NCC Group vs Rapid7

Side-by-side comparison of NCC Group and Rapid7 for penetration testing services. Compare their services, accreditations, compliance expertise, pricing, and overall scores.

NCC GroupRapid7
Score7550
HeadquartersManchester, United KingdomBoston, Massachusetts, United States
Founded19992000
Team Size500+500+
Pen Testers
GeographyGlobalGlobal
MarketsGlobal, UK, North America, Europe, APACGlobal, North America, Europe
Pricing
Services
Web ApplicationNetworkMobile AppIoTCloudAPISocial EngineeringRed TeamingPurple TeamingPhysicalWirelessSCADA/ICSVulnerability AssessmentSource Code ReviewConfiguration ReviewAssumed Breach
Web ApplicationNetworkMobile AppCloudAPISocial EngineeringRed TeamingVulnerability AssessmentConfiguration ReviewWireless
Accreditations
CRESTCHECKCBESTISO 27001SOC 2Cyber Essentials PlusNCSC AssuredPCI QSACouncil of Registered Ethical Security Testers
SOC 2ISO 27001
Compliance
ISO 27001SOC 2PCI DSSGDPRNIS 2DORA+2
SOC 2PCI DSSHIPAANIST CSFISO 27001GDPR+1
Best For
EnterpriseGovernmentCritical Infrastructure
EnterpriseMid-MarketGovernment
MethodologiesOWASP, PTES, CREST, CBEST, OSSTMM, TIBER-EUOWASP, PTES, NIST

Shared Services (10)

Web Application
Network
Mobile App
Cloud
API
Social Engineering
Red Teaming
Wireless
Vulnerability Assessment
Configuration Review

Only NCC Group (6)

IoT
Purple Teaming
Physical
SCADA/ICS
Source Code Review
Assumed Breach

Only Rapid7 (0)

None

Comparison FAQs

How does NCC Group compare to Rapid7?+

NCC Group (score: 75) is headquartered in Manchester, United Kingdom and offers 16 services. Rapid7 (score: 50) is based in Boston, Massachusetts, United States with 10 services. Both providers offer 10 services in common.

Which provider has more accreditations?+

NCC Group holds 9 accreditations (CREST, CHECK, CBEST, ISO 27001, SOC 2, Cyber Essentials Plus, NCSC Assured, PCI QSA, Council of Registered Ethical Security Testers), while Rapid7 holds 2 (SOC 2, ISO 27001).

What services are unique to each provider?+

NCC Group uniquely offers: IoT, Purple Teaming, Physical, SCADA/ICS, Source Code Review, Assumed Breach Testing. Rapid7 uniquely offers: no unique services.