> whoami_
Built by hackers, trusted by business. We channel offensive security expertise into defending your organisation.
Hedgehog Security is a specialist cyber security consultancy based in the old Officers Mess at the historic RAF base at Duxford in the United Kingdom, and we can often be found working from the historic USAF base at Fowlmere, just 2 miles down the road. We provide penetration testing and Cyber Essentials certification services to organisations of all sizes — from startups handling their first compliance requirement to enterprise firms managing complex, multi-cloud estates.
We come from the DEFCON trenches — CTF winners, bug bounty hunters, and red team operators who've seen the worst the internet has to offer. We channel that knowledge into defending your organisation with the same creativity and tenacity the real adversaries use.
But we also speak your language. Our reports are clear. Our advice is practical. And our mission is simple: make you so hard to breach that attackers move on to easier prey.
We hold the certifications and accreditations that matter — not just for show, but because they reflect the standard of work we deliver.
| Credential | What It Means |
|---|---|
| CREST Member | The international not-for-profit accreditation body for the cyber security industry. CREST membership means our processes, methodologies, and testers meet the highest professional standards. |
| CHECK Approved | The NCSC's scheme for approving companies to conduct authorised penetration testing of public sector systems through the CREST scheme. CHECK approval for penetration testing at local government level. |
| IASME Assessors | Accredited to assess and certify organisations under the Cyber Essentials and Cyber Essentials Plus schemes on behalf of the NCSC. |
| OSCP / OSCE Holders | Offensive Security Certified Professional and Certified Expert — rigorous, hands-on certifications that require passing a gruelling practical examination, not a multiple-choice test. |
| CREST CRT / CCT | CREST Registered Tester and Certified Tester qualifications — the industry standard for individual penetration testers in the UK. |
Hedgehogs are small, unassuming, and easy to underestimate. But when threatened, they curl into an impenetrable ball of spines that makes predators think twice.
That's exactly what we do for your organisation. We help you present a defensive posture so thorough that attackers move on to softer targets. Small team, serious spines.
Or as we like to put it: keeping the pricks on the outside.
Every conversation starts with understanding your challenges. No hard sell, no obligation — just honest advice from people who've been doing this for a long time.