WorkNest launches Secure division with Pentest People

WorkNest has launched WorkNest Secure, a new division bringing together Pentest People and Bulletproof under a single cyber security and compliance business.

The new unit creates a dedicated cyber security, information security and data protection arm within the wider group following the integration of the two businesses.

Combined services

WorkNest Secure will provide services including penetration testing, incident response, outsourced Data Protection Officer support, GDPR compliance advice, virtual Chief Information Security Officer services and certification support for ISO 27001, PCI DSS, Cyber Essentials and DORA.

The division will sit alongside WorkNest People within the group, which is part of Axiom GRC. WorkNest says the business employs more than 800 people and serves more than 50,000 customers across 10 countries.

The unit is intended to provide organisations with a single access point for security and compliance support. It will work with businesses of different sizes, either alongside internal teams or as a fully outsourced provider.

Integrated platform

Pentest People and Bulletproof were brought together in 2025 and have now been placed under the WorkNest Secure brand. The division combines consultant-led support with the GuardNest platform, which provides vulnerability management, threat intelligence and compliance tools.

The model is designed to give customers ongoing visibility into threats and compliance issues throughout a contract rather than relying on one-off reports. It also aims to translate technical security information into practical actions for clients.

Kirsty Fowler leads the division as Managing Director, WorkNest Secure.

“WorkNest Secure brings together the strengths of Pentest People and Bulletproof into a single, focused cybersecurity and compliance division. It reflects the investment we’ve made and our long-term commitment to helping organisations manage cyber risk in a practical and effective way,” said Fowler.

“The addition of Pentest People following our acquisition of Bulletproof and IMSM demonstrates our ambition to become an international leader in the Governance, Risk and Compliance market, delivering tech-led compliance to SMEs alongside leading enterprise SaaS solutions,” added Fowler.

“Our approach focuses on building genuine partnerships with our customers. By combining the right people, accessible technology and clear, pragmatic advice, we help organisations make confident, informed decisions about their security,” added Fowler.

Market demand

The launch expands WorkNest’s presence in a market where employers and regulated businesses face growing scrutiny over cyber resilience, data handling and governance controls. It also gives the group a clearer structure for selling security and compliance services alongside its existing employment law, HR, health and safety and compliance offerings.

For customers already using the wider WorkNest business, the reorganisation brings together services that had previously operated across recently integrated companies. For WorkNest, it creates a simpler brand structure for advisory and technical services that had been operating under separate names.

Broader strategy

GuardNest, the platform attached to the division, is positioned as the technology layer supporting those services. It gives organisations real-time visibility over vulnerabilities, threat intelligence and compliance tasks.

The creation of specialist divisions under the WorkNest name also reflects how business services groups are reshaping acquired businesses into broader governance, risk and compliance offerings. In this case, legal, people, safety and cyber services have been brought together under one group structure while retaining separate operating brands for distinct areas of work.

WorkNest Secure is focused on helping organisations identify, manage and mitigate security risks through a team of accredited professionals.