Transparent pricing. No lock-ins.

Most compliance consultants and fractional CISOs hide pricing behind a sales call. We publish ours.

Every retainer is month-to-month. Cancel anytime by the 28th of any month with no penalty. Zero termination fees. Annual prepay options available with a discount.

Transparent pricing. No lock-ins.

Month-to-month, cancel anytime. Zero termination fees.

Risk & Readiness Review

$999 one-time

A 90-minute diagnostic call plus a 48-hour Evidence Index Blueprint identifying your top 10 gaps and a 30/60/90 day priority roadmap.

  • 90-minute live diagnostic call
  • 48-hour Evidence Index Blueprint (6–8 pages)
  • Domain scorecard across 5 compliance areas
  • Top 10 gaps with severity and time-to-close
  • 30/60/90 day priority roadmap
  • One sample template relevant to your biggest gap
  • 30-minute readout call to walk through findings
Book your diagnostic

Foundational Retainer

Starting at $3,500 / month

For companies starting their compliance journey. Month-to-month, no lock-ins, zero termination fees.

  • Monthly evidence collection cycle
  • Up to 2 security questionnaires per month
  • Vendor risk register (up to 30 vendors)
  • 1 hour/week synchronous time
  • Quarterly Business Review
  • Access to template library
  • 30-day onboarding sprint included
Start with a diagnostic

Most popular

Active Retainer

Custom

For companies with active enterprise pipeline, multi-framework needs, or India operations. Typically $7,500–$9,000/month.

  • Everything in Foundational
  • Full vulnerability remediation workflow
  • Chain-of-custody evidence trails
  • DPDPA + US framework mapping
  • Up to 6 questionnaires per month
  • Multi-framework support (SOC 2 + ISO 27001 + HIPAA or DPDPA)
  • Quarterly compliance operations sprint
  • 3 hours/week synchronous time
Start with a diagnostic

Strategic Lead

Custom

For mature operations needing embedded leadership, regulatory exam prep, and board-level reporting.

  • Everything in Active
  • Program leadership for compliance team
  • Board-level reporting
  • Regulatory exam prep
  • Multi-entity compliance management
  • Audit response leadership
  • Custom scope and cadence
Start with a diagnostic

What’s actually included at each tier

Diagnostic ($999, one-time)

  • 90-minute live diagnostic call covering 5 compliance domains
  • 48-hour Evidence Index Blueprint (6–8 page PDF)
    • Domain scorecard across access governance, vulnerability management, evidence systems, vendor management, and DPDPA/statutory layer
    • Top 10 gaps identified with severity rating and time-to-close estimate
    • 30/60/90 day priority roadmap
    • Recommended retainer tier with rationale
    • One sample template relevant to your largest gap
  • 30-minute readout call to walk through the blueprint
  • If you convert to a retainer within 14 days, the $999 is credited toward your first month

Foundational Retainer ($3,500/month)

  • Monthly evidence collection cycle across all 5 domains
  • Up to 2 security questionnaires per month
  • Vendor risk register maintenance (up to 30 vendors)
  • 1 hour per week synchronous time (Slack, calls)
  • Quarterly Business Review (90 minutes)
  • Access to the template library
  • The 30-day onboarding sprint is included in your first month

Active Retainer (typically $7,500–$9,000/month)

  • Everything in Foundational, plus:
  • Full ownership of vulnerability remediation workflow (Pillar 1)
  • Full ownership of chain-of-custody evidence trails (Pillar 2)
  • Full ownership of DPDPA + US framework mapping (Pillar 3)
  • Up to 6 security questionnaires per month
  • Multi-framework compliance — SOC 2 + ISO 27001 + one of (HIPAA, DPDPA)
  • Quarterly compliance operations sprint
  • 3 hours per week synchronous time

Strategic Lead (custom)

  • Everything in Active, plus program leadership, board reporting, regulatory exam prep, multi-entity management
  • Pricing depends on scope; typically $12,000+/month

Add-ons

Available to retainer clients only. One-time charges:

  • Audit War Room — $5,000 flat — 2-week sprint when you have an active audit plus 50+ questionnaire deadline
  • DPDPA Compliance Sprint — $7,500 flat — 30-day DPDPA-ready setup for India ops expansion
  • Multi-Entity Setup — $3,500 flat — when adding a new offshore entity to existing compliance posture

Frequently Asked Questions

Why isn't your exact retainer price published?
Foundational is published ($3,500). Active starts around $7,500/month but varies based on questionnaire volume, framework count, and India team size. Strategic is fully custom. Most prospects find the diagnostic clarifies the right tier within 90 minutes.

Do you offer discounts?
Annual prepay gets a 10% discount (effectively one month free). Otherwise no discounts — we’re priced for sustainability, not negotiation.

What about a free consultation first?
We don’t offer free consultations because they attract tire-kickers and produce worse outcomes than the paid diagnostic. The $999 diagnostic gives you a real deliverable regardless of whether you convert.

Can we do hourly?
No. Hourly attracts the wrong work and creates the wrong incentives. The diagnostic is fixed-fee; everything after is monthly retainer.

How does invoicing work?
Retainers are auto-billed on the 1st of each month via Stripe. Annual prepay is a single invoice. The diagnostic is paid upfront before the call books.

Do you accept INR?
Yes, for India-headquartered clients (rare in our ICP). For US clients, USD via Stripe. Wire transfer available for annual prepay.

Not sure which tier you need?

Start with the $999 diagnostic. It tells you honestly which tier fits — and whether you need one at all.

Book your diagnostic