Forvis Mazars vs NCC Group: DORA Compliance Services Compared
Quick verdict: NCC Group ranks higher overall (70/100 vs 65/100) on our methodology, largely on cybersecurity specialist strengths. Choose Forvis Mazars if its focus on banks or its premium pricing fits your situation better.
| Criteria | Forvis Mazars | NCC Group |
|---|---|---|
| Rating | 3.9 out of 5 | 4.2 out of 5 |
| Overall score | 65/100 | 70/100 |
| Category | Mid-tier | Cybersecurity specialist |
| Headquarters | Paris, France | Manchester, United Kingdom |
| Founded | 1945 | 1999 |
| Pricing band | Premium | Premium |
| Gap assessment | Yes | No |
| DORA audit | Yes | No |
| Consulting | No | No |
| Resilience / pen testing | No | Yes |
| TPP register | No | No |
| Entity types served | 4 | 4 |
Where Forvis Mazars is strong
- Strong European, especially Continental, financial-services regulatory heritage
- Integrated prudential-regulation and ICT-risk advisory
- Well positioned for EU-headquartered financial entities
Where NCC Group is strong
- Specialist depth in penetration testing and threat-led resilience testing
- Established credentials (e.g. CREST) recognised for regulatory-grade testing
- Focused expertise directly mapped to DORA Articles 24-27
Which should you choose?
Choose Forvis Mazars if…
- You are a banks.
- You want premium-tier engagement economics.
- You prioritise strong european, especially continental, financial-services regulatory heritage.
Choose NCC Group if…
- You are a banks.
- You want premium-tier engagement economics.
- You prioritise specialist depth in penetration testing and threat-led resilience testing.
Frequently asked questions
Is Forvis Mazars or NCC Group better for DORA compliance?
NCC Group scores higher against our methodology (70/100 vs 65/100), but the right choice depends on your entity type, budget, and which pillars you need most.