vCISO & GRC AI Platform Pricing
Choose the model that fits where your vCISO and GRC practice is today. Business gets you live fast. Enterprise scales with your client base. Self-Hosted puts you in full control. All plans are priced per client, per year — annual commitment, no hidden fees.
Trusted by security leaders at
Pricing Plans
Business
Get started fast. GetCybr hosts and manages the platform — your team focuses entirely on delivering security services. Built for small MSPs launching a vCISO or compliance practice without infrastructure overhead.
- Single-tenant platform, hosted by GetCybr
- 5 core compliance frameworks (SOC 2, ISO 27001, NIST CSF, CIS Controls, GDPR)
- Automated client reporting
- AI-powered risk assessment
- Third-party risk management (TPRM)
- White-label client-facing reports
- Onboarding support included
- Pay as you grow — only pay for active clients
Enterprise
Scale your practice without scaling headcount. Multi-tenant architecture lets you manage multiple client organisations with full isolation. Built for established MSPs and security consultancies running a serious vCISO business.
- Multi-tenant — manage multiple client organisations
- Unlimited custom compliance frameworks (12+ pre-built + custom)
- Policy gap analysis for every client
- Advanced automated reporting with custom branding
- Multi-client dashboard and portfolio view
- AI-powered risk assessment and scoring
- Third-party risk management (TPRM)
- White-label client-facing reports
- Priority support and dedicated success manager
- Pay as you grow — costs scale with your client base
Self-Hosted
Deploy GetCybr in your own infrastructure. Full data sovereignty, custom integrations, and the ability to connect your own AI model (BYOM). Built for service providers with strict data residency requirements or advanced customisation needs.
- Deploy in your own cloud or on-premises
- Multi-tenant — full data residency and sovereignty control
- Bring Your Own Model (BYOM) — connect OpenAI, Azure OpenAI, Anthropic, or local LLMs
- Unlimited custom compliance frameworks
- Full API access and custom integrations
- Policy gap analysis and automated reporting
- AI-powered risk assessment (your model, your data)
- OEM / white-label platform licensing
- Dedicated implementation and ongoing support
- Pay as you grow — only pay for active clients
All plans are billed per client, per year (annual commitment). Add clients as your practice grows — no flat fees, no surprises. Talk to our team to get started.
Compare All Plans
Every plan includes the complete platform feature set. The differences are tenant model, framework limits, AI model control, and support level.
| Feature | Business | Enterprise Most Popular | Self-Hosted |
|---|---|---|---|
| Deployment | GetCybr-hosted | GetCybr-hosted | Your infrastructure |
| Tenant Model | Single tenant | Multi-tenant | Multi-tenant |
| Frameworks | Key frameworks (5) | Unlimited + custom | Unlimited + custom |
| Data Residency | GetCybr EU/US | GetCybr EU/US | Your choice |
| Policy Gap Analysis | |||
| Automated Client Reporting | Manual | ||
| Multi-Client Dashboard | Single portfolio | ||
| AI Risk Assessment | |||
| AI Model | GetCybr AI | GetCybr AI | Bring Your Own (BYOM) |
| TPRM | |||
| White-Label Reports | |||
| API Access | Full + custom | Full + custom | |
| OEM / White-Label Platform | |||
| Support | Priority + Phone | Priority + Phone | |
| Per-Client Billing |
Frequently Asked Questions
Everything you need to know about our plans, tenant models, and per-client pricing.
What is the difference between Business and Enterprise?
Business is a single-tenant plan — you manage one portfolio of clients on a shared GetCybr infrastructure. It includes 5 core compliance frameworks and is ideal for MSPs just getting started. Enterprise is multi-tenant — you can manage multiple separate client organisations, each fully isolated, with unlimited custom frameworks. Both plans are priced per client, per year.
What does multi-tenant mean for my practice?
Multi-tenant means you can manage multiple client organisations from a single dashboard, with each client's data fully isolated in their own environment. You control user access, frameworks, and reporting per client. Business is single-tenant (one pooled environment); Enterprise and Self-Hosted are multi-tenant.
What is Bring Your Own Model (BYOM) in Self-Hosted?
Self-Hosted lets you connect your own LLM provider — OpenAI, Azure OpenAI, Anthropic, or a locally hosted model. Your data never leaves your infrastructure and is never sent to GetCybr's AI services. This is ideal for service providers with strict data residency or AI governance requirements.
How does per-client pricing work?
You pay an annual fee for each active client organisation you manage on the platform. There are no flat enterprise fees — your costs scale directly with the number of clients you serve. Add a client, your annual bill grows by one unit. This is what we mean by pay as you grow.
Which frameworks are available on Business vs Enterprise?
Business includes 5 core pre-built frameworks: SOC 2, ISO 27001, NIST CSF, CIS Controls, and GDPR. Enterprise and Self-Hosted include all 12+ pre-built frameworks plus the ability to build unlimited custom frameworks from scratch or adapt any existing one to your clients' exact regulatory requirements.
Do you offer a trial or pilot programme?
Yes. We offer a complimentary 30-minute platform walkthrough and a pilot engagement for qualified MSP partners. The pilot lets you onboard one client at no cost to validate the platform in your workflow before committing. Schedule via the Get Started or Talk to Sales button above.
Ready to Grow Your Security Practice?
Start with Business and scale to Enterprise as your client base grows. Or go Self-Hosted for full control. Annual pricing, per client — you only pay for what you use.