375 Secureframe Reviews
Overall Review Sentiment for Secureframe
Log in to view review sentiment.
We used Secureframe for our SOC2 certification process, and the platform had the capabilities of getting automatic details through its many integrations, thus reducing the need for much of the manual tasks.
Support from the team was also great to ensure that we were given attendtion when needed and helped on doubts.
The platform was easy to use and did not have many requirements in terms of implementation, as it was a quick portal login. Review collected by and hosted on G2.com.
There are challanges in terms of available integrations especially when considering that there could be custom appalications and features within that would need more details for certain tests to pass.
While the platform is great for all the tracking and automation, at times there is a necessity of having that full-time support or hand-holding for certain things, which is missing.
Default policies and procedure documents are made available, and there are only minimal changes required for the organization to pass those, while the implementation could be wholly different or nonexistent; there is no feature or checks to ensure that things are followed as described. Review collected by and hosted on G2.com.
Secureframe ermöglicht es dem Auditor direkten Zugang zu Secureframe zu geben und sich so eine Menge Arbeit bei der Übermittlung von Informationen/Beweisen zu ersparen.
Für mich war es das erste Mal, mit einer derartigen Software zu arbeiten bzw. bei einem SOC2 Audit mitzuwirken und war positiv überrascht wie leicht es mir viel mich zurechtzufinden.
Wenn ein Problem oder eine Frage aufgetaucht ist, war der Kundenservice immer schnell erreichbar und hatte eine Lösung parat, in der Regel noch am gleichen Tag.
Sehr überzeugt waren wir auch von der Vielzahl an Funktionen die Secureframe bietet (Integrations, Policies, Personnel etc.), so dass wir durch die Nutzung von Secureframe an anderer Stelle sparen konnten. Review collected by and hosted on G2.com.
Eigentlich gibt es nicht viel auszusetzen, der Auditor hat uns auf einige Tests hingewiesen die wir aktivieren sollten, auf die Secureframe uns im Vorfeld nicht aufmerksam gemacht hat. Es waren allerdings Kleinigkeiten und hat uns keine wirklichen Probleme mit dem Auditor bereitet, nur einen geringen Mehraufwand um Rückfragen des Auditors zu beantworten. Review collected by and hosted on G2.com.
1. The product features a clean UI, making it easy to navigate and understand.
2. The onboarding process was seamless, even as we transitioned from a different product, the onboarding team took care of the transition.
3. Customizable Trust Center, which provides great flexibility to align with our company's branding.
4. Very responsive support team. Review collected by and hosted on G2.com.
1. Initially, the homepage had a few bugs, but they were promptly resolved by the support team within 24 hours of being reported. Review collected by and hosted on G2.com.
The way it helps me organize my SOC II requirements, tests and processes. Customer support is prompt and very helpful throughout the process Review collected by and hosted on G2.com.
Rarely its tough to connect something to the API Review collected by and hosted on G2.com.
You get access to people who know how things are typically documented. A lot of these certifications are essentially documentation exercises and if you know how they are typically done, it becomes a lot easier to complete.
Their tools are constantly improving, they introduce process for things that would be manual otherwise and become a central clearing house for all of your compliance artifacts. Review collected by and hosted on G2.com.
Their REST api is kind of barebones right now. You can't look up, for example, which employees are out of compliance at any given moment. It basically allows you to C.R.U.D. custom tests and data, but doesn't let you access the builtin stuff. They're always improving, so i'm sure eventually this data will be exposed via their rest api;. Review collected by and hosted on G2.com.
Any time there is a task that needs to be done, an email is sent out by Secureframe with explicit instructions on how to accomplish it. Whether that be a new employee going through onboarding, annual SOC 2 compliance, or verifying that security policies are up to date, Secureframe ensures that the important tasks are completed in a timely manner. It would be chaos to try and manage all of this another way, and our team breathes easy knowing that we're covered by their software. Review collected by and hosted on G2.com.
Our team receives security questionnaires at least weekly from our prospective customers, which can come in a variety of formats (Excel, Word, external site, etc). While there is a questionnaire library feature within Secureframe, it is currently limited to being able to read and fill out Excel spreadsheets. If this were the only way we received questionnaires, it would be perfect. Alas, that's not the world we live in.
Thankfully, the Secureframe success/support team has been receptive to feedback around how this could be improved and have relayed those thoughts to their Product team. Review collected by and hosted on G2.com.
It was extremely simple to get started, and they have everything we needed to get SOC2 compliant and maintain monitoring without having to go through a lengthy process. For a startup where SOC2 is important, but our team doesn't have budget for a dedicated security and compliance team, it was great. The integrations with the 3rd party applications for ongoing monitoring were great, and the continuous compliance checklist is helpful as well. Implementation was easy, and provided policy docs helped us have a great starting point. They also had a great customer success team to help us get things going, and partners for low cost, but reputable, audits and penetration tests. We have used it for SOC2 type 1 and type 2. Review collected by and hosted on G2.com.
The device management and asset tracking could be better, but seems to be improving. I also wish the tasks for team members for ongoing activities like yearly security trainings, device management, etc. would be more clear. Last, adding HIPPA compliance checklists without a significant additional cost or separate process would be nice. Review collected by and hosted on G2.com.
I heard about Secureframe through a friend running a different startup, and his positive experiences were a big reason I chose Secureframe for our SOC 2 compliance journey. The team demonstrated a range of expertise and was able to answer a wide variety of questions I had throughout the process. Secureframe connected seamlessly to our Azure environment, which made the initial setup both quick and efficient. Their support and knowledge have made the entire compliance experience straightforward. I would highly recommend Secureframe to any company looking to obtain their SOC 2 certification. Review collected by and hosted on G2.com.
Secureframe organizes the compliance journey into manageable tasks, each designed to guide you through research and completion. While the support team is excellent, I found that some tasks lacked sufficient detail or examples, which occasionally required reaching out for clarification. A more comprehensive approach to task instructions would enhance the experience, allowing for greater independence and efficiency in the process. Review collected by and hosted on G2.com.
Having Secureframe installed in our AWS environment and reviewing our configurations was a game changer. It really helped us get to a much more secure posture. We now feel that we are in a much better place after doing our SOC readiness and eventual audit. It was such an easy way to find issues and gives you the steps to remedy them. Review collected by and hosted on G2.com.
Secureframe is going to find things that are problematic in our configuration. Unfortunately, this means more work for the DevOps group. Review collected by and hosted on G2.com.
The user interface is super easy to use and very intuitive, it has a great number of useful features, the integrations are very fast and effective, and we have always felt supported by their great customer support team. Review collected by and hosted on G2.com.
I wish the automated vendor reviews were part of the basic version. Also I wish you could batch apply settings to multiple selected tickets. And the saving each individual setting in each ticket can be tedious - I wish there was a "Save and Close" Function for all settings in each ticket. Review collected by and hosted on G2.com.
