Question 1

Does Secfix support BSI Grundschutz?

Accepted Answer

No. Secfix focuses on ISO 27001, SOC 2, TISAX, and NIS2 and does not include BSI Grundschutz in its framework library. For German organisations with Grundschutz obligations, particularly those in or supplying to the public sector. KaitoSec is a more suitable choice.

Question 2

How does KaitoSec's TISAX support compare to Secfix?

Accepted Answer

Both platforms support TISAX compliance workflows. Secfix has deep TISAX expertise and a strong track record in the automotive sector. KaitoSec supports TISAX as part of its multi-framework approach, with the added benefit of automatic cross-mapping to ISO 27001 and other active frameworks, reducing control duplication.

Question 3

Is on-premise deployment important for compliance?

Accepted Answer

For many German organisations, especially those in regulated industries, healthcare, defence supply chains, or operating under strict IT security policies, the ability to run compliance tooling on their own infrastructure is a hard requirement. Cloud-only tools like Secfix do not qualify for these use cases.

Question 4

What does 'consulting included' actually mean with KaitoSec?

Accepted Answer

KaitoSec engagements include German-speaking security advisors who work with your team on control implementation, audit preparation, and evidence collection, not just software access. This replaces the need for a separate consulting firm, which can cost €15,000–€50,000 for an ISO 27001 project. With Secfix, you get the software; the consulting is a separate cost.

Question 5

Is Secfix CISO-as-a-Service the same as a structured advisory mandate?

Accepted Answer

No. CISO-as-a-Service in Secfix is a continuous monitoring and support layer attached to the platform subscription. KaitoSec sells advisory as a separate mandate with named scope: gap analysis, implementation companion, mock audit, vCISO retainer, management review. You know what you signed for and what gets handed back to your team.

Question 6

How transparent is Secfix's pricing compared to KaitoSec?

Accepted Answer

Secfix does not publish list prices. Market estimates put the starter tier around €500/month and growth around €500 to €800/month, but you only confirm the number after a sales call. KaitoSec publishes Standard from €199/month and Professional from €499/month before you ever speak to us.

KaitoSec vs Secfix

BSI Grundschutz. A Critical Gap in Secfix

Deeper NIS2 Implementation

On-Premise Deployment and Advisory Services

Structured Advisory, Not a Monitoring Add-On

Built for Operation, Not Just Time-to-Certificate

Where Secfix wins

Established Customer Base and TISAX Expertise

Strong Content Marketing and Community

FAQ

Product

Frameworks

Solutions

Services

Resources

Company

Legal