No per-resource fees. No overage charges. No surprise bills. Pick the tier that fits where you are today — and upgrade as you grow.
Cloud security monitoring with self-service reporting. Detect threats and track posture without the managed layer.
Managed security with daily posture checks, compliance scorecards, and analyst-led triage during business hours.
Full-service managed security with 24/7 coverage, analyst-led remediation, and a dedicated Solution Architect.
Xigilant's Compliance and Managed tiers include real humans reviewing, triaging, and remediating findings on your behalf.
Automated threat detection, vulnerability triage, and Xigilant Posture Checks running around the clock — no human intervention needed.
Xigilant analysts review, triage, and suppress false positives before findings reach you. Critical issues are escalated immediately. Business hours or 24/7 depending on tier.
A dedicated SA helps you implement security at the architecture level — patch management, SCP design, account vending, landing zones, and security baselines.
Security isn't just about monitoring — it's about building the right foundation. Your SA works alongside your engineering team to implement security at the architecture level, not just the tooling layer.
Talk to us about Managed| Feature | Posture | Compliance | Managed |
|---|---|---|---|
| Monitoring & Detection | |||
| Threat detection | |||
| Vulnerability triage | |||
| Finding aggregation | |||
| Xigilant Posture Checks | Weekly | Daily | Continuous |
| Multi-region coverage | |||
| Cloud accounts | 1 | Up to 3 | Up to 10 |
| Data retention | 30 days | 90 days | 1 year |
| Compliance | |||
| SOC 2 scorecard | |||
| PCI-DSS scorecard | |||
| CIS Benchmark | |||
| HIPAA controls | |||
| NIST CSF | |||
| Control ID mapping | |||
| Audit evidence package | |||
| Managed Security | |||
| Analyst monitoring | Business hours | 24/7 | |
| Response SLA | 4 hours | 1 hour | |
| Finding triage | |||
| False positive suppression | |||
| Analyst-led remediation | |||
| Critical escalation | |||
| Solution Architecture | |||
| Dedicated Solution Architect | |||
| Security architecture review | |||
| Patch management guidance | |||
| SCP design & implementation | |||
| Account vending / landing zone | |||
| Security baseline design | |||
| Reporting & Alerts | |||
| Monthly posture report | |||
| Email alerts | |||
| Slack alerts | |||
| Quarterly compliance review | |||
| Monthly executive report | |||
| Custom report cadence | |||
Under 30 minutes. Grant Xigilant read-only access via a scoped role, and we handle the rest — enabling monitoring, running the first posture check baseline, and activating your portal.
No. We use cloud-native tools and a read-only cross-account role. No agents are installed, no code changes are needed, and we never have write access to your environment.
On Compliance and Managed tiers, Xigilant analysts actively monitor your environment, triage findings, suppress false positives, and escalate critical issues — during business hours on Compliance, and 24/7 on Managed. You're not left to interpret alerts alone.
Your dedicated SA is a senior security engineer who works alongside your team to implement security at the architecture level. This includes patch management strategy, SCP design, account vending structures, landing zone setup, and security baseline design — not just monitoring.
Yes. All tiers are billed monthly with no lock-in. You can upgrade at any time and your historical data, findings, and compliance history carry over.
We currently support AWS, with GCP and Azure support on the roadmap. Multi-region coverage is included on Compliance and Managed tiers.
Book a 30-minute call. We'll walk through your cloud setup and recommend the right plan — no pressure.
Talk to us