Enter Scan Cost Inputs
The layout stays single column overall, while the form uses three columns on large screens, two on smaller screens, and one on mobile.
Example Data Table
| Scenario | Primary Assets | Web Apps | Containers | Scans/Month | Depth | Compliance | Recurring Monthly | First Month |
|---|---|---|---|---|---|---|---|---|
| Mid-size hosted platform | 35 | 6 | 40 | 4 | Standard | PCI DSS | $2,143.13 | $2,593.13 |
| Heavy compliance estate | 80 | 12 | 120 | 8 | Deep | HIPAA | $8,762.44 | $9,662.44 |
| Lean startup stack | 12 | 2 | 18 | 2 | Light | None | $638.14 | $938.14 |
These example rows are illustrative planning references. Your live result depends on the form values you submit above.
Formula Used
1) Weighted asset units
Weighted Assets = Primary Assets + 0.60(Public IPs) + 1.40(Web Apps) + 0.30(Containers) + 0.50(Internal Nodes)
2) Authenticated multiplier
Authenticated Multiplier = 1 + (Authenticated Coverage / 100 × 0.25)
3) Scan execution cost
Execution Cost = Weighted Assets × Scans per Month × Base Cost per Asset × Depth Multiplier × Authenticated Multiplier
4) Retest cost
Retest Cost = Weighted Assets × Base Cost per Asset × Depth Multiplier × 0.30 × Retests per Month
5) Labor cost
Labor Cost = (Reporting Hours + False-Positive Review Hours) × Analyst Rate
6) Recurring monthly total
Recurring Monthly = Operational Monthly + Compliance Cost + Rush Cost - Discount
7) First month and annual totals
First Month = Recurring Monthly + Setup Fee
Annual Total = (Recurring Monthly × 12) + Setup Fee
How to Use This Calculator
- Enter the number of cloud assets, exposed endpoints, web applications, containers, and internal nodes.
- Set how often scans run each month and define your base cost per asset per scan.
- Choose the scan depth that best matches your intended coverage.
- Enter authenticated coverage, retest frequency, reporting hours, and false-positive review effort.
- Add your hourly analyst rate, one-time setup fee, compliance profile, and turnaround level.
- Apply any contract discount to model negotiated recurring pricing.
- Press Calculate Cost to display the result above the form.
- Use the CSV and PDF buttons to export the generated summary.
FAQs
1) What does this calculator estimate?
It estimates scan execution, retests, analyst labor, compliance overhead, rush uplift, one-time setup, recurring monthly spend, and annual total for hosted environments.
2) Why are assets weighted differently?
Different asset types create different review effort. Web applications often need deeper validation, while containers usually scan faster, so the calculator applies practical planning weights.
3) What is authenticated coverage?
Authenticated coverage is the share of systems scanned with credentials. It often improves finding quality, but it can increase setup, validation, and reporting effort.
4) Should I include retests?
Yes, when your provider bills for verification after remediation. Retests are common in compliance-driven programs and in faster release environments with frequent fixes.
5) Does the setup fee repeat every month?
No. The setup fee affects only the first month and annual total. Recurring monthly cost excludes setup so you can compare ongoing service pricing clearly.
6) Can I use this for vendor comparison?
Yes. Enter each vendor’s unit pricing, labor rate, compliance uplift, and turnaround profile. The recurring and annual outputs help compare proposals on a common basis.
7) Does this replace a formal quote?
No. It is a planning model. Final quotes may differ because of asset criticality, exclusions, tuning quality, remediation support, licensing terms, and service-level commitments.
8) When should I choose deep or aggressive scans?
Choose deeper profiles when you expect stricter validation, more authenticated checks, or heavier regulatory reporting. Light profiles fit simpler estates or early budgeting exercises.