Vault Core
Custom
Posture + compliance for mid-market security teams. Single cloud or hybrid.
- CSPM + KSPM + DSPM
- Continuous compliance · 1 framework
- Standard SLA · 99.95% uptime
- Email + chat support · business hours
- Up to 50 cloud accounts
Pricing
Custom pricing. Predictable contract. No per-finding gotchas.
Enterprise security platform pricing is custom by design — your scale, your modules, your support tier. We don’t price by findings count, alert volume, or any metric that grows when your environment grows.
Most customers consolidate 4-7 point products on contract. Median Year-1 takeout: $2.4M for 1,000-employee customers; $8M+ for Fortune 500.
Live · 24/7 SOC
99.99% uptime, 12mo trailing
Three tiers
Pick the tier. We’ll quote within 2 business days.
No published per-seat or per-account list price — your deal is shaped by which modules you need, your cloud footprint, and your support tier. We commit to a written quote within 2 business days of a scoping call.
Most popular
Vault Enterprise
Custom
The full platform for enterprise security organizations. Multi-cloud, multi-regime.
- Full platform · 8 modules
- Continuous compliance · multi-framework
- Premium SLA · 99.99% uptime
- 24/7 SOC + named CSM
- Unlimited cloud accounts
- Auditor portal access
Vault Federal
Custom
Single-tenant, FedRAMP Moderate authorized, GovCloud-isolated for federal + DIB customers.
- Full platform · single-tenant
- FedRAMP Moderate · NIST 800-53 Rev 5
- AWS GovCloud · Azure Gov
- ITAR-aware deployments
- Dedicated US-citizen support
- Sponsorship-ready ATO acceleration
All tiers include unlimited users, the Vault API, and the Terraform provider. Single-tenant deployments available on Enterprise + Federal.
What’s included on Enterprise
Eight modules. 24/7 SOC. Named CSM. Auditor portal.
Vault Enterprise is the most-purchased tier across our customer base — about 70% of Fortune 1000 customers run on it. Below is what every Enterprise contract includes.
◈
All 8 platform modules
CSPM, CWPP, KSPM, CIEM, DSPM, Compliance Automation, CDR, Vulnerability Management — all included.
▣
Multi-framework compliance
SOC 2, ISO 27001, FedRAMP, HIPAA, HITRUST r2, PCI-DSS, NIST 800-53, CMMC. Map a single control to all of them.
⊞
24/7 SOC operations
Vault SOC analysts triage detections, escalate to your on-call, and run pre-built response runbooks. White-glove on critical.
◇
Named CSM + technical AE
A dedicated Customer Success Manager + technical account engineer. Quarterly business reviews. Joint roadmap planning.
≡
Unlimited cloud accounts
AWS, Azure, GCP, Oracle Cloud, on-prem K8s. No per-account billing. Add accounts as your estate grows.
⌬
Auditor portal access
Read-only auditor accounts. Auditors pull evidence themselves. Walkthroughs run in days, not weeks.
⊟
Premium SLA · 99.99%
99.99% uptime SLA, monthly. RTO 15 min, RPO 5 min. Service credits if breached. SLA reports published quarterly.
○
Customer-managed keys
BYOK + HYOK. Customer-managed encryption for evidence + findings. Zero-knowledge access by default.
Compliance regimes mapped at platform level
SOC 2 Type II
Annual audit · public report
ISO 27001 + 27017 + 27018
Multi-cert
FedRAMP Moderate
Authorized 2024
HIPAA + HITRUST r2
BAA included
PCI-DSS Level 1
Service provider
Get a quote
2-business-day turnaround on a written proposal.
A 30-minute scoping call covers cloud footprint, modules, support tier, and deployment pattern. You receive a written proposal within 2 business days. No back-and-forth on per-finding pricing or asset counts.
- 30-minute scoping · technical + commercial in one call
- Written proposal within 2 business days
- Procurement-friendly · MSA available · DPA on request
Available slots · this week
Tue · 10:00 AM PTPick
Tue · 2:00 PM PT30 min
Wed · 9:00 AM PT30 min
Thu · 1:00 PM PT30 min
Fri · 11:00 AM PT30 min