Although the NCC Group we know today officially formed in 1999, we trace our origins, purpose and proud tech heritage way back to the 1960’s, a time of technological progress and exploration and the creation of the UK’s National Computing Centre
In 1999, NCC Group spun off from the National Computing Centre in a management buyout - transforming into a dynamic commercial force primed to build a world-class escrow service and expand into cutting-edge security testing, to meet the explosive growth and emerging risks of the early internet era.
In 2004, NCC Group was admitted to trading on the Alternative Investment Market (AIM) and completed its first acquisitions in the escrow industry - US-based Recall Total Information Management & Source Harbour - the first of many acquisitions over the next two decades.
In the ten years that followed, the Group moved to the London Stock Exchange’s main market. Acquisitions, accompanied by internal innovation continued the expansion of the Group’s cyber security and escrow capabilities. A further 18 companies joined the Group during that time with colleagues across 32 locations in APAC, North America and Europe.
Driven by progress, innovation, and a relentless curiosity, our approach to cyber resilience has continued to evolve in step with the increasing complexity of digital transformation, a backdrop of economic uncertainty and increasing cyber policy and regulation.
2025 and beyond.
This is just a snapshot of the rich and diverse history, which makes up NCC Group today. And while history is important - so is the future. What began in the late 1990s as a bold response to a fast-changing digital world has grown into a global force in cyber resilience.
Today, our people continue to protect and enable organisations around the world - from global enterprises to national governments - as they navigate an increasingly connected and complex landscape.
And our mission remains the same: to create a more secure digital future for everyone.
History of acquisitions
- Recall Total Information Management - (2006) – software escrow solutions business
- Source Harbour (2006) – software escrow solutions business
- SecureTest (August 2006) – provider of independent penetration and security testing services
- Site Confidence (January 2007) – a web assurance performance and monitoring company
- Escrow Europe (January 2007) – software escrow business
- NGS Software (November 2007) – highly specialised software security provider
- Meridian Services International (March 2009) – payment scheme logical and physical security audits specialise
- Escrow Europe Switzerland (May 2009) – software escrow business
- SDLC (April 2010) – software testing business
- iSEC Partners (October 2009) –US-based security testing services provider
- Escrow Associates (March 2011) - – US software escrow business
- Matasano Security (August 2011) – independent security research and testing services provider
- Axzona (August 2011) – website monitoring company
- Intrepidus Group (August 2011) – US based mobile testing specialist
- Matasano (August 2012) - US security testing services provider
- FortConsult (May 2013)– the Danish based independent security testing services provider
- OpenRegistry (January 2015) – domain registry back-end provider
- Accumuli plc (March 2015)– UK IT security and risk management business
- Fox-IT (November 2015) – Dutch based provider of high-end cyber security solutions
- Payment Software Company Inc (September 2015) – US based cyber security and payment consultancy
- Virtual Security Research (VSR) (November 2016) – US based cyber security consultancy
- Iron Mountain Intellectual Property Management (IPM) (June 2021) – US based escrow business
- Adelard (April 2022) - UK based safety, dependability, security and risk management business