Cybersecurity management software

Compliance with NIS2 & ZKB fully under the control of your infrastructure

Praetorix is a GRC tool (Governance, Risk & Compliance) covering all nine mandatory requirements for cybersecurity management — from asset registration through risk analysis to outputs for NÚKIB. It runs exclusively on-premise, with a perpetual license and without sending any data to external services.

Compliant with frameworks and standards
NIS2 Cybersecurity Act NÚKIB EU AI Act ISO 27001 CZ · SK · EN · PL
9/9

Mandatory requirements covered

The complete GRC core per the market survey — asset registration, multi-entity model, risk register and analysis, SoA, audit trail.

0

Data leaving the infrastructure

Privacy-by-design for critical infrastructure. Document content is not processed through any external services or language models (LLM).

One-off license

Perpetual license for the entire group with no recurring fees. Only the optional annual maintenance and support is variable.

Value proposition

A full-featured compliance tool — with no compromise on data security

The combination of full functional coverage, on-premise operation and an unlimited-term license represents a significantly more favourable option in terms of TCO than subscription (SaaS) models.

Full coverage of the mandatory core

Nine mandatory RFI requirements — from asset registration and management, through the multi-entity group model and risk register, to the Statement of Applicability (SoA) and a complete audit trail.

On-premise deployment

The solution runs exclusively within the client's computing environment. No data leaves the group's infrastructure — suitable for critical infrastructure operators.

Perpetual license, no lock-in

A one-off license procurement for the entire group with no recurring license fees. An open, portable data model — your data remains fully under your control.

Four language localizations

Interface and outputs in CZ / SK / EN / PL. The methodological content and terminology are aligned with the Czech ZKB and NÚKIB requirements — unified management across a multinational group.

Built-in AI security

Registration of AI systems as assets, assessment of AI-specific risks and a policy for their secure use — accounting for both NIS2 and the EU AI Act. Fully on-premise, with no data sent to an LLM.

Audit outputs for NÚKIB

Automatic generation of the Risk Assessment Report, the Statement of Applicability (SoA) and the Risk Treatment Plan in PDF format (editable as well).

Scope of delivery

The G1–G9 core and detachable add-on modules

The mandatory core covers all market-survey requirements; the add-ons complement the capabilities that competitors showcase — delivered as optional, detachable modules.

G1

Control catalogue

NIS2/ZKB security measures

G3

SoA

Statement of Applicability

G4

Group model

Multi-entity service register

G5

Risk analysis

P × E × D, residual risk

G6

Vulnerabilities

Import of scans and pentests

G7

Audit trail

Who, what, when — immutable record

G8

License

Ed25519 signature, offline activation

G9

Implementation & SLA

Deployment and support

V2

PKI / certificates

Root CA, certificate issuance

V6

Continuity BCM/BIA

MTPD / RTO / RPO, plans

V7

Processes · RACI

Workflow, kanban, RACI matrix

V8

ESG / ISO 27001

93 controls, ESG register

Why Praetorix

Not just software — also the real technical state of your infrastructure

Proprietary security technologies

We develop and deliver our own EDR, NDR, IPS, IDS and SIEM — connectable directly to the infrastructure and reflected in risk analysis from continuous monitoring, not just from one-off scans.

Lower TCO than SaaS

A perpetual license for the entire group instead of a recurring subscription — predictable costs across the whole lifecycle.

Interconnected data model

Links service → asset → risk → measure. A change in one place propagates across the analysis, the SoA and the audit outputs.

Access with TOTP and e-signatures

Login with username + password + 6-digit TOTP, organizational signature seals and time anchors over the outputs.

How it works

From ticket to live demo in three steps

Access to the system is invite-only. After verification you receive an access code to the demo instance and a live demo date.

You fill in a ticket

You leave basic details about your organization and area of interest. The system generates a unique ticket reference number PRX-DEMO-XXXX.

We approve access

We verify and approve the request. You receive an access code to the Praetorix demo instance and we propose a demo date.

Live demo (2 h)

We demonstrate coverage of all nine requirements, the outputs for NÚKIB and the multilingual environment on a real scenario — with no obligation.

Registration

Request an access ticket

Fill in the form — we will create a registered ticket for you and get back to you within 24 hours with an access code and a demo date.

  • No obligation and no cost
  • Registered ticket with a reference number
  • Personal contact and a date within 24 hours
  • Access to the demo instance after approval

New ticket

PRX-DEMO-••••

Submitting creates a registered ticket. Access to the system is invite-only and subject to approval.

License model

Perpetual license for the entire group

A one-off procurement with no recurring license fees. The mandatory G1–G9 core is included; add-on modules are detachable and optional. A detailed price quote is available on request.

On-prem installationG1–G9 core4 languagesOptional annual maintenanceNo vendor lock-in
One-off
On request
+ optional annual maintenance and support Request a quote
Frequently asked questions

What you need to know

Where does the data run and is anything processed via the cloud?+

The solution runs exclusively on-premise, within the client's computing environment. Neither document content nor sensitive data is processed through any external services or language models (LLM). The architecture is designed for critical infrastructure operators.

What about the license — subscription or one-off?+

It is a perpetual (unlimited-term) license for the entire group, procured as a one-off, with no recurring license fees. Only the cost of optional annual maintenance and support is variable. As a result, the TCO is significantly more favourable than with SaaS models.

Which NIS2 / ZKB requirements does the system cover?+

All nine mandatory market-survey requirements — asset registration and management, multi-entity group model, risk register, full risk analysis, Statement of Applicability (SoA), vulnerability import, audit outputs and a complete audit trail. The outputs are usable to demonstrate compliance to NÚKIB.

In which languages is the system available?+

In four localizations — Czech, Slovak, English and Polish. The methodological content and terminology are aligned with the Czech ZKB and NÚKIB requirements.

What does the ticket contain and what happens next?+

After you submit the form, a registered ticket is created with the reference number PRX-DEMO-XXXX. We verify the request, approve access and get back to you within 24 hours with an access code to the demo instance and a proposed date for an approx. 2-hour live demo. No obligation.

Ready to see NIS2 & ZKB compliance live?

Get an access ticket and within 24 hours we will demonstrate the entire solution on a real scenario.

Get an access ticket →