About us
Founded in 2007, and acquired by CyberCX in 2020, Insomnia Security is a team of more than thirty IT professionals, including a consultancy team with well over 75 years combined experience in commercial, offensive security.
With offices in Auckland, Wellington and Melbourne, as well as global partners around the world, we are well positioned to provide penetration testing and other IT security services to our clients. Understanding the subtle differences in IT security testing that companies require, the team at Insomnia Security are experienced in tailoring services to meet the scope and requirements of our customers.
Specialising in offensive security testing services, our teams regularly attend specialist training and conduct in-house research and tool development, ensuring that they are always aware of current attacks and exploitation techniques. With a range of services to cover most technical security testing requirements, Insomnia Security are the team to help you rest secured.

Our team
Insomnia Security consists of a large technical team, supported by an administrative team that provides effective management of projects for our customers.

Adam Boileau
Gavin Cooper
How we work
Scope and sign off
The initial contact, scoping, and the creation of the statement of work, are handled by our engagement team with input from a technical consultant.
Project planning and management
Our projects team become the primary point of contact and are responsible for handling scheduling, gathering pre-requisites and managing the delivery of the review.
Completion and reporting
The technical team will complete the review and produce a set of reports, which will then pass through several stages of technical review and quality assurance.
Follow up
Once the report is delivered, our team are available to do a walkthrough of the findings, answer questions, or provide re-testing of any remediation actions.
Crest Membership
Insomnia Security is a certified accredited member of CREST International, the Council of Registered Ethical Security Testers. This certification organisation originated in the UK government CHECK programme as a requirement for companies supplying security testing services to the UK government and later adopted by financial organisations.
When engaging a CREST Approved organisation, you can be confident that the work will be carried out by qualified individuals with up to date knowledge of the latest vulnerabilities and techniques used by real attackers, backed up by a company with appropriate methodologies for the secure storage and protection of your data.
For further information, visit https://www.crest-approved.org/
