Rizkly Pricing for SMBs

Rizkly provides options for the amount of expert advisory hours and platform features required for your compliance success. Review the platform and advisory package descriptions below to help you pick the best combination of app and expert for your business.

Review our platform options to determine which one best meets your needs.
Pair it with any number of advisory hours…or choose none.
If you’re ready to buy or have questions, please contact us.

Don’t see a package that fits your business? Just reach out to us and we’ll tailor a package that meets your specific situation so you can get started with Rizkly today.

	Starter	Essentials	Professional	vCISO
Starter The Rizkly Starter package helps companies understand cybersecurity best practices and strengthen their overall organizational cybersecurity posture. Our proprietary Rizkly SMB Control Framework consists of 20 core cybersecurity best practices that are commonly included in well-known frameworks such as NIST, SOC and CIS. With our Starter package companies can assess current maturity levels and identify major gaps through an included core cyber health questionnaire.
Essentials The Rizkly Essentials package is designed for government contractors pursuing compliance with standards such as NIST 800-171 and CMMC. Rizkly Essentials includes key features that facilitate core compliance activities such as creating policies, POAMs and automatic System Security Plan (SSP) generation. The Essentials package also includes an informative boundary and scoping assessment to help jumpstart any project involving NIST-based controls. Add some advisory hours if you would like a dedicated expert to show you the ropes and help manage your compliance project.
Professional Achieve compliance faster with our Rizkly Professional package. Building on the robustness of our Essentials package, Professional focuses on project acceleration through select policy and procedure templates that you or your advisor tailor for each project. Access is also provided to our cyber essentials course so that you can address requirements for employee awareness training. The Rizkly Professional package supports most cybersecurity and data privacy frameworks and includes the ability to implement your own set of controls. Add in some advisory hours to further ensure your compliance program is well designed and sustainable over time.
vCISO Our Rizkly Enterprise package streamlines and automates continuous compliance operations for companies tackling multiple compliance frameworks. From CrossMap to Cloning to Policy Versioning, Rizkly Enterprise customers gain powerful features that eliminate time spent on daily compliance tasks. In addition to dashboards, alerts and automatic document generation, our Enterprise customers gain access to our entire library of policy and procedure templates, built-in guidance and risk measurement questionnaires. Rizkly Enterprise is your complete compliance program management platform.
Price	Free	$295/mo	$495/mo	$795/mo
Projects	1	1	1	3
A project is the combination of one compliance framework and one system boundary
User Licenses	2	2	3	5
Advisory Hours
You Got This! With this minimum level of monthly advisory, Rizkly experts are ready to answer occasional questions regarding compliance requirements or control implementations. Your dedicated advisor can also take a high-level look at documentation and point you to available reference materials where appropriate.
We Got Your Back! Our most popular package. This level of advisory is appropriate for companies who have started their compliance project but need some ongoing guidance to get across the finish line. Typical activities at this level include bi--weekly checkpoints, getting suggestions on specific technical configurations and challenges, reviewing documentation, and keeping management apprised of specific regulatory changes and updates.
Let’s Do This! Your dedicated Advisor is available to do some ‘heavy lifting’ as you look to accelerate your compliance journey. In addition to serving as a SME for your cyber and compliance needs, your Advisor can help develop policies and procedures, review control artifacts, prepare management briefings, and engage with auditors and other stakeholders.
Full Steam Ahead! Your Rizkly advisor can spearhead your compliance efforts and act as your fractional CISO. They can actively guide and oversee your compliance initiative, while at the same time developing required artifacts such as the SSP, policies, procedures and Incident Response plans. We are an active member of your team, and are accountable for the overall success of your compliance program. Once you're feeling good about where things stand, you can ramp down to a lower number of hours.

Expert Advisory	Starter	Essentials	Professional	Enterprise
Quarterly Check-In
Built-In Advice & Control Guidance
Online Advisor Notes & Collaboration
Initial Compliance Baseline Assessment	Available	Available	Available
Ongoing Expert Collaboration	Available	Available	Available	Available
Standards Frameworks	Starter	Essentials	Professional	Enterprise
Cyber Essentials
CMMC L1
CMMC L2-L3
NIST 800-171
NIST 800-53
ITAR
SOC2
GDPR
FedRAMP
HIPAA
ISO27001
PCI-DSS
CCPA
Custom Create Your Own
Continuous Compliance	Starter	Essentials	Professional	Enterprise
Executive & Compliance Dashboards
Task Reminder Emails & Alerts
Advanced Task Management & Tracking
POAM & Overdue Items PDF Reports
Control Framework CrossMap
Compliance Project Cloning
Vendor/Supply Chain Compliance
Assessment Questionnaires	Starter	Essentials	Professional	Enterprise
Questionnaire Users	1	2	3	10
NIST/CIS Boundary and Scoping Questionnaire
CMMC Self Assessment Guided Questionnaire
Vendor/Stakeholder Questionnaire
SAR & RAR Risk Capture
Compliance Documentation	Starter	Essentials	Professional	Enterprise
Document Library
System Environment & Boundary
Automated SSP Generation & Management
Automated POA&M Generation & Management
Evidence Storage by Control
Custom Create Your Own
Policy Manager
Policy & Procedure Templates
Artifact Templates
Policy Versioning
Audit Readiness	Starter	Essentials	Professional	Enterprise
Control Self Assessment
Assessor/Partner Access & Notes
DFARS 800-171 Scoring
Pre-Audit Artifact Validation
Audit & Certification Expert Facilitation
Accelerated Audit Success w/ Rizkly Audit Prep ^TM
Cyber Awareness	Starter	Essentials	Professional	Enterprise
Awareness Users		5	10	25
Employee Acknowledgements Manager
Cyber Core Training
Create Your Own Training Course
Training & Survey Status Dashboard
Advanced Features	Starter	Essentials	Professional	Enterprise
One-Click Data Export
Multi-Factor Authentication
One-Click “800-171” to “CMMC” Migration
Azure AD Authentication
Advanced Logging
Evidence API			Available	Available
OSCAL API			Available	Available
On-Premise Deployment			Available	Available
Gov Cloud Infrastructure			Available	Available

The prices shown above are for companies with less than $50M in annual revenue. Please contact Rizkly for a large enterprise or supply chain compliance enablement quote.