Comparison Overview

STRAT7

VS

EXL

STRAT7

11 Soho Street, London, W1D 3AD, GB
Last Update: 2025-03-21 (UTC)
View Profile
Between 750 and 799
https://strat7.com/

STRAT7 is a global tech-enabled strategy, insights and analytics group. We help our clients ‘win at change’ by putting customer and market insight at the heart of growth strategy. Our integrated ecosystem of 400+ experts, powered by proprietary AI-driven technology, provides real-time insights into changing customer behaviour. We equip brands with the actionable strategies and foresight needed to navigate disruption, accelerate customer-centric growth and achieve meaningful commercial advantage. Our agencies include: STRAT7 Advisory, STRAT7 Audiences, STRAT7 Bonamy Finch, STRAT7 Crowd DNA, STRAT7 Incite, STRAT7 Jigsaw and STRAT7 Researchbods. STRAT7 is headquartered in London with offices in Amsterdam, Chicago, Leeds, Los Angeles, Melbourne, New York, San Francisco, Singapore, Stockholm and Sydney.

NAICS: 5416
NAICS Definition: Management, Scientific, and Technical Consulting Services
Employees: 0
Subsidiaries: 10
12-month incidents
0
Known data breaches
0
Attack type number
0
View Profile

EXL

320 Park Avenue, 29th Floor, New York, NY, US, 10022
Last Update: 2025-09-09 (UTC)
Between 750 and 799
http://www.exlservice.com

Choosing a digital partner is about more than capabilities — it’s about collaboration and character. Unrealistic overhauls and off-the-shelf products ignore what matters most — your unique needs, culture, goals, and your legacy data and technology environments. At EXL, our collaboration is built on ongoing listening and learning to adapt our methodologies. We’re your business evolution partner—tailoring solutions that make the most of data to make better business decisions and drive more intelligence into your increasingly digital operations. Whether your goals are scaling the use of AI and digital, redesign operating models, or driving better and faster decisions, we’re here to partner with you to help you gain—and maintain—competitive advantage with efficient, sustainable models at scale. Our expertise in transformation, data science, and change management helps make your business more efficient and effective, improve customer relationships and enhance revenue growth. Instead of focusing on multi-year, resource- and time-intensive platform designs or migrations, we look deeper at your entire value chain to integrate strategies with impact. We use our specialization in analytics, digital interventions, and operations management—alongside deep industry expertise — to deliver solutions that help you outperform the competition. At EXL, it’s all about outcomes—your outcomes—and delivering success on your terms. Share your goals with us and together, we’ll optimize how you leverage data to drive your business forward. For more information, visit www.exlservice.com.

NAICS: 5416
NAICS Definition: Management, Scientific, and Technical Consulting Services
Employees: 39,733
Subsidiaries: 6
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/defaultcompany.jpeg
STRAT7
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/exl-service.jpeg
EXL
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
STRAT7
100%
Compliance Rate
0/4 Standards Verified
EXL
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Business Consulting and Services Industry Average (This Year)

No incidents recorded for STRAT7 in 2025.

Incidents vs Business Consulting and Services Industry Average (This Year)

No incidents recorded for EXL in 2025.

Incident History — STRAT7 (X = Date, Y = Severity)

STRAT7 cyber incidents detection timeline including parent company and subsidiaries

Incident History — EXL (X = Date, Y = Severity)

EXL cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/defaultcompany.jpeg
STRAT7
Incidents

No Incident

https://images.rankiteo.com/companyimages/exl-service.jpeg
EXL
Incidents

No Incident

FAQ

EXL company demonstrates a stronger AI Cybersecurity Score compared to STRAT7 company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Historically, EXL company has disclosed a higher number of cyber incidents compared to STRAT7 company.

In the current year, EXL company and STRAT7 company have not reported any cyber incidents.

Neither EXL company nor STRAT7 company has reported experiencing a ransomware attack publicly.

Neither EXL company nor STRAT7 company has reported experiencing a data breach publicly.

Neither EXL company nor STRAT7 company has reported experiencing targeted cyberattacks publicly.

Neither STRAT7 company nor EXL company has reported experiencing or disclosing vulnerabilities publicly.

Neither STRAT7 nor EXL holds any compliance certifications.

Neither company holds any compliance certifications.

STRAT7 company has more subsidiaries worldwide compared to EXL company.

EXL company employs more people globally than STRAT7 company, reflecting its scale as a Business Consulting and Services.

Neither STRAT7 nor EXL holds SOC 2 Type 1 certification.

Neither STRAT7 nor EXL holds SOC 2 Type 2 certification.

Neither STRAT7 nor EXL holds ISO 27001 certification.

Neither STRAT7 nor EXL holds PCI DSS certification.

Neither STRAT7 nor EXL holds HIPAA certification.

Neither STRAT7 nor EXL holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

The Bold Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘percentage’ parameter in all versions up to, and including, 5.4.5 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.

Published
Date
2025-10-23
Updated
Date
2025-10-23
Risk Information
cvss3
Base: 6.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
References
Description

The ComboServlet in Liferay Portal 7.4.0 through 7.4.3.111, and older unsupported versions, and Liferay DXP 2023.Q4.0 through 2023.Q4.2, 2023.Q3.1 through 2023.Q3.5, 7.4 GA through update 92, 7.3 GA through update 35, and older unsupported versions does not limit the number or size of the files it will combine, which allows remote attackers to create very large responses that lead to a denial of service attack via the URL query string.

Published
Date
2025-10-23
Updated
Date
2025-10-23
Risk Information
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A relative path traversal vulnerability was discovered in Productivity Suite software version 4.4.1.19. The vulnerability allows an unauthenticated remote attacker to interact with the ProductivityService PLC simulator and delete arbitrary directories on the target machine.

Published
Date
2025-10-23
Updated
Date
2025-10-23
Risk Information
cvss3
Base: 4.0
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N
cvss4
Base: 6.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A relative path traversal vulnerability was discovered in Productivity Suite software version 4.4.1.19. The vulnerability allows an unauthenticated remote attacker to interact with the ProductivityService PLC simulator and create arbitrary directories on the target machine.

Published
Date
2025-10-23
Updated
Date
2025-10-23
Risk Information
cvss3
Base: 4.0
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N
cvss4
Base: 6.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A relative path traversal vulnerability was discovered in Productivity Suite software version 4.4.1.19. The vulnerability allows an unauthenticated remote attacker to interact with the ProductivityService PLC simulator and delete arbitrary files on the target machine.

Published
Date
2025-10-23
Updated
Date
2025-10-23
Risk Information
cvss3
Base: 7.5
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:H
cvss4
Base: 8.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References