Fix and govern your cloud.
Priced by what you protect.

ops0 is a preventive cloud security platform. Discover your cloud, score the risk, fix it as infrastructure as code, and stop the next misconfiguration before it ships.

Save 10%on a yearly subscription

You pay for governed resources, not deploys. Deployments are always unlimited.

Free

$0/ Month

Start finding risk today

1
Cloud account
250
Governed resources
check
Cloud discovery with 3 security scan engines
check
Resource graph with risk scoring
check
A to F account risk grade
check
Remediation as code
check
Drift detection
check
1 compliance framework
check
ops0 CLI and unlimited deployments
check
GitHub/GitLab integration
check
Community support

Pro

Popular
$449/ Month

For growing teams

5
Cloud accounts
1,500
Governed resources
check
Everything in Free
check
Design-time policy enforcement
check
Vulnerability scanning (Checkov)
check
Drift remediation and import to IaC
check
Security-validated IaC blueprints
check
Variables and secrets, injected at deploy
check
Config management (Ansible, Helm, kubectl)
check
2 compliance frameworks
check
Email support

Business

$949/ Month

For mid-size teams

12
Cloud accounts
5,000
Governed resources
check
Everything in Pro
check
Infra Query Console (Oxid): dependencies and blast radius
check
K8s security scanning and cost analytics
check
Cross-cloud IaC transformation
check
External secret vaults and secret access audit
check
Shareable compliance and security reports (PDF)
check
4 compliance frameworks
check
SSO (SAML/OIDC), advanced RBAC, audit logs
check
Budget control
check
Email and Slack support

Enterprise

Custom

For complex cloud estates and regulated platform teams

Unlimited
Cloud accounts
Custom
Governed resources
check
Everything in Business
check
All 6 compliance frameworks (137 policies)
check
Managed governance service
check
Managed continuous monitoring by the ops0 team
check
Onboarding and migration
check
Self-hosted and air-gapped deployment
check
White-label deployment
check
Dedicated success engineer
check
99.9% uptime SLA guarantee
check
Volume discounts and custom contracts

The fine print that keeps us honest

What counts as a governed resource: A billable cloud resource ops0 discovers and manages: compute, storage, databases, networking, and identity primitives. Tags and individual rules are not counted. Deployments are never metered. If you grow past your plan's limit, we ask you to upgrade; resources you already govern are never dropped.

Compliance frameworks: SOC 2 Type II, CIS Benchmarks, ISO 27001:2022, ISO 27002:2022, HIPAA, and GDPR are standards ops0 evaluates your infrastructure against. They are not certifications held by ops0.

ops0's own posture: ops0 is SOC 2 Type II compliant.