Products & Solutions

Ethical Hacking and vulnerability assessment

BT Security Ethical Hacking

Protect your organisation

Let the BT experts identify your vulnerabilities before the cyber criminals do.

Highly skilled, financially motivated hackers and criminals are targeting organisations of all sizes, including household name companies. Defending your organisation against internet-based threats is increasingly complex as malware becomes ever more sophisticated. Failure to adequately protect your business could lead to loss of data, revenue, brand reputation, and customer loyalty.

With operations in over 180 countries supporting some of the world’s largest companies, from financial institutions to pharmaceuticals, we have a unique perspective on cyber crime. We know that an attack can happen anytime.

So we’ve built a team of 2,500 experts who are constantly watching, learning, predicting and responding to threats to protect us and our customers.

We perform over 1000 ethical hacks annually on our systems and networks, helping to defend against over 1.4m cyber-attacks per year. So you can rely on us to protect you. 

Reduce risk, make sure your ethical hacking is professionally managed by BT.

  • Find out just how well prepared your applications and network are to resist attacks with Ethical Hacking services from BT.
  • Our experienced ethical hackers will use proven methodologies to independently test your security processes and controls, to identify all vulnerabilities of your environment with a ranking of their level of risk based on the ease with which they can be exploited.
  • Our experts may, on your request, exploit the identified vulnerabilities (often called penetration testing or pentesting) which is performed to demonstrate the consequences when these vulnerabilities were found and exploited by an attacker.
  • Our experts will work with you to review your current risks against your desired risk profile, and then provide a reliable, flexible road map that will help you manage your vulnerabilities.
  • As a large network operator and provider of managed security services we have a clear, global view of the current threats and points of exposure, so we can use this insight to help you.
  • We are certified in accordance with the following CREST schemes: Penetration Testing, and Simulated Target Attack & Response (STAR). These accreditations mean that we are well recognised and experienced in the field of ethical hacking, and also ensures that any data found that identifies vulnerabilities, is protected.
  • We have held ISO9001 quality assurance certification for our consulting services since 2003, demonstrating our long term commitment to continuously maintain and improve the quality of our services.


Effective ethical hacking improves the security of your business.

To improve your security, we recommend that you:

  • Make sure you have a programme of regular penetration tests and vulnerability scans, performed by external experts, to expose any weaknesses in your security.
  • Avoid using internal teams, as you risk getting a biased perspective.
  • Protect your organisation from the insider threat - consider using ethical hacking teams who have wide ranging experience and an up-to-date view of what vulnerabilities exist in other large global organisations.
  • Enable your security team with detailed findings, risk ratings, and recommendations so that you can immediately take action as a result of the testing.

How we can help

Let the BT experts identify your vulnerabilities before the cyber criminals do.

We know the key challenges in professionally managing security testing. That’s why by working with us, we can help you to:

Recruit and retain the best talent

Experienced and skilled ethical hackers or penetration testers are hard to find. And once you’ve found them, you need to be able to persuade them to stay by offering them a wide selection of varied work. Employ these skilled individuals correctly and you will find yourself one step ahead of the criminals, but without them you will be leaving your business exposed to the hacker with no ethical behaviour.

Get an unbiased view of your vulnerabilities

It’s difficult to perform a completely unprejudiced, unbiased assessment of your current security processes, systems, and people. It’s true to say that “you don’t know what you don’t know” – and an in-house team’s ability to really delve deep and uncover your weaknesses may be limited by their existing knowledge of your security architecture. Additionally, if the ethical hackers form part of your existing security team then they may not be willing to publicise their own or their colleague’s failings. Demonstrating an independent assessment of your organisation’s security controls may also help to show that you are compliant against regulations when audited.

See the bigger picture

Without a view of the broader global threat landscape and the detailed knowledge of how other organisations are being breached, it becomes difficult to keep abreast and test all the potential ways in which hackers may infiltrate your business. An in-house ethical hacking team will have less knowledge at their disposal.

Protect yourself from the insider threat

The likelihood of a data breach, business disruption, or stolen IPR, perpetrated by an external criminal is no longer your sole concern. The insider threat is very real and difficult to identify.