Pricing

Start free. Scale when ready.

No credit card required. Run your first risk assessment today and see what your board has been missing.

Essentials

For teams getting started with risk quantification

Freeto get started
Start Free
1 risk assessment per quarter
5 threat scenarios quantified
NIST CSF compliance mapping
External scan — 1 domain
PDF risk report
Email support
Most Popular

Professional

For security teams at regulated enterprises

Contact usfor pricing
Talk to Sales
Unlimited assessments
5 threat scenarios + custom scenarios
Multi-framework compliance (NIST, SEBI CSCRF, ISO, DORA)
External scan — unlimited domains
7-category enterprise scanner
Board-ready PDF reports
Historical trending and comparison
Priority support

Enterprise

For large organizations with complex requirements

Customtailored to your needs
Contact Us
Everything in Professional
Multi-entity / group company support
Custom threat scenarios and calibration
API access for integration
Multi-user delegation and workflows
SSO / SAML authentication
Dedicated customer success
Custom SLA

Common questions

Do I need technical expertise to use Kritis?

No. The assessment uses plain-language questions with context for each. Most CISOs or GRC managers complete it without consulting their teams — though the recommended responder tags help if you want to delegate specific sections.

How is this different from a maturity assessment?

Maturity assessments tell you where you are on a scale. Kritis tells you what that position costs — in probable annual financial loss. A '3 out of 5' means nothing to a board. '$4.2M annualized exposure' drives decisions.

Is your risk quantification accepted by regulators?

Our engine uses probabilistic loss modeling (Monte Carlo simulation) — the quantitative risk-analysis approach aligned with NIST SP 800-30, NIST IR 8286, and ISO 27005, and increasingly expected by boards and regulators for defensible, financial cyber-risk reporting.

Can I try it before committing?

Yes. The Essentials plan is free. Run a full assessment, get a quantified risk posture, and generate a board report — no credit card required.