Pilatum IT Security Services GmbH is a Swiss cybersecurity service provider. Its website positions the company as โYour Pentest, Security Orchestra, Sec-Ops Partner.โ Its services are split into COR SEC, which focuses more on management and security operations, and T HACK TICAL, which focuses more on technical offensive/defensive auditing. Together, the two teams provide training, purple teaming, incident response, threat hunting, and security research.
In terms of protection areas, Pilatum covers security operations process design, MSSP assessment, SOC use-case development, business continuity, security management and compliance controls, maritime cyber risk assessment, as well as Web application testing, Android mobile application testing, network security assessment, code review, and architecture review. For technical audits, it mentions methodologies such as OSSTMM, OWASP WSTG, and OWASP MSTG. On the operations side, it focuses on detection, triage, containment, post-incident review, and SOAR/IRP orchestration capabilities. Its integration capabilities are mainly reflected in evaluating third-party services such as SOC as a Service, EDR, and log management, while enhancing response automation around IRP/SOAR platforms.
The official website does not disclose pricing models, project quotes, delivery timelines, or SLAs. This makes it look more like a customized consulting and assessment service, with pricing available by scope. Its delivery model is not presented as a standardized software product; instead, it mainly relies on consultant-led delivery, audits, process design, detection use-case development, and support for platform orchestration.
The main strengths are its broad service coverage, spanning governance, compliance, SOC operations, and offensive security testing. It also emphasizes vendor neutrality, making it suitable for enterprises that want an independent assessment before choosing an MSSP or security platform. The drawbacks are limited public information: there is little detail on team size, customer cases, certifications, sample reports, service levels, or pricing. Mobile auditing is explicitly listed only for Android, with no visible mention of iOS.
Pilatum is better suited to mid-sized and large enterprises that already have a certain level of IT and security maturity and need to improve SOC detection and response, conduct penetration testing or code audits, handle security incidents, or meet ISO 27001, GDPR, PCI-DSS, or maritime IMO requirements. For customers who simply want to buy standardized security tools or low-cost scanning services, its level of transparency and self-service availability may be insufficient.
Access from mainland China cannot be determined from the main website content, and payment methods are not disclosed. If procuring Swiss local project services, customers should further confirm requirements around remote delivery, language, time zones, contracts, and cross-border data processing. Domestic alternatives in China may include ๅฅๅฎไฟก, ็ปฟ็็งๆ, ๅฏๆๆ่พฐ, and ๅฎๆไฟกๆฏ. Internationally, it can be compared with NCC Group, Bishop Fox, Mandiant, and Orange Cyberdefense.
โ This review is compiled from public sources and does not constitute a purchase recommendation. Verify all facts on the vendor's official site. Verify on coth-its.ch official site.
coth-its.ch is an Switzerland Cybersecurity provider. TG4G tracks its product information, an overall rating of 6.0/10, and a China-accessibility score of Limited (proxy recommended). Click "Visit Official Site" to reach coth-its.ch directly.