competency credential for government tenders, KVKK (Turkish GDPR) compliance, and enterprise security requirements.

🔒

Confidentiality & Reliability

All engagements are protected under NDA agreements within our ISO 27001 and TS 13638 framework. Information is stored to the highest security standards.

International Methodologies

Systematic, repeatable penetration testing processes aligned with OWASP, NIST, PTES, and OSSTMM international frameworks.

Penetration Testing Services

Comprehensive security testing services delivered with Class A expertise across Ankara and all of Turkey.

01

Web Application Penetration Testing

Identify vulnerabilities in your web applications using OWASP Top 10 and advanced techniques.

02

Mobile Application Penetration Testing

iOS and Android security analysis, data leakage, and privilege escalation testing.

03

Network & Infrastructure Penetration Testing

Internal and external network tests, service scanning, vulnerability analysis, and exploitation.

04

Wireless Network Penetration Testing

Wi-Fi security configuration, encryption weakness, and unauthorized access testing.

05

Social Engineering Testing

Phishing, vishing, and physical security scenarios to measure employee awareness.

06

API Security Testing

REST, SOAP, and GraphQL authentication, authorization, and data security tests.

07

Cloud Security Testing

AWS, Azure, GCP misconfiguration detection and security vulnerability scanning.

08

Source Code Review

Static and dynamic security analysis of your application source code.

About the TS 13638/T2 Standard

01

Standard Scope

"Information Technology – Security Techniques – Requirements for penetration testing personnel and companies" – Turkey's national pentest standard.

02

Company Certification Levels

Companies are certified at 3 levels: A, B, and C. Class A has the most comprehensive personnel and ISMS requirements.

03

Personnel Certification

4 levels: Senior, Certified, Registered, and Trainee. Higher certifications encompass lower levels.

04

Audit Process

TSE conducts a 1-day on-site audit. All standard clauses are reviewed and at least 2 sample pentest projects are examined.

05

ISO 27001 Requirements

TURKAK-accredited or IAF member-accredited ISO/IEC 27001 certificate is mandatory for Class A and B companies.

06

Documentation Requirements

Certified copies of all contracts and documentation must be available during the audit.

Frequently Asked Questions

Common questions about TSE Class A penetration testing certification and our services.

What does TSE Class A penetration testing company mean?
TSE Class A is the highest level of certification a penetration testing company can receive under the TS 13638/T2 standard. It requires an ISO/IEC 27001 information security management certificate, at least 5 certified expert personnel including 1 Senior Penetration Testing Specialist, and successful completion of an on-site TSE audit. Nesil Teknoloji is an Ankara-based Class A certified company.
What is the difference between Class A, B, and C companies?
The key difference is the number and level of expert personnel. Class A requires at least 5 certified experts (1 Senior, 1 Certified, 1 Registered, 2 Trainee), Class B requires at least 3 (1 Certified, 1 Registered, 1 Trainee), and Class C requires at least 1 Registered Specialist. ISO/IEC 27001 certification is mandatory for Class A and B. Class A is the most comprehensive and highest competency level.
What is the TS 13638/T2 standard?
TS 13638/T2 is a Turkish national standard published by the Turkish Standards Institution (TSE) titled "Information Technology – Security Techniques – Requirements for penetration testing personnel and companies." It defines the competency requirements, processes, and certification criteria for penetration testing firms and their staff.
Why should penetration testing be done by a Class A company?
Class A companies have the highest level of expert staff (including Senior Penetration Testing Specialists), an ISO 27001 information security management system, and TSE-audited processes. This ensures more comprehensive, reliable, and standards-compliant testing. For government institutions, financial sector, energy, and critical infrastructure, choosing a Class A company is crucial for regulatory compliance.
What is a Senior Penetration Testing Specialist?
A Senior Penetration Testing Specialist holds the highest level of competency under TS 13638/T2. The hierarchy is: Senior > Certified > Registered > Trainee. Higher-level certifications encompass all lower levels. Only Class A companies are required to employ Senior Specialists — making it the key differentiator from other certification levels.
Is there a TSE-certified penetration testing company in Ankara?
Yes. Nesil Teknoloji is headquartered in Ankara and holds TSE Class A (highest level) penetration testing certification under TS 13638/T2. With ISO/IEC 27001 certification and a team including Senior Specialists, we provide professional penetration testing services across Ankara and all of Turkey.
Which industries do you provide penetration testing services to?
Nesil Teknoloji provides penetration testing services to all sectors, with particular expertise in finance and banking, government agencies, healthcare, energy, telecommunications, e-commerce, defense industry, and education. Our Class A certification enables us to serve organizations with the highest security requirements.
How does the penetration testing process work?
Our penetration testing process follows TS 13638/T2 and consists of: scoping and planning, information gathering and reconnaissance, vulnerability analysis, exploitation, privilege escalation and lateral movement, reporting and presentation, and re-testing (verification). Every phase is documented and results are delivered in a comprehensive report.

Get Professional Penetration Testing Services

Test your security at the highest level with Nesil Teknoloji — TSE Class A certified, ISO/IEC 27001 accredited, serving Ankara and all of Turkey.

Contact Us →
© 2025 Nesil Teknoloji – TSE Class A Certified Penetration Testing Company · TS 13638/T2 · ISO/IEC 27001 · Ankara, Turkey