375 Secureframe Reviews
Overall Review Sentiment for Secureframe
Log in to view review sentiment.
The platform was able to help us organize and manage versions of information and enable us to incrementally tackle policies and evidence incrementally. The support team members we worked with were very helpful with onboarding, sync meetings around progress and connecting us with other 3rd parties for auditing and pen testing services. Review collected by and hosted on G2.com.
Because Secureframe is standardized platform, the default policies may or may not match the business model or security posture. However, we were able to use most of them with edits and add custom policies to get across the finish line. Review collected by and hosted on G2.com.
Exceptionally easy integrations are very useful in automating the provision of information from the various systems and platforms we use for data, people and process management. Secureframe’s prefabricated business and security policies provide a great jumpstart to creating policies where they may be lacking or non-existent, and these policies can be easily customized to include the particulars for any individual organization’s variances to common/best practice approaches. The platform’s checklist approach to tasks and ownership makes it easy to track progress and manage multiple people’s involvement with assigned tasks. Review collected by and hosted on G2.com.
There were a few occasions where platform glitchiness resulted in status indicators in one section not aligning with similar data appearing in other areas of the platform, but this is something we saw diminish over time as Secureframe seemed to be making a lot of platform revisions and enhancements during our time working with it. Review collected by and hosted on G2.com.
Easy to use, great guidance and in some situations even AI to help you pass the controls. Integrations with existing tools that automatically gather evidence for SOC2 and ISO27001 certifications Review collected by and hosted on G2.com.
Some tests and AI suggestions are still fuzzy. Review collected by and hosted on G2.com.
The holistic approach towards relevant security frameworks, skills assessment, policy duidance, development and controls implementation Review collected by and hosted on G2.com.
Nothing yet but I will definitely let you know when something comes up :)
I would however like to see partnership with some training providers to include more CyberSecurity-specific content.modules in the base on-demand training (OWASP, ISC, ISACA, etc) Review collected by and hosted on G2.com.
Using Secureframe will change the perspective of an audit. Test automation via integrations makes managing and tracking compliance with a particular framework effortless. Review collected by and hosted on G2.com.
Integration issues at times. However, the Secureframe support system is fantastic, and any issues logged were remediated very quickly Review collected by and hosted on G2.com.
Before contacting Secureframe I was having difficulty knowing where to begin with SOC II compliance. Their platform guides us through the entire process, and anytime I’ve been stuck on something, Brady has been there with a short meeting or email. They'll automate the collection of any information they can, tell you what else you need to collect and then present it in an organized way. Review collected by and hosted on G2.com.
Determining what information they want on some templates can sometimes be challenging. I had to reach out to my compliance rep on one occasion. Not a big deal but more examples or hints would be nice. Review collected by and hosted on G2.com.
Navigating compliance frameworks can be a daunting task for most organization. Secureframe breaks it down in to easy manageable steps. Each control of Secureframe is mapped to a clearly defined task(s). The platform polls the necessary information from several key platforms to automatically check for compliance on those platforms. Review collected by and hosted on G2.com.
This can become a better platform if there are periodic/ad-hoc reminders for tests which are failing for specific owners. This could be achieved with something as simple as an email getting sent out to a specific person if a test fails. Review collected by and hosted on G2.com.
Secureframe makes it very easy to see which areas you need to focus on, or pay attention to when it comes to working towards a compliance. When we worked with an outside auditor to achieve our compliance, all of the auditors that we used were very impressed with what we had in place and how well organized things were. This was solely due to the tests and input from the Secureframe platform and personnel being able to provide meaning ful answers. Lastly, the team at Secureframe provides a lot of quality templates to help start you on your compliance journey. Review collected by and hosted on G2.com.
There were times where things didn't make sense as to why a compliance test was failing. The information provided was sometimes a bit vague. However, the Secureframe team has made changes to show more details on why a test is failing and that has helped. I would prefer a bit more flexibility in the exporting of reports. The reports that are exported a not configurable enough to give the dates, grouping, or information that I wanted. That means I had to modify the report after export. But, that is time consuming when you are dealing with live data that is constantly changing. Review collected by and hosted on G2.com.
SecureFrame's automated questionnaire response is very user friendly and the instructions and support features are easy to understand and follow. Review collected by and hosted on G2.com.
As with any system such as this, the setup time is always going to be labor intesive. Once it gets up and running, it should be less time and labor intensive. Review collected by and hosted on G2.com.
