What is an LLM vulnerability scanner?

An LLM vulnerability scanner sends batteries of adversarial probes — jailbreaks, prompt injections, PII extraction attempts, harmful-content requests — at a target LLM and grades the responses. The output is a vulnerability + optimization report with per-probe evidence, severity, and a prioritized fix list.

Which LLMs can I scan with FilterPrompt?

OpenAI, Anthropic, Google Gemini, Azure OpenAI, plus any OpenAI-compatible endpoint — Ollama, Groq, Mistral, Together AI, OpenRouter, Perplexity, Hugging Face, vLLM, or your own custom endpoint. Bring your own keys per tenant.

What kinds of vulnerabilities does FilterPrompt test for?

Jailbreaks (DAN, role hijack, translation smuggling), direct and indirect prompt injection, system-prompt extraction, harmful-content compliance, PII / secret leakage, bias & fairness, RAG poisoning, agent/tool abuse, output quality, and robustness — categories map to the OWASP LLM Top 10.

How are probes graded?

Each probe declares an evaluator: regex match, refusal-check, contains-check, or an AI judge (Gemini 3 Flash). Pass/fail comes with severity, category, the exact prompt sent, the model's full response, and the evaluator's reason — fully auditable.

How much does a scan cost?

1 credit per probe executed. New accounts get 1 welcome credit on signup. Pay-as-you-go credit packs after that — credits never expire. Connecting LLMs and creating tenants is free.

Cyber Security Companies London — UK Vendor Guide

Regional Guide · 2026-06-01 · 12 min read · FilterPrompt Security Team

Complete guide to cyber security companies in London and across the UK. IT security companies, MDR providers, and consulting firms for 2026.

London hosts one of the densest cybersecurity ecosystems globally, anchored by financial-services regulation (FCA, PRA, CBEST), the National Cyber Security Centre (NCSC), and a deep talent pool. This guide covers cyber security companies in London worth shortlisting in 2026 — IT security companies, MSSPs, MDRs, consultancies, and product vendors with material UK presence.

Why London specifically

Three structural factors. First, the FCA's operational resilience rules and the Bank of England's CBEST framework drive demand for high-end red team and consulting services concentrated in London. Second, the NCSC publishes the most operationally credible national-level guidance and certifies vendors through its CHECK and Cyber Essentials Plus schemes. Third, the London talent pool spans Big-4 consulting, specialist boutiques, and a growing product-vendor presence. The combination makes London a credible global hub for advanced cyber security firms.

Top cyber security companies in London — 2026

Consulting and advisory

PwC UK — Cyber and Privacy practice, strong in financial services and regulatory work
EY UK — Cybersecurity Consulting, broad coverage and CBEST-accredited
Deloitte UK — large practice, strong in cloud security and identity
KPMG UK — Cyber team with NCSC alignments
Accenture Security UK — global delivery with London anchor, MSSP and consulting

Specialist boutiques and CHECK-accredited firms

NCC Group — UK-headquartered, strong red team and consulting, listed on LSE
Context Information Security (Accenture) — high-end red team and incident response
MWR InfoSecurity (now F-Secure) — London-rooted research and consulting
Pen Test Partners — practical penetration testing across IT, OT, and IoT
WithSecure UK — managed detection and consulting

MDR and MSSP

BT Security — UK-leading MSSP, deep telecoms and government coverage
Sophos UK — Abingdon-headquartered, strong SMB and mid-market MDR
Bridewell Consulting — UK-headquartered MSSP and consulting
S-RM — incident response and MDR specialists

Product vendors with London presence

Darktrace — Cambridge-headquartered, AI-driven NDR, listed on LSE
Sophos — Abingdon, broad portfolio
ZeroFox — UK office for digital risk protection
Snyk — London engineering presence, developer security

Selection considerations specific to UK

If you are regulated by the FCA or PRA, prefer cyber security firms with documented experience in CBEST and TLPT (threat-led penetration testing). If you handle UK-government data, require CHECK accreditation for testing engagements and consider Cyber Essentials Plus alignment. For data residency, verify SOC location and incident-data residency — many MSSP contracts default to non-EU jurisdictions which complicates UK GDPR obligations.

Pricing benchmarks (UK market, 2026)

Penetration testing engagement (web app, 2 weeks) — £15K–£40K
Red team engagement (8–12 weeks) — £80K–£300K
MDR for 1,000 endpoints — £80K–£200K annually
vCISO services — £5K–£15K monthly
Big-4 consulting day rate — £1,500–£3,500

Working with London cyber security firms — practical tips

Ask for CHECK team leader credentials by name on testing engagements
Insist on UK-located SOC for FCA-regulated workloads
Validate ICO registration for any provider handling personal data
Reference-check with two existing UK customers in your sector
Negotiate IR retainer hours into MDR contracts upfront

FAQ

Which UK cyber security firm is best for FCA-regulated firms?

Depends on scope. NCC Group, Context (Accenture), and S-RM are the most often-named for CBEST. PwC and EY for broader operational resilience programmes.

Are London cyber security companies more expensive than US equivalents?

Roughly comparable on product licensing; consulting day rates can be 10–20% lower than equivalent US firms while delivering equal quality.

Conclusion

London's cyber security firm density is a genuine procurement advantage — multiple high-quality candidates per category and a regulator (NCSC) that publishes useful guidance for buyers. For organisations with UK operations, a London-anchored cybersecurity vendor stack is usually the operationally simplest choice.