We used Secureframe to streamline our ISO 27001 compliance efforts. Before that, we worked with consulting companies that either had their own, not-so-great compliance tools or had us managing everything manually with Excel files and Dropbox—an incredibly tedious process. A colleague recommended Secureframe, and it’s been a complete game changer for us.
The integration features are outstanding. We connected it to our Azure account (and other SaaS platforms we use), and it immediately identified configuration changes we needed to make. The system provided easy-to-follow instructions to help us harden our setup and ensure compliance with our policies. This automation not only made the process smoother, but it also simplified showing evidence of controls to auditors.
Secureframe’s built-in content management system for policies is another great feature. It tracks version history and allows employees to log in and review policies based on their roles. This ensures everyone is reviewing the required policies annually for compliance.
I also found the Vendor section extremely useful. It enables us to assess and rate the risks associated with our suppliers and keep track of their compliance documents. The integrated risk register is another standout feature. While I could go on about many more features, these are the ones that have been particularly impactful for us.
We just completed our annual surveillance audit, and it went incredibly smoothly. Our external auditor, who’s quite old-school, was initially skeptical of Secureframe, especially its ability to integrate with our systems and provide real-time compliance evidence. By the end of the audit, he said it was the best compliance tool he’d ever seen and planned to recommend it to his clients.
If that wasn’t enough, their support team is fantastic. Our Customer Success Manager, Brandon, is super responsive, often replying to emails within the hour. If he can’t address something immediately, he loops in his team, and they follow up just as quickly.
We couldn’t be happier with Secureframe and are excited to expand its usage as our business scales and we explore support for more frameworks. Review collected by and hosted on G2.com.
While Secureframe covers all of our major cloud and SaaS providers, I do wish there were a few more integration options available, and in some cases, I’d like the existing integrations to be a bit more robust. Review collected by and hosted on G2.com.
381 out of 382 Total Reviews for Secureframe
Overall Review Sentiment for Secureframe
Log in to view review sentiment.
We used Secureframe for our SOC2 certification process, and the platform had the capabilities of getting automatic details through its many integrations, thus reducing the need for much of the manual tasks.
Support from the team was also great to ensure that we were given attendtion when needed and helped on doubts.
The platform was easy to use and did not have many requirements in terms of implementation, as it was a quick portal login. Review collected by and hosted on G2.com.
There are challanges in terms of available integrations especially when considering that there could be custom appalications and features within that would need more details for certain tests to pass.
While the platform is great for all the tracking and automation, at times there is a necessity of having that full-time support or hand-holding for certain things, which is missing.
Default policies and procedure documents are made available, and there are only minimal changes required for the organization to pass those, while the implementation could be wholly different or nonexistent; there is no feature or checks to ensure that things are followed as described. Review collected by and hosted on G2.com.
Secureframe ermöglicht es dem Auditor direkten Zugang zu Secureframe zu geben und sich so eine Menge Arbeit bei der Übermittlung von Informationen/Beweisen zu ersparen.
Für mich war es das erste Mal, mit einer derartigen Software zu arbeiten bzw. bei einem SOC2 Audit mitzuwirken und war positiv überrascht wie leicht es mir viel mich zurechtzufinden.
Wenn ein Problem oder eine Frage aufgetaucht ist, war der Kundenservice immer schnell erreichbar und hatte eine Lösung parat, in der Regel noch am gleichen Tag.
Sehr überzeugt waren wir auch von der Vielzahl an Funktionen die Secureframe bietet (Integrations, Policies, Personnel etc.), so dass wir durch die Nutzung von Secureframe an anderer Stelle sparen konnten. Review collected by and hosted on G2.com.
Eigentlich gibt es nicht viel auszusetzen, der Auditor hat uns auf einige Tests hingewiesen die wir aktivieren sollten, auf die Secureframe uns im Vorfeld nicht aufmerksam gemacht hat. Es waren allerdings Kleinigkeiten und hat uns keine wirklichen Probleme mit dem Auditor bereitet, nur einen geringen Mehraufwand um Rückfragen des Auditors zu beantworten. Review collected by and hosted on G2.com.
1. The product features a clean UI, making it easy to navigate and understand.
2. The onboarding process was seamless, even as we transitioned from a different product, the onboarding team took care of the transition.
3. Customizable Trust Center, which provides great flexibility to align with our company's branding.
4. Very responsive support team. Review collected by and hosted on G2.com.
1. Initially, the homepage had a few bugs, but they were promptly resolved by the support team within 24 hours of being reported. Review collected by and hosted on G2.com.
The way it helps me organize my SOC II requirements, tests and processes. Customer support is prompt and very helpful throughout the process Review collected by and hosted on G2.com.
Rarely its tough to connect something to the API Review collected by and hosted on G2.com.
Ease of accessing all features. The UI is also very user friendly. The customer success team is also very supportive and quick to respond Review collected by and hosted on G2.com.
The secureframe agent sometimes does not integrate well and shows a few controls as failing which is something needs to be improved Review collected by and hosted on G2.com.
You get access to people who know how things are typically documented. A lot of these certifications are essentially documentation exercises and if you know how they are typically done, it becomes a lot easier to complete.
Their tools are constantly improving, they introduce process for things that would be manual otherwise and become a central clearing house for all of your compliance artifacts. Review collected by and hosted on G2.com.
Their REST api is kind of barebones right now. You can't look up, for example, which employees are out of compliance at any given moment. It basically allows you to C.R.U.D. custom tests and data, but doesn't let you access the builtin stuff. They're always improving, so i'm sure eventually this data will be exposed via their rest api;. Review collected by and hosted on G2.com.
Secureframe is a very easy to use software with proper onboarding and setup process. It has made the process of automating and streamlining many compliance tasks easily with their AI features. It also provides security to sensitive business data and conducts risk management. Their customer support team is also quite helpful and approachable Review collected by and hosted on G2.com.
Has scope for improving the number of integrations and may take some time to understand the homepage. Review collected by and hosted on G2.com.
Any time there is a task that needs to be done, an email is sent out by Secureframe with explicit instructions on how to accomplish it. Whether that be a new employee going through onboarding, annual SOC 2 compliance, or verifying that security policies are up to date, Secureframe ensures that the important tasks are completed in a timely manner. It would be chaos to try and manage all of this another way, and our team breathes easy knowing that we're covered by their software. Review collected by and hosted on G2.com.
Our team receives security questionnaires at least weekly from our prospective customers, which can come in a variety of formats (Excel, Word, external site, etc). While there is a questionnaire library feature within Secureframe, it is currently limited to being able to read and fill out Excel spreadsheets. If this were the only way we received questionnaires, it would be perfect. Alas, that's not the world we live in.
Thankfully, the Secureframe success/support team has been receptive to feedback around how this could be improved and have relayed those thoughts to their Product team. Review collected by and hosted on G2.com.
User friendliness of the application, small ramp up time to become familiar with the product, automated scanning functionality does not result in a large amount of false positives Review collected by and hosted on G2.com.
I would eventually like to see more customization options available for the automated results, as well as future integrations with more products Review collected by and hosted on G2.com.
Secureframe has assisted my organization by organizing policies and controls for us to easily keep track and update. It simplifies the audit process and quickly identifies any issues. Review collected by and hosted on G2.com.
As of right now I cannot think of an issue because it really has been helpful. Review collected by and hosted on G2.com.
