Compliance with NIS2 & ZKB fully under the control of your infrastructure
Praetorix is a GRC tool (Governance, Risk & Compliance) covering all nine mandatory requirements for cybersecurity management — from asset registration through risk analysis to outputs for NÚKIB. It runs exclusively on-premise, with a perpetual license and without sending any data to external services.
Mandatory requirements covered
The complete GRC core per the market survey — asset registration, multi-entity model, risk register and analysis, SoA, audit trail.
Data leaving the infrastructure
Privacy-by-design for critical infrastructure. Document content is not processed through any external services or language models (LLM).
One-off license
Perpetual license for the entire group with no recurring fees. Only the optional annual maintenance and support is variable.
A full-featured compliance tool — with no compromise on data security
The combination of full functional coverage, on-premise operation and an unlimited-term license represents a significantly more favourable option in terms of TCO than subscription (SaaS) models.
Full coverage of the mandatory core
Nine mandatory RFI requirements — from asset registration and management, through the multi-entity group model and risk register, to the Statement of Applicability (SoA) and a complete audit trail.
On-premise deployment
The solution runs exclusively within the client's computing environment. No data leaves the group's infrastructure — suitable for critical infrastructure operators.
Perpetual license, no lock-in
A one-off license procurement for the entire group with no recurring license fees. An open, portable data model — your data remains fully under your control.
Four language localizations
Interface and outputs in CZ / SK / EN / PL. The methodological content and terminology are aligned with the Czech ZKB and NÚKIB requirements — unified management across a multinational group.
Built-in AI security
Registration of AI systems as assets, assessment of AI-specific risks and a policy for their secure use — accounting for both NIS2 and the EU AI Act. Fully on-premise, with no data sent to an LLM.
Audit outputs for NÚKIB
Automatic generation of the Risk Assessment Report, the Statement of Applicability (SoA) and the Risk Treatment Plan in PDF format (editable as well).
The G1–G9 core and detachable add-on modules
The mandatory core covers all market-survey requirements; the add-ons complement the capabilities that competitors showcase — delivered as optional, detachable modules.
Control catalogue
NIS2/ZKB security measures
SoA
Statement of Applicability
Group model
Multi-entity service register
Risk analysis
P × E × D, residual risk
Vulnerabilities
Import of scans and pentests
Audit trail
Who, what, when — immutable record
License
Ed25519 signature, offline activation
Implementation & SLA
Deployment and support
PKI / certificates
Root CA, certificate issuance
Continuity BCM/BIA
MTPD / RTO / RPO, plans
Processes · RACI
Workflow, kanban, RACI matrix
ESG / ISO 27001
93 controls, ESG register
Not just software — also the real technical state of your infrastructure
Proprietary security technologies
We develop and deliver our own EDR, NDR, IPS, IDS and SIEM — connectable directly to the infrastructure and reflected in risk analysis from continuous monitoring, not just from one-off scans.
Lower TCO than SaaS
A perpetual license for the entire group instead of a recurring subscription — predictable costs across the whole lifecycle.
Interconnected data model
Links service → asset → risk → measure. A change in one place propagates across the analysis, the SoA and the audit outputs.
Access with TOTP and e-signatures
Login with username + password + 6-digit TOTP, organizational signature seals and time anchors over the outputs.
From ticket to live demo in three steps
Access to the system is invite-only. After verification you receive an access code to the demo instance and a live demo date.
You fill in a ticket
You leave basic details about your organization and area of interest. The system generates a unique ticket reference number PRX-DEMO-XXXX.
We approve access
We verify and approve the request. You receive an access code to the Praetorix demo instance and we propose a demo date.
Live demo (2 h)
We demonstrate coverage of all nine requirements, the outputs for NÚKIB and the multilingual environment on a real scenario — with no obligation.
Request an access ticket
Fill in the form — we will create a registered ticket for you and get back to you within 24 hours with an access code and a demo date.
- No obligation and no cost
- Registered ticket with a reference number
- Personal contact and a date within 24 hours
- Access to the demo instance after approval
Perpetual license for the entire group
A one-off procurement with no recurring license fees. The mandatory G1–G9 core is included; add-on modules are detachable and optional. A detailed price quote is available on request.
What you need to know
Where does the data run and is anything processed via the cloud?+
The solution runs exclusively on-premise, within the client's computing environment. Neither document content nor sensitive data is processed through any external services or language models (LLM). The architecture is designed for critical infrastructure operators.
What about the license — subscription or one-off?+
It is a perpetual (unlimited-term) license for the entire group, procured as a one-off, with no recurring license fees. Only the cost of optional annual maintenance and support is variable. As a result, the TCO is significantly more favourable than with SaaS models.
Which NIS2 / ZKB requirements does the system cover?+
All nine mandatory market-survey requirements — asset registration and management, multi-entity group model, risk register, full risk analysis, Statement of Applicability (SoA), vulnerability import, audit outputs and a complete audit trail. The outputs are usable to demonstrate compliance to NÚKIB.
In which languages is the system available?+
In four localizations — Czech, Slovak, English and Polish. The methodological content and terminology are aligned with the Czech ZKB and NÚKIB requirements.
What does the ticket contain and what happens next?+
After you submit the form, a registered ticket is created with the reference number PRX-DEMO-XXXX. We verify the request, approve access and get back to you within 24 hours with an access code to the demo instance and a proposed date for an approx. 2-hour live demo. No obligation.
Ready to see NIS2 & ZKB compliance live?
Get an access ticket and within 24 hours we will demonstrate the entire solution on a real scenario.
Get an access ticket →