IOActive, Inc. vs Mandiant (part of Google Cloud)
IOActive, Inc.
Founded in 1998 by Joshua Pennell and led since 2008 by Jennifer Sunshine Steffens, IOActive is headquartered in Seattle with offices in Atlanta, London, Madrid, and Dubai. The firm is known for full-stack security assessments and deep specialism in hardware, embedded systems, semiconductors, automotive, industrial control, and other safety-critical environments.
Pros
- Recognised research leader in hardware, automotive, and semiconductor security
- Independently owned since 1998 with stable senior consultant tenure
- Strong publication record at Black Hat, DEF CON, and academic venues
- Specialist labs for hardware bring-up, fault injection, and chip-level analysis
Cons
- Boutique scale relative to NCC Group or Mandiant limits concurrent capacity
- Premium engagement pricing with no public rate card
- Hardware specialism means depth often exceeds what general-IT teams need
Pricing: Custom (contact sales)
Mandiant (part of Google Cloud)
Founded in 2004 by Kevin Mandia, Mandiant built a global reputation responding to the world's most high-profile breaches. After acquisition by FireEye in 2013 and by Google for ~$5.4B in 2022, the firm retained its brand and now operates inside Google Cloud as a specialist consultancy for incident response, threat intelligence, and offensive security.
Pros
- Frontline visibility into nation-state and ransomware intrusions through real IR casework
- Deep threat intelligence backed by APT group tracking (APT1, APT28, APT41)
- Backed by Google Cloud scale, telemetry, and engineering resources
- Brand recognition that satisfies board and regulator expectations after a breach
Cons
- Premium enterprise pricing with bespoke engagements and no public price list
- Lead times can be long outside an active retainer relationship
- Brand and roadmap increasingly tied to Google Cloud's strategic priorities
Pricing: Custom (contact sales)