Team
$17,868 / 12 months
~$1,489 / month equivalent
- TARA workflow (STRIDE + 5 automotive)
- 3 projects (Starter scope)
- Email support (48h response)
- ISO 21434 work-product templates
- EDP burndown eligible
Listed on AWS Marketplace under VxLabs GmbH
ThreatZ on AWS Marketplace — procure CSMS via your AWS account
Procure ThreatZ through the AWS Marketplace listing for EDP-eligible billing, pre-vetted contract terms, and fast vendor onboarding. The Marketplace handles billing and contracting only — every ThreatZ tenant deploys to your private cloud or on-premise environment, with your data plane under your control.
EDP / spend-commit eligible
Pre-vetted AWS CLUA contract
Vendor already onboarded as AWS
Private cloud or on-premise deployment
Same ThreatZ, two deployment modes: AWS Marketplace for authoring and pilots, private cloud or on-premise wherever vehicle data lives.
Available on AWS Marketplace
Two AWS Marketplace tiers — plus direct Enterprise programs
Team and Pro are sold through AWS Marketplace under VxLabs GmbH. Enterprise programs — private cloud, on-premise, air-gapped, custom SLAs, unlimited projects — are sold direct.
Professional
$31,680 / 12 months
~$2,640 / month, 5–15 users
- All 8 workflows + Architecture Mapping Studio
- 10 projects, 5–15 users
- Email + chat support (24h response)
- Dedicated customer success manager
- EDP burndown eligible
Enterprise
Custom
Private cloud / on-prem / air-gapped
- Unlimited projects + unlimited users
- Private cloud / on-premise / air-gapped
- 24/7 premium support, 4h response
- Dedicated account team + custom SLAs
- China-resident deployment for GB 44495
12-month contract on AWS Marketplace; 3-day refund window for minimal-usage cancellations. AWS Private Offers available for negotiated pricing, multi-year terms, or custom support — contact us to scope.
For procurement teams
Four concrete reasons procurement prefers AWS Marketplace
Each one collapses a procurement cycle from months to days.
EDP / spend-commit burndown
F500 OEMs and Tier-1s sit on multi-year AWS Enterprise Discount Programs. 100% of Marketplace purchases count against that committed spend. For a $32K Pro plan, this is the single biggest unlock — you're spending money you've already paid for. Shortcuts the "new vendor" budget fight.
Pre-vetted AWS CLUA contract
AWS Marketplace SaaS contracts use AWS's standard CLUA, which most enterprise legal teams have already redlined once. Skipping a 6–12 week MSA / DPA / InfoSec review on a $32K SKU is enormous — legal won't even open the file under the materiality threshold.
Vendor onboarding bypass
Creating a new supplier at a VW / Stellantis / Bosch is a 3–6 month process: tax forms, sanctions screening, ESG questionnaire, cyber-supplier audit, banking setup. AWS is already an approved supplier; ThreatZ rides that rail. Invoice from AWS, not from VxLabs GmbH.
Procurement-mandated channel
Several large OEMs — including Ford, GM, Stellantis IT, and increasingly BMW / Mercedes cloud-procurement teams — have an internal rule: if it's on AWS Marketplace under $X, it MUST be bought there. Not optional. Selling outside the channel triggers an exception request.
The deployment stays sovereign
AWS handles billing. ThreatZ deploys to your tenant.
AWS Marketplace classifies any subscription not sold as a downloadable AMI under the "SaaS" billing category — that is AWS's procurement taxonomy, not our deployment topology. ThreatZ tenants deploy to your environment.
What lives on AWS: the Marketplace listing, the 12-month contract, the EDP burndown record, the AWS-generated invoice, and AWS's vendor-of-record relationship with you.
What does NOT live on AWS's multi-tenant cloud: your vehicle data, your ARXML, your MATLAB System Composer models, your TARA work products, your ECU bindings, your incident telemetry, your CIA / DIA evidence. All of that stays in your private cloud, your on-premise environment, or your air-gapped deployment — same as for any Enterprise customer.
This holds the sovereignty pillar that OEM and Tier-1 cybersecurity programs require. The OEM SVP Engineering who vetoes multi-tenant cloud for vehicle data is not blocked by the AWS Marketplace listing — because vehicle data never enters AWS's multi-tenant cloud through ThreatZ.
Procurement FAQ
Six questions procurement teams ask before clicking through
Is ThreatZ available on AWS Marketplace?
Yes. ThreatZ is listed on AWS Marketplace under VxLabs GmbH as a 12-month subscription. The Team Plan ($17,868/yr) covers TARA and 3 projects; the Professional Plan ($31,680/yr) covers all 8 workflows with 5–15 users. Enterprise programs with private cloud, on-premise, or air-gapped deployment are sold direct — not on the Marketplace.
AWS classifies the listing as "SaaS." Does that mean ThreatZ runs in AWS's multi-tenant cloud?
No. AWS Marketplace uses "SaaS" as the billing-model category for any subscription not sold as a downloadable AMI — it is AWS's procurement taxonomy, not our deployment topology. Same ThreatZ, two deployment modes: AWS Marketplace for authoring and pilots, private cloud or on-premise wherever vehicle data lives. ThreatZ tenants deploy to your environment; vehicle data, ARXML, MATLAB models, and incident telemetry never enter AWS's multi-tenant cloud.
Why would an OEM or Tier-1 procurement team prefer AWS Marketplace?
Four concrete reasons: (1) AWS Enterprise Discount Program burndown — 100% of Marketplace purchases count against existing AWS spend commitments. (2) Pre-negotiated contract — AWS Marketplace uses AWS's standard CLUA, which most enterprise legal teams have already approved. (3) Vendor onboarding bypass — AWS is already an approved supplier at most F500 automotive buyers; invoice comes from AWS. (4) Procurement-mandated channel — several large OEMs require AWS Marketplace as the preferred channel for software under a contract-value threshold.
Is there a free trial?
Not on AWS Marketplace. The lower-commitment evaluation path is the TARA Pilot — a 6–8 week fixed-fee scoped engagement on one ECU or system. The pilot produces an ISO 21434-aligned risk assessment, a reusable CSMS workflow, and audit-ready reports. Many customers use the pilot as evaluation before choosing a procurement channel.
Can I purchase via a Private Offer for custom pricing or longer terms?
Yes. AWS Marketplace Private Offers are available for negotiated pricing, multi-year terms, or custom support tiers. Contact us to scope a Private Offer; AWS will then route the offer through the same EDP-eligible billing rail.
What's the contract length and refund policy on AWS Marketplace?
The standard listing is a 12-month contract with a 3-day refund window for minimal-usage cancellations. For longer-term commitments, multi-year discounts, or evaluation engagements with success-criteria milestones, contact us about a Private Offer or the TARA Pilot path.
Two paths to ThreatZ. Same product. Same standards coverage.
Procure the Team or Professional plan through AWS Marketplace for the fast procurement rail — or talk to us about Enterprise deployment with private cloud, on-premise, or air-gapped tenancy. Both paths run the same 8-workflow platform with ISO 21434, R155, GB 44495, and EU CRA coverage.
Same ThreatZ, two deployment modes: AWS Marketplace for authoring and pilots, private cloud or on-premise wherever vehicle data lives. Mutual NDA available; not required for the initial scoping call.