TEOS — Internal Sales Playbook

All tiers at a glance

Know the four tiers before any meeting.

Each tier serves a different audience and deployment model. The price reflects scope, not just size.

Tier	Price	Target	Deployment	Duration
🇪🇬 Egypt Pilot	$5K–$25K	MCIT, ITIDA, TIEC	Cloud (Egypt)	90–180 days
🇦🇪 UAE Pilot	$10K–$50K	AI Office, G42, TDRA	Cloud (UAE)	90–180 days
🇸🇦 Saudi Pilot	$25K–$200K	SDAIA, NEOM, STC	Cloud or On-Prem	90 days–multi-year
Sovereign License	$12K–$18K/yr	Any MENA ministry	Air-gapped On-Prem	Min 3 years

What every client gets — regardless of tier

27Named rules

39Tests passing

24hSLA response

v2.2Engine version

3 rules to always follow in government meetings

Never send pricing in the first email. Build interest first, send pricing only after they ask or after the NDA is signed.
Always offer NDA on first contact. It signals professionalism and opens the door to full technical disclosure.
Always mention UAE active pipeline. It creates urgency for Egypt and Saudi — nobody wants to be last.

🇪🇬 Egypt — MCIT · ITIDA · TIEC · EG-CERT

$5,000 – $25,000

Pilot engagement · 3–6 months · Annual renewal available

Why this price range — know the 3 levels

$5,000 — Minimum viable pilot. 1 department, basic scan enforcement, cloud hosted, 90 days. Perfect entry point for TIEC innovation budget.
$15,000 — Standard pilot. 2–3 departments, full audit trail, Arabic interface, 6 months. Best for ITIDA formal procurement.
$25,000 — Full ministry pilot. All departments, custom rules, EG-CERT compliance reports, 6 months. Propose this to MCIT.

Who to contact and what they care about

MCIT — Ministry of Communications. They fund national AI initiatives. Care about: Egypt AI Strategy alignment, national data sovereignty, Arabic language support.
ITIDA — Technology development agency. They run formal government tech procurement. Care about: procurement framework compatibility, local company preference, compliance documentation.
TIEC — Innovation center with pilot budgets. Care about: emerging tech, fast deployment, innovation narrative. Best for quick first contract.
EG-CERT — Egypt's cyber response team. Care about: threat vectors, attack pattern coverage, audit trail. They will understand TEOS immediately — speak their language.

Your opening pitch — memorize this

Say this in the first meeting or email

"We are offering Egypt a dedicated pre-execution enforcement layer for AI-generated commands — built in Alexandria, aligned with Egypt AI Strategy 2025–2030, and deployable with full data residency inside Egypt. The pilot starts at $5,000 for 90 days, with an NDA on first contact. We are currently in active pipeline discussions with UAE and Saudi counterparts."

Egypt-specific selling points — use these exact phrases

"Built in Alexandria" — Egyptian company, Egyptian infrastructure, local support. This matters to every Egyptian government entity.
"Aligned with Egypt AI Strategy 2025–2030" — use this exact phrase in every email and meeting.
"ITIDA procurement framework compatible" — reduces their internal bureaucratic friction significantly.
"Full Arabic interface, zero additional cost" — this removes one of their most common objections immediately.
"Data stays inside Egypt — always" — no Egyptian government entity can reject this point.

🇦🇪 UAE — AI Office · G42 · TDRA · ADIO · NESA

$10,000 – $50,000

Active Pipeline · 3–6 months · Fastest moving market

UAE is your hottest market. They move fast, pay well, and set the standard for the whole region. A UAE contract opens doors in every other MENA country automatically.

The 3 price levels explained

$10,000 — Single-agency pilot. Abu Dhabi or Dubai, cloud hosted, 90 days, standard NESA compliance reports.
$25,000 — Cross-agency pilot. Multiple UAE entities, custom policy engine for UAE threat environment, NESA + TDRA alignment report.
$50,000 — National infrastructure scale. All AI-generating systems gated through TEOS, dedicated support engineer on retainer, monthly executive report.

Who to contact and what they need

UAE AI Office — Most powerful door. They set national AI policy. Need: UAE AI Strategy 2031 alignment, national enforcement layer, governance framework.
G42 — National AI company building at scale. Need: enforcement for their autonomous systems, integration pathway, enterprise SLA. Contact: partnerships@g42.ai
TDRA — Digital regulatory authority. Need: infrastructure-level enforcement, compliance reporting, audit trail for regulatory oversight.
ADIO — Abu Dhabi Investment Office. They fund AI companies deploying in UAE. This is a grant pathway — not a sale, a partnership.

Your opening pitch for UAE

UAE responds to scale and authority — pitch big

"TEOS Sentinel provides deterministic pre-execution enforcement for AI-generated commands — the missing enforcement layer between AI generation and national infrastructure. We are aligned with UAE AI Strategy 2031, deploy with Abu Dhabi or Dubai data residency, and provide NESA-compliant reporting. Pilot engagement starts at $10,000. We have existing traction in the MENA region and are actively onboarding government partners."

UAE moves fast. Come with a live demo ready, a one-page brief, and NDA ready to sign on the spot. They will want a proof-of-concept within 2 weeks of first meeting. Do not make them wait.

🇸🇦 Saudi Arabia — SDAIA · NEOM · STC · NCA

$25,000 – $200,000

Largest deal potential · Multi-year available · Slowest to close but highest value

The full price range — understand all 4 levels

$25,000 — Single-agency pilot. 1 SDAIA department, cloud hosted, 90 days, NCA compliance report. Entry point.
$50,000 — NEOM pilot. Integration into NEOM autonomous infrastructure, on-premises option, dedicated engineer.
$100,000 — National enforcement layer. Multiple ministries, full on-premises deployment, custom rules, dedicated engineer on retainer.
$200,000 — Vision 2030 infrastructure contract. TEOS as enforcement layer for ALL Saudi AI-native government systems, multi-year, source escrow, quarterly on-site reviews.

Who to contact in Saudi

SDAIA — Saudi Data and AI Authority. THE decision maker for all national AI. They funded the National AI Strategy. Start every Saudi conversation here.
NEOM — $500B smart city building fully autonomous systems. They NEED enforcement. Contact via NEOM Tech & Digital portal.
NCA — National Cybersecurity Authority. They mandate compliance for all government systems. TEOS fits directly in their enforcement framework.
STC — Saudi Telecom Company. National digital infrastructure provider. They run the connectivity layer for government AI systems.

Your opening pitch for Saudi

Saudi respects authority, scale, and sovereignty — use all three

"TEOS Sentinel is the first AI execution enforcement infrastructure built specifically for national and autonomous systems. We provide deterministic kill-switch control over every AI-generated command before it touches production infrastructure — aligned with NCA cybersecurity mandates and Vision 2030 AI sovereignty goals. We offer on-premises deployment with Saudi data center residency, multi-year terms, and full source escrow. Pilot engagement starts at $25,000."

Saudi deals are slow but the largest. Expect 3–6 months from first contact to signed contract. Always come through a warm introduction when possible — relationships (wasta) matter enormously. Never negotiate yourself below 80% of your quoted price.

Any MENA Government — Air-Gapped · On-Premises · Zero External Calls

$12,000 – $18,000 / year

Annual license · Minimum 3-year term · Total minimum commitment: $36,000

The Sovereign License is the most secure deployment. The government owns the instance completely. You deliver the software, they run it forever. No ongoing cloud dependency on you.

What makes Sovereign different — know every feature

Air-gapped — No internet connection required or allowed after installation. Complete isolation from external networks.
Zero external calls — The engine never calls home, never sends telemetry, never checks for updates online. Verified in source code.
On-prem audit storage — All enforcement logs stay on their servers. You cannot access them. They own the full audit trail.
Offline rule packs — New rules delivered physically via secure channel (USB/encrypted drive). Each pack cryptographically signed before installation.
Source escrow — A copy of the full source code held by a neutral third party. If Elmahrosa ever closes, they still have the software forever.
Custom policy engine — Additional rules built specifically for their threat environment. Delivered in the first offline rule pack.

Why $12K–$18K per year — the 3 sub-tiers

$12,000/yr — Standard sovereign. Installation visit, 1-year license, quarterly offline rule pack updates, email support. Min 3 years.
$15,000/yr — Standard + custom rules. Up to 5 custom rules built for their specific threat environment, included in year 1.
$18,000/yr — Full sovereign. Installation, custom rules, on-site quarterly review visit, dedicated support engineer, automatic compliance reporting.

Setup fee is SEPARATE from the annual license: $5,000–$10,000 one-time for the initial installation visit. Always quote this separately so the annual number looks smaller.

When someone asks "can we host it ourselves?" — say this

Perfect response — converts cloud pilots to sovereign contracts

"Yes — that is exactly our Sovereign License. We install the enforcement engine on your infrastructure, fully air-gapped with zero external network calls. You own the data, you own the audit logs, you own the instance. We deliver rule updates via secure offline channel with cryptographic verification. Annual license starts at $12,000, minimum 3-year commitment. Source escrow is included — meaning you hold a copy of the full source code independently of us."

The complete pilot journey

From first email to signed contract — 8 steps.

First contact

Send the outreach email. Subject: "AI Execution Enforcement — Government Pilot Request." Attach a 1-page PDF brief. Offer NDA immediately. Do NOT send pricing in the first email — ever.

Day 0

NDA signed

Once they respond, send the NDA immediately. Standard mutual NDA — they sign, you sign. Now you can share technical details, architecture docs, full pricing, and source code review.

Day 1–7

Technical briefing

Video call or in-person. Show: /health endpoint (27 rules, 39 tests), /scan returning BLOCK 100 on rm -rf /, audit log, Command Center dashboard. Let them run commands themselves. The engine speaks for itself.

Day 7–14

Proof of concept (POC)

Give them free API access to the live Railway engine for 2 weeks. Let their team run real commands from their environment. No commitment needed. This proves value before any money.

Day 14–28

Pilot proposal

Formal proposal document: scope (which departments), duration (90 or 180 days), deliverables (audit reports, compliance output), price, payment terms (50% upfront, 50% at day 90).

Day 28–35

Contract negotiation

They will negotiate. Rules: never below 80% of quoted price. Acceptable: longer payment terms, phased deployment. Charge extra for: custom rules, additional departments, on-site visits.

Day 35–60

Pilot live

Deploy dedicated Railway instance. Give them: API endpoint, Telegram bot access, Command Center, weekly audit report PDF. Check in every 2 weeks. Fix anything within 24 hours.

Day 60–150

Pilot review and renewal

At 90 days: present report showing scans run, BLOCKs fired, threats prevented. Propose annual contract or Sovereign License upgrade. Small pilots become large contracts here.

Day 90–150

What you install and how

Two components. Two deployment models.

Cloud installation — Egypt, UAE, standard pilots (2–4 hours)

Go to railway.app → New Project → Deploy from GitHub → select agent-code-risk-mcp → branch: engine-v2-hardening
Set env vars: NODE_ENV=production, PORT=8080. Railway auto-assigns a public URL.
Verify /health endpoint: must return rules:27, tests:39, status:ok. If not, redeploy.
Give client: API URL, ADMIN_SECRET for their team, Telegram bot access, Command Center URL.
Total setup time: 2–4 hours including verification and client onboarding call.

On-premises installation — Saudi, Sovereign (half-day on-site)

git clone the engine-v2-hardening branch to their server
npm install → npm run build → creates dist/server.js
pm2 start dist/server.js --name teos-engine
pm2 save + pm2 startup → auto-restart on server reboot
Configure their firewall: allow port 8080 internal only. Block all external traffic.
curl http://localhost:8080/health → verify 27 rules, 39 tests, status ok
Run all 39 tests in front of their technical team. All green. Sign acceptance certificate.

Minimum server specs for on-prem

CPU

2 cores min (4 recommended)

RAM

2GB min (4GB recommended)

Storage

10GB min (1 year logs)

Ubuntu 20.04+ / Linux

Node.js

v20 LTS

Network

Internal only (air-gap)

Objections and answers

Every objection you will hear — and exactly what to say.

Memorize these. Tap each one to reveal the answer.

It is too expensive.›

Your answer:Compare this to the cost of one security incident caused by an AI agent executing a destructive command on production infrastructure. One incident costs more than a 3-year pilot contract. We also offer a $5,000 entry point specifically so you can validate value before a larger commitment.

We do not know your company.›

Your answer:We are Elmahrosa International, founded in Alexandria, Egypt, accepted to Consensus Hong Kong 2026 and Consensus Miami 2026 — the leading global technology governance forums. Our GitHub is fully public, our engine is open to technical review, and we offer NDA and source code review before any financial commitment. We also offer a 2-week free POC — no risk at all.

We cannot send data outside our country.›

Your answer:That is exactly why we built the Sovereign License. Air-gapped, on-premises deployment inside your data center. Zero external network calls. All audit logs stay on your servers. Nothing leaves your country. This is a core design requirement, not an afterthought.

Is there an open source alternative?›

Your answer:No open source pre-execution enforcement engine exists for AI agent environments. Open source tools like Semgrep, Snyk, and Trivy are post-commit scanners — they evaluate code in repositories, not commands at runtime. TEOS blocks at the point of execution. That gap does not exist in open source.

Why not use AI to detect threats instead?›

Your answer:AI-based detection is probabilistic — the same input can produce different verdicts. For government enforcement, you need determinism: same input always produces same verdict, auditable and legally defensible. Our 27 named rules operate on fixed logic. That is why governments use deterministic firewalls, not AI, for security enforcement.

We do not use AI agents yet.›

Your answer:You will — and soon. Every MENA government is deploying AI under their national AI strategy in the next 24 months. The question is not whether you will need enforcement. It is whether you have enforcement ready before the first incident. A 90-day pilot now costs $5,000–$25,000. A security incident after deployment costs millions.

Show us proof it actually works.›

Your answer:We can give you live API access to our production engine right now — no signup, no commitment. Send any command to our /scan endpoint and see the deterministic verdict in under 200ms. Our /health endpoint shows 27 rules, 39 passing tests, and live uptime. We will run a full live demo in your environment during the technical briefing.

We need to go through a formal tender process.›

Your answer:We fully support that. We are ITIDA procurement framework compatible in Egypt and can provide all documentation for formal tender: technical specification, security assessment, vendor profile, pricing breakdown, and compliance references. We can also structure the pilot as an innovation grant engagement, which often bypasses the full tender process in MENA jurisdictions.

What happens if your company closes?›

Your answer:Two protections. First: the Sovereign License includes source escrow — a copy of the full source code held independently so you can continue operating forever. Second: the engine is built on Node.js with zero proprietary dependencies. Any competent developer can maintain it. We designed it this way deliberately so governments are never dependent on us.

Can it handle millions of requests at national scale?›

Your answer:The current deployment handles thousands of scans per day. For national scale, we deploy multiple instances behind a load balancer on your infrastructure. The engine is stateless — each scan request is independent — so horizontal scaling is straightforward. We architect the multi-node deployment for your specific volume requirements during the technical scoping session.

Everything you need before any government meeting.

Know the four tiers before any meeting.

From first email to signed contract — 8 steps.

Two components. Two deployment models.

Every objection you will hear — and exactly what to say.