Reviews from AWS Marketplace
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
External reviews are not included in the AWS star rating for the product.
Happy We Chose Secureframe
What do you like best about the product?
If you're reading this review, then you're in the same place I was only a few weeks back. Once you've decided to go with the "automated" route, to complete your compliance requirements, the job then becomes…what company do I chose? Well, we narrowed our search down to 3 top tier providers and met with each company, compared their capabilities, and read reviews from MANY different sources, including this one. Based on pricing, integration, capabilities, and a very impressive presentation by Khang, who emphasized their customer support, we decided to proceed with Secureframe. While we’ve just started the process, I must say, I am thoroughly impressed with Secureframe’s customer support, their knowledge and response time has been top notch!! This process can feel overwhelming but with Secureframe’s simplified approach, along with their customer support, you are truly never alone, there’s always someone ready to help you and it’s NOT a chatbot.
What do you dislike about the product?
I wouldn't say this is a "dislike" but more of a suggestion. It would be great to have a chart of some kind or a comprehensive list (word doc or excel) listing all tasks, how they connect to each other, requirements for each task/policy, and resources (in case you don't have a provider for the required task...such as employee background check). At first glance, as you start reading through the tasks and/or controls, it's quite overwhelming, especially as you read through each task and/or policies and realize you need to implement a LOT more than what you thought. With that being said, one thing Secureframe ALSO provides, is the ability to speak directly with a Compliance Manager to help you through the process, which I've already taken advantage of by scheduling a call.
What problems is the product solving and how is that benefiting you?
We need to complete a SOC 2 compliance readiness assessment and audit
- Leave a Comment |
- Mark review as helpful
SecureFrame takes the worry out of SOC audits and vendor management.
What do you like best about the product?
SecureFrame's automated questionnaire response is very user friendly and the instructions and support features are easy to understand and follow.
What do you dislike about the product?
As with any system such as this, the setup time is always going to be labor intesive. Once it gets up and running, it should be less time and labor intensive.
What problems is the product solving and how is that benefiting you?
SOC 2 audits can take months to prepare for and to perform as well. We are looking to cut man hours and increase our ROI.
The easiest and fastest path to SOC2 compliance!
What do you like best about the product?
The support for third-party integrations is incredibly comprehensive and easy to use. The detailed documentation, tutorials, guidance, and the dashboard for finding and resolving out-of-compliance issues.
What do you dislike about the product?
I wish they still offered customer support via Slack but their email responses are fast and helpful.
What problems is the product solving and how is that benefiting you?
Many of our clients require SOC2 compliance in order to use our platform. I've been through SOC2 readiness and compliance audits in the past with other organization but the process had always been painful and extremely time-consuming. Secureframe eliminated 95% of those headaches. They have managed to pull together all the resources one needs to understand the compliance process, provided easy-to-modify templates for compliance documentation, implemented easy vendor integrations to help identify potential compliance problems, and they give speedy customer service for when we've had questions. If you need help with the process, Secureframe is the only solution I will recommend!
Secureframe was key in guiding us through the process of certification.
What do you like best about the product?
The online management tools helped us keep track of literally thousands of items we needed to address for our certification. It was great for our team to be able to log in, assign items to individuals, and keep track of our progress as we worked through those.
What do you dislike about the product?
Some of the technical "connectors" didn't work properly with our system, meaning we weren't certain if implementation was done properly or not.
What problems is the product solving and how is that benefiting you?
Secureframe helped us with our certification and that was super important. It helped us position ourseves better in the Enterprise software space, which opened up new doors for us in terms of customers and how deeply engaged we are with our offering.
well-rounded automated compliance solution
What do you like best about the product?
Easy to use, great guidance and in some situations even AI to help you pass the controls. Integrations with existing tools that automatically gather evidence for SOC2 and ISO27001 certifications
What do you dislike about the product?
Some tests and AI suggestions are still fuzzy.
What problems is the product solving and how is that benefiting you?
Secureframe helps in closing the gap and get us SOC2 and ISO27001 certified.
Very useful for a small business
What do you like best about the product?
Secureframe's structured and collaborative approach has been super helpful for our company, which doesn't have any one person sitting in an operations or compliance role. By inviting the people who oversee tech, finance, HR, legal, etc. to use the system directly, we can get all the policies we need in place without needing extra overhead.
The integrations with our existing systems, eg Microsoft 365 and Github, have also been a major efficiency gain. One of the things we've found most arduous about audit prep has been bringing all of the information and evidence into one repository review. Secureframe makes that easy by checking systems configs itself, and telling you what checks have passed or failed.
Secureframe has also helped us overcome a frustrating little challenge we faced as a small business: recording that policies had been read/accepted, and that training had been attended. Now we can manage this training for all employees on an annual basis.
The integrations with our existing systems, eg Microsoft 365 and Github, have also been a major efficiency gain. One of the things we've found most arduous about audit prep has been bringing all of the information and evidence into one repository review. Secureframe makes that easy by checking systems configs itself, and telling you what checks have passed or failed.
Secureframe has also helped us overcome a frustrating little challenge we faced as a small business: recording that policies had been read/accepted, and that training had been attended. Now we can manage this training for all employees on an annual basis.
What do you dislike about the product?
There is a section that allows you to add key information that comes up in vendor due dilligence questionnaires, and Secureframe will help try to answer these questionnaires for you using machine learning. The UX here is a little confusing, and we haven't been able to get it to work correctly. A colleague of mine spent a whole day manually entering questions and answers into the Knowledge Base section, because he didn't see that it was possible to upload previously completed questionnaires (in CSV or Excel format). Now we're afraid to upload the questionnaires, because we aren't sure what's going to happen to his manually entered work.
What problems is the product solving and how is that benefiting you?
As a B2B SaaS company that sells to banks and other financial institutions, being able to demonstrate ISO27k/SOC2 compliance would simplify our sales process. However, getting prepared for the audit and certification is arduous, and we are a small company. Secureframe does all the heavy lifting around getting organised, putting key policies in place, and helping us live them – which will make it easier to eventually get certified.
One stop for Certification
What do you like best about the product?
Secureframe is one stop when it comes to PCI , SOC2, ISO 27001 2013, GDPR and all other certifications. In one platform you have all the tests which are needed for your company yo be certified.
What do you dislike about the product?
There is nothing so far that I dislike about Secureframe.
What problems is the product solving and how is that benefiting you?
Speeding up the proces of getting Compliant for 6 frameworks at the same time. It saves us a lot of time and effort needed if we were doing it without Secureframe platform.
GREAT Support. Easy to Manage, Proven Docs and Real-Time Progress
What do you like best about the product?
SecureFrame allows for assignments to each team member to segment the work and allow for ease of accountability. The document templates and examples provided were a huge efficiency and help to the team. I really enjoyed that it showed progress as things got checked off. That feature provided for added momentum. Lastly, their support was WAY BETTER than other tech companies. Brandon met with us whenever we asked and would help us navigate the platform or better understand expectations of SOC2.
What do you dislike about the product?
It take a while for integrations to update, especially larger ones like AWS.
What problems is the product solving and how is that benefiting you?
We needed SOC2 compliance quickly and their platform allowed us to organize the data, create documents, and see deficiencies at lightning speed.
Simplicity with above and beyond support.
What do you like best about the product?
The support from the Secureframe team is beyond amazing. Everyone is knowledgeable professional and patient. The system is easy to use and connect to other systems. MY CSM Coletta has done a fantastic job and has been an absolute pleasure to work with.
What do you dislike about the product?
The ability to edit and undo some of the changes I make in the system is missing. Although the team is quick to respond and make any adjustments. I wish I could just undo some of the changes myself such as editing an employee's email address.
What problems is the product solving and how is that benefiting you?
Secureframe has provided a simple centralized solution for meeting security standards and has outlined all the required materials needed to achieve security certifications.
Robust SOC 2 Compliance Tool
What do you like best about the product?
We liked that all the Controls and Tests for SOC 2 were automatically imported for us, all we had to do was add in the supporting evidence. In addition many of the items automatically pass or fail based on the integrations you setup with key resources and vendors, such as Microsoft Azure, Azure DevOps, Office 365, LastPass, Slack and many more. This really simplifies the auditing for SOC 2. Many of the items include detailed descriptoipns, templates and exmaples of what is required making it easy if you are starting out on your journey to SOC 2 compliance.
The Policies function is easy to publish policies and track employee acknowledgement. The built in policy editor is maybe a little weak in terms of formatting options for example there is no way to add a table to a policy.
The Vendors area is a great place to add all the vendors we use along with bieng able to classify them and tag them with overall risk level. In addition you can add on supplemental documentation, assessments, or reports as needed.
The SecureFrame Agent is useful for traking assets and checking basic complicance with high level security settings, and makes it easy to ensure everything is as it should be.
Online support was exceelent, very fast through the online chat. Paul the support agent was very professional and answered my question right away pointing me in the right direction. 5 stars.
The Policies function is easy to publish policies and track employee acknowledgement. The built in policy editor is maybe a little weak in terms of formatting options for example there is no way to add a table to a policy.
The Vendors area is a great place to add all the vendors we use along with bieng able to classify them and tag them with overall risk level. In addition you can add on supplemental documentation, assessments, or reports as needed.
The SecureFrame Agent is useful for traking assets and checking basic complicance with high level security settings, and makes it easy to ensure everything is as it should be.
Online support was exceelent, very fast through the online chat. Paul the support agent was very professional and answered my question right away pointing me in the right direction. 5 stars.
What do you dislike about the product?
On the whole not much, as mentioned earlier the in app policy editor is very basic, it would be nicer to have some more formatting options. This could also help when adding in Descriptions or comments on items.
The dashboard is OK, it's quite basic and I'd like to be able to drill in more on metrics about outstanding items and who they are assigned to so I can see who to chase easily.
The dashboard is OK, it's quite basic and I'd like to be able to drill in more on metrics about outstanding items and who they are assigned to so I can see who to chase easily.
What problems is the product solving and how is that benefiting you?
SOC 2 Compliance is our current focus, although we may elect to add in additional frameworks down the road. Having one singular interface to manage all the controls, tests, policies, vendrs and evidence is critical to sucessful audits.
showing 121 - 130