Skip to main content
DORA Auditor

SureCloud, DORA Compliance Services Review

3.8 out of 5
GRC / resilience
Last updated: 1 authoritative sourceDORA Auditor Editorial TeamMethodology
SureCloud offers GRC software alongside cybersecurity and risk-advisory services. Its combined platform-and-services model supports DORA programmes across ICT risk management, third-party risk, and the register of information, with penetration testing available for resilience testing.

Overview

Founded2006
HeadquartersReading, United Kingdom
Team sizeMid-size
Pricing bandMid
DORA Auditor score56/100
Websitewww.surecloud.com

DORA services

  • GRC platform
  • Third-party risk management
  • ICT risk management
  • Penetration testing
  • Cyber & risk advisory

Who they serve

BanksInsurance companiesInvestment firmsPayment institutions

Strengths

  • Combined GRC tooling and hands-on advisory in a single provider
  • In-house penetration testing supports the resilience-testing pillar
  • Accessible pricing for mid-sized financial entities

Limitations

  • Smaller scale than enterprise GRC vendors or the Big Four
  • UK-headquartered; primary strength is the UK and Northern-European market

Compare SureCloud

Frequently asked questions

Does SureCloud offer DORA gap assessments?
What entity types does SureCloud serve for DORA?
How much does a DORA engagement with SureCloud cost?

Sources

  1. SureCloud official site

Provider data is compiled from public sources and reviewed against our methodology. Last verified 2026-07-10.