Our Certificates and Competencies

Nesil Teknoloji A.Ş.; Republic of Türkiye Ministry of Industry and Technology penetration testing authorization (STB03-250), TSE Class A Certified Penetration Testing Firm belgesi (TSE-STF-065), CREST membership, and TÜRKAK-accredited ISO 27001:2022, ISO 27701:2019, ISO 9001, ISO/IEC 20000-1, and ISO 22301 integrated management systems. Our technical team is built around 9 TSE-certified penetration testing experts alongside specialists holding OSCP, CISM, CISA, CISSP, CIPP/E, and the CMB Information Systems Independent Audit License.

Corporate Certificates

Ministry Penetration Testing Authorisation Certificate

STB03-250

  • Issued by: Republic of Türkiye Ministry of Industry and Technology
  • Mevzuat: 31881 Official Gazette Regulation
  • Validity: 28.01.2027
  • Certificate: PDF
  • Verification: kamubilisim.sanayi.gov.tr

The mandatory official competency certificate required to participate in public-sector penetration testing tenders.

Ministry Public IT Authorisation Certificate

STB01-3242

  • Issued by: Republic of Türkiye Ministry of Industry and Technology
  • Mevzuat: 31881 Official Gazette Regulation
  • Validity: 28.01.2027
  • Certificate: PDF
  • Verification: kamubilisim.sanayi.gov.tr

Authorisation to participate in all types of public IT procurement tenders.

TSE Class A Certified Penetration Testing Firm

TSE-STF-065

  • Standart: TS 13638/T2
  • Class: Class A
  • Issued by: Turkish Standards Institution (TSE)
  • Validity: 03.04.2027
  • Certificate: PDF
  • Verification: basvuruportal.tse.org.tr

Certificate of TSE Class A Certified Penetration Testing Firm, verified through TSE audit.

CREST Membership

Member Company

  • Type: CREST Member Company
  • Akreditasyon: Council of Registered Ethical Security Testers
  • Scope: Penetration Testing

Membership in CREST International — the global reference in penetration testing.

Management System Certificates

ISO/IEC 27001:2022 – Information Security Management System

15.26.11050.1765

  • Belgelendirme: Sigmacert Global (SQR)
  • Akreditasyon: IAF + TÜRKAK
  • TÜRKAK Code: YS-9E73-3306
  • Teknik Alan: C.01
  • First Registered: 29.01.2026
  • Validity: 28.01.2027
  • SoA: 13.01.2025/00
  • Verification: asist.turkak.org.tr

Annex A controls, risk management, and annual surveillance audits under TÜRKAK accreditation.

ISO/IEC 27701:2019 – Privacy Information Management System

05.26.11050.0026

  • Belgelendirme: Sigmacert Global (SQR)
  • Akreditasyon: IAF + TÜRKAK
  • TÜRKAK Code: YS-6B4D-D25F
  • Teknik Alan: C.01 (PII Processor & Controller)
  • First Registered: 29.01.2026
  • Validity: 28.01.2027
  • Mevzuat: 6698 KVKK + EU 2016/679 GDPR
  • Certificate: JPEG
  • Verification: asist.turkak.org.tr

Management-system-level KVKK and GDPR alignment, covering PII Processor & Controller scopes.

ISO 9001:2015 – Quality Management System

ISO 9001:2015

  • Standart: ISO 9001:2015
  • Scope: Cybersecurity, consulting, and IT services

Process-driven management, customer satisfaction, continual improvement, and risk-based thinking.

ISO/IEC 20000-1 – IT Service Management System

ISO 20000-1

  • Standart: ISO/IEC 20000-1
  • Scope: Software development, system integration, managed security services

SLA management, incident management, change management, and capacity management processes.

ISO 22301 – Business Continuity Management System

ISO 22301

  • Standart: ISO 22301
  • Scope: Business Impact Analysis, recovery strategies, crisis management

Service continuity assurance through crises, cyber attacks, and operational outages.

Expert Team Certification Inventory

Our technical team holds the following internationally recognized cybersecurity and data protection certifications.

Penetration Testing Certifications

Penetration Testing

  • OSCP+ – OffSec Certified Professional Plus (OffSec) – verify
  • OSCP – Offensive Security Certified Professional (OffSec) – verify
  • CEH – Certified Ethical Hacker (EC-Council) – view certificate
  • LPT – Licensed Penetration Tester (EC-Council)
  • GPEN – GIAC Penetration Tester (SANS / GIAC)
  • TSE Senior Penetration Testing Specialist – TS 13638 (Turkish Standards Institution) — 2 experts
  • TSE Certified Penetration Testing Specialist – TS 13638 (Turkish Standards Institution) — 3 experts
  • TSE Registered Penetration Testing Specialist – TS 13638 (Turkish Standards Institution) — 4 experts

Information Security Management and Audit

ISMS & Audit

  • CISM – Certified Information Security Manager (ISACA) – verify
  • CISA – Certified Information Systems Auditor (ISACA) – verify
  • CISSP – Certified Information Systems Security Professional ((ISC)²)
  • ISO/IEC 27001:2022 Lead Auditor – Sigmacert Global / Exemplar Global, Sertifika No: SGM-2023-401587 – view certificate
  • CompTIA Security+ (CompTIA)
  • CMB Information Systems Independent Audit License – Capital Markets Board (VII-128.7), Certificate No. 930873

Personal Data Protection and Privacy Certifications

Privacy & Data Protection

  • CIPP/E – Certified Information Privacy Professional / Europe (IAPP) – view certificate
  • ISO/IEC 27701:2019 Lead Auditor – Privacy Information Management System (CFE-CERT) – view certificate
  • EU GDPR Data Protection Officer (CFE-CERT) – view certificate