Best Software for 2025 is now live!
Save to My Lists
Paid
Claimed

Secureframe Reviews & Product Details

Secureframe Overview

What is Secureframe?

Secureframe empowers businesses to build trust with customers by simplifying information security and compliance through AI and automation. Thousands of organizations such as AngelList, Nasdaq, Coda, and Remote trust Secureframe to help them obtain and maintain compliance with global information security standards.

Secureframe Details
Product Website
Languages Supported
English
Show LessShow More
Product Description

Secureframe helps companies get enterprise ready by streamlining SOC 2 and ISO 27001 compliance. Secureframe allows companies to get compliant within weeks, rather than months and monitors 40+ services, including AWS, GCP, and Azure.


Seller Details
Company Website
Year Founded
2020
HQ Location
San Francisco, US
Twitter
@secureframe
2,090 Twitter followers
LinkedIn® Page
www.linkedin.com
145 employees on LinkedIn®
Description

Secureframe is the automated compliance platform built by compliance experts. We're transforming how businesses and Service Providers manage security and compliance programs.


Brenda G.
BG
Overview Provided by:

Recent Secureframe Reviews

Verified User
A
Verified UserSmall-Business (50 or fewer emp.)
4.5 out of 5
"Secureframe hat uns sehr erfolgreich durch unser erstes SOC2 Audit durchgeführt und unterstützt."
Secureframe ermöglicht es dem Auditor direkten Zugang zu Secureframe zu geben und sich so eine Menge Arbeit bei der Übermittlung von Informationen/...
Srinivasan V I.
SI
Srinivasan V I.Small-Business (50 or fewer emp.)
4.0 out of 5
"Perfect tool for overall Compliance Management and tracking"
We used Secureframe for our SOC2 certification process, and the platform had the capabilities of getting automatic details through its many integra...
Raquel A.
RA
Raquel A.Small-Business (50 or fewer emp.)
4.0 out of 5
"Very good and effective platform!"
It is a very intuitive platform, easy to use and with a fast and effective customer service.
Security Badge
Secureframe Security
Get security information from Secureframe to help you buy the right software. View Security Information
Secureframe security information includes:
GDPR (General Data Protection Regulation)
SOC 2 (System and Organization Controls 2)
CIS Controls (Center for Internet Security Controls)
ISO 27001 (International Organization for Standardization)

Secureframe Media

Secureframe Demo - Dashboard
Get an overview of your security and compliance program
Secureframe Demo - Risk Management
The end-to-end Risk Management solution makes it easy to identify, manage, and mitigate risk so you can build and maintain a strong security compliance posture.
Secureframe Demo - Controls
Secureframe Controls give you a complete view into your compliance program across all frameworks.
Secureframe Demo - Automated Tests and Remediation Guidance
Ensuring compliance with a strong security and privacy posture means continuously detecting and remediating issues across your environment. Leverage pre-built automated tests or create custom tests to maintain an effective compliance program.
Secureframe Demo - Custom Tests and Control Mapping
Create custom tests and map controls from any framework.
Play Secureframe Video

Official Downloads

Answer a few questions to help the Secureframe community
Have you used Secureframe before?
Yes

375 Secureframe Reviews

4.7 out of 5
The next elements are filters and will change the displayed results once they are selected.
Search reviews
Popular Mentions
The next elements are radio elements and sort the displayed results by the item selected and will update the results displayed.
Hide FiltersMore Filters
The next elements are filters and will change the displayed results once they are selected.
The next elements are filters and will change the displayed results once they are selected.
375 Secureframe Reviews
4.7 out of 5
375 Secureframe Reviews
4.7 out of 5

Secureframe Pros and Cons

How are these determined?Information
Pros and Cons are compiled from review feedback and grouped into themes to provide an easy-to-understand summary of user reviews.
Pros
Cons

Overall Review Sentiment for SecureframeQuestion

Time to Implement
<1 day
>12 months
Return on Investment
<6 months
48+ months
Ease of Setup
0 (Difficult)
10 (Easy)
Log In
Want to see more insights from verified reviewers?
Log in to view review sentiment.
G2 reviews are authentic and verified.
Srinivasan V I.
SI
Senior Security Analyst
Small-Business(50 or fewer emp.)
Validated Reviewer
Verified Current User
Review source: G2 invite on behalf of seller
Incentivized Review
(Original )Information
What do you like best about Secureframe?

We used Secureframe for our SOC2 certification process, and the platform had the capabilities of getting automatic details through its many integrations, thus reducing the need for much of the manual tasks.

Support from the team was also great to ensure that we were given attendtion when needed and helped on doubts.

The platform was easy to use and did not have many requirements in terms of implementation, as it was a quick portal login. Review collected by and hosted on G2.com.

What do you dislike about Secureframe?

There are challanges in terms of available integrations especially when considering that there could be custom appalications and features within that would need more details for certain tests to pass.

While the platform is great for all the tracking and automation, at times there is a necessity of having that full-time support or hand-holding for certain things, which is missing.

Default policies and procedure documents are made available, and there are only minimal changes required for the organization to pass those, while the implementation could be wholly different or nonexistent; there is no feature or checks to ensure that things are followed as described. Review collected by and hosted on G2.com.

What problems is Secureframe solving and how is that benefiting you?

We used SecureFrame to get one of our suborganizations SOC2 certified, and having integrations with AWS and Microsoft helped with the high-level integrations; it did reduce the overall efforts that were needed to gather the evidence.The platform also keeps all the required pieces of information and details in a single place that helps ease the compliance process. However, on the flip side, the categorization of the test into respective departments was a challenge, as there was no indication of what exactly is needed as evidence nor any outlier that could have helped with that information. Review collected by and hosted on G2.com.

Verified User in Computer & Network Security
AC
Small-Business(50 or fewer emp.)
Validated Reviewer
Verified Current User
Review source: G2 invite on behalf of seller
Incentivized Review
What do you like best about Secureframe?

Secureframe ermöglicht es dem Auditor direkten Zugang zu Secureframe zu geben und sich so eine Menge Arbeit bei der Übermittlung von Informationen/Beweisen zu ersparen.

Für mich war es das erste Mal, mit einer derartigen Software zu arbeiten bzw. bei einem SOC2 Audit mitzuwirken und war positiv überrascht wie leicht es mir viel mich zurechtzufinden.

Wenn ein Problem oder eine Frage aufgetaucht ist, war der Kundenservice immer schnell erreichbar und hatte eine Lösung parat, in der Regel noch am gleichen Tag.

Sehr überzeugt waren wir auch von der Vielzahl an Funktionen die Secureframe bietet (Integrations, Policies, Personnel etc.), so dass wir durch die Nutzung von Secureframe an anderer Stelle sparen konnten. Review collected by and hosted on G2.com.

What do you dislike about Secureframe?

Eigentlich gibt es nicht viel auszusetzen, der Auditor hat uns auf einige Tests hingewiesen die wir aktivieren sollten, auf die Secureframe uns im Vorfeld nicht aufmerksam gemacht hat. Es waren allerdings Kleinigkeiten und hat uns keine wirklichen Probleme mit dem Auditor bereitet, nur einen geringen Mehraufwand um Rückfragen des Auditors zu beantworten. Review collected by and hosted on G2.com.

What problems is Secureframe solving and how is that benefiting you?

Secureframe hilft uns bei der Bestehung von Audits wie z.B. SOC2. Desweiteren haben wir hier unsere Vendor mit Details gelistet, sowie interne Policies auf die unsere Mitarbeiter zugreifen und unterschreiben können. Desweiteren bietet Secureframe einige Quality of Life Features die uns in vielen Bereichen nützlich sind. Review collected by and hosted on G2.com.

Aryan S.
AS
Financial Controller
Small-Business(50 or fewer emp.)
Validated Reviewer
Verified Current User
Review source: Organic
What do you like best about Secureframe?

1. The product features a clean UI, making it easy to navigate and understand.

2. The onboarding process was seamless, even as we transitioned from a different product, the onboarding team took care of the transition.

3. Customizable Trust Center, which provides great flexibility to align with our company's branding.

4. Very responsive support team. Review collected by and hosted on G2.com.

What do you dislike about Secureframe?

1. Initially, the homepage had a few bugs, but they were promptly resolved by the support team within 24 hours of being reported. Review collected by and hosted on G2.com.

What problems is Secureframe solving and how is that benefiting you?

Secureframe fully automates the SOC 2 review process. If any security tests fail, they are promptly reported to the assigned security officer for remediation. The Platform is very useful during SOC 2 audits, significantly streamlining and accelerating the audit completion process. Review collected by and hosted on G2.com.

LL
Chief Security Officer
Mid-Market(51-1000 emp.)
Validated Reviewer
Verified Current User
Review source: G2 invite on behalf of seller
Incentivized Review
What do you like best about Secureframe?

The way it helps me organize my SOC II requirements, tests and processes. Customer support is prompt and very helpful throughout the process Review collected by and hosted on G2.com.

What do you dislike about Secureframe?

Rarely its tough to connect something to the API Review collected by and hosted on G2.com.

What problems is Secureframe solving and how is that benefiting you?

Getting through the process of SOC II type 2 audit is very bureaucratic and frustrating. Secureframe organises the whole process and makes it easier for us and the auditor to get through it effectively. It helps us organise the tests and helps us monitor the compliance with each of the tests. It helps us organise the employees and contractors and get them compliant and security trained. I believe it would be almost next to impossible to organise all these tests and prove that we are compliant if we did the audit without the Secureframe platform Review collected by and hosted on G2.com.

David M.
DM
Senior Engineering Manager
Mid-Market(51-1000 emp.)
Validated Reviewer
Verified Current User
Review source: G2 invite on behalf of seller
Incentivized Review
What do you like best about Secureframe?

You get access to people who know how things are typically documented. A lot of these certifications are essentially documentation exercises and if you know how they are typically done, it becomes a lot easier to complete.

Their tools are constantly improving, they introduce process for things that would be manual otherwise and become a central clearing house for all of your compliance artifacts. Review collected by and hosted on G2.com.

What do you dislike about Secureframe?

Their REST api is kind of barebones right now. You can't look up, for example, which employees are out of compliance at any given moment. It basically allows you to C.R.U.D. custom tests and data, but doesn't let you access the builtin stuff. They're always improving, so i'm sure eventually this data will be exposed via their rest api;. Review collected by and hosted on G2.com.

What problems is Secureframe solving and how is that benefiting you?

they allow us to centralize all of the artifacts we need to pass a SOC2 audit and attest to being GDPR compliant. They help introduce process for something that would be exhausting to do manually. They have automation that looks at your environment and makes sure things are setup properly. Review collected by and hosted on G2.com.

Gavynn B.
GB
Solutions Consultant
Mid-Market(51-1000 emp.)
Validated Reviewer
Verified Current User
Review source: G2 invite on behalf of seller
Incentivized Review
What do you like best about Secureframe?

Any time there is a task that needs to be done, an email is sent out by Secureframe with explicit instructions on how to accomplish it. Whether that be a new employee going through onboarding, annual SOC 2 compliance, or verifying that security policies are up to date, Secureframe ensures that the important tasks are completed in a timely manner. It would be chaos to try and manage all of this another way, and our team breathes easy knowing that we're covered by their software. Review collected by and hosted on G2.com.

What do you dislike about Secureframe?

Our team receives security questionnaires at least weekly from our prospective customers, which can come in a variety of formats (Excel, Word, external site, etc). While there is a questionnaire library feature within Secureframe, it is currently limited to being able to read and fill out Excel spreadsheets. If this were the only way we received questionnaires, it would be perfect. Alas, that's not the world we live in.

Thankfully, the Secureframe success/support team has been receptive to feedback around how this could be improved and have relayed those thoughts to their Product team. Review collected by and hosted on G2.com.

What problems is Secureframe solving and how is that benefiting you?

Secureframe ensures that our team's policy documentation is recorded and kept up to date, and requires that every employee go through annual training on these policies and more. It makes it easy for our HR and IT teams to know who has accomplished the required tasks on time, and can send out personalized reminders to those who have yet to do so.

It also automatically pulls Common Vulnerabilities and Exposures data for our connected integrations, which helps our team prioritize security tasks. Review collected by and hosted on G2.com.

Verified User in Computer Software
EC
Small-Business(50 or fewer emp.)
Validated Reviewer
Verified Current User
Review source: G2 invite on behalf of seller
Incentivized Review
What do you like best about Secureframe?

It was extremely simple to get started, and they have everything we needed to get SOC2 compliant and maintain monitoring without having to go through a lengthy process. For a startup where SOC2 is important, but our team doesn't have budget for a dedicated security and compliance team, it was great. The integrations with the 3rd party applications for ongoing monitoring were great, and the continuous compliance checklist is helpful as well. Implementation was easy, and provided policy docs helped us have a great starting point. They also had a great customer success team to help us get things going, and partners for low cost, but reputable, audits and penetration tests. We have used it for SOC2 type 1 and type 2. Review collected by and hosted on G2.com.

What do you dislike about Secureframe?

The device management and asset tracking could be better, but seems to be improving. I also wish the tasks for team members for ongoing activities like yearly security trainings, device management, etc. would be more clear. Last, adding HIPPA compliance checklists without a significant additional cost or separate process would be nice. Review collected by and hosted on G2.com.

What problems is Secureframe solving and how is that benefiting you?

Simplifying SOC2 compliance so that a startup can maintain SOC2 compliance, maintain evidence for monitoring periods, etc. wihtout a large security team or overly difficult process. Review collected by and hosted on G2.com.

GB
CTO
Small-Business(50 or fewer emp.)
Validated Reviewer
Review source: G2 invite on behalf of seller
Incentivized Review
What do you like best about Secureframe?

I heard about Secureframe through a friend running a different startup, and his positive experiences were a big reason I chose Secureframe for our SOC 2 compliance journey. The team demonstrated a range of expertise and was able to answer a wide variety of questions I had throughout the process. Secureframe connected seamlessly to our Azure environment, which made the initial setup both quick and efficient. Their support and knowledge have made the entire compliance experience straightforward. I would highly recommend Secureframe to any company looking to obtain their SOC 2 certification. Review collected by and hosted on G2.com.

What do you dislike about Secureframe?

Secureframe organizes the compliance journey into manageable tasks, each designed to guide you through research and completion. While the support team is excellent, I found that some tasks lacked sufficient detail or examples, which occasionally required reaching out for clarification. A more comprehensive approach to task instructions would enhance the experience, allowing for greater independence and efficiency in the process. Review collected by and hosted on G2.com.

What problems is Secureframe solving and how is that benefiting you?

As a first time CTO, I did a lot of research on SOC2 complience. Their step by step approach helped me organize the required documentation needed for the eventual audit. Review collected by and hosted on G2.com.

Matt M.
MM
Vice President of Technology
Small-Business(50 or fewer emp.)
Validated Reviewer
Verified Current User
Review source: G2 invite on behalf of seller
Incentivized Review
What do you like best about Secureframe?

Having Secureframe installed in our AWS environment and reviewing our configurations was a game changer. It really helped us get to a much more secure posture. We now feel that we are in a much better place after doing our SOC readiness and eventual audit. It was such an easy way to find issues and gives you the steps to remedy them. Review collected by and hosted on G2.com.

What do you dislike about Secureframe?

Secureframe is going to find things that are problematic in our configuration. Unfortunately, this means more work for the DevOps group. Review collected by and hosted on G2.com.

What problems is Secureframe solving and how is that benefiting you?

As small start up with only 2 people, securframe gave us the ability to get SOC ready and compliant in relatively short amount of time. We feel that it is helping us stay on top of issues in our environment and preparing us for future audits. Review collected by and hosted on G2.com.

Jack M.
JM
Security Analyst
Small-Business(50 or fewer emp.)
Validated Reviewer
Verified Current User
Review source: G2 invite on behalf of seller
Incentivized Review
What do you like best about Secureframe?

The user interface is super easy to use and very intuitive, it has a great number of useful features, the integrations are very fast and effective, and we have always felt supported by their great customer support team. Review collected by and hosted on G2.com.

What do you dislike about Secureframe?

I wish the automated vendor reviews were part of the basic version. Also I wish you could batch apply settings to multiple selected tickets. And the saving each individual setting in each ticket can be tedious - I wish there was a "Save and Close" Function for all settings in each ticket. Review collected by and hosted on G2.com.

What problems is Secureframe solving and how is that benefiting you?

Keeping security checks and policies all in a centralized location. Review collected by and hosted on G2.com.