144 Strike Graph Reviews
Overall Review Sentiment for Strike Graph
Log in to view review sentiment.
Strike Graph was the right GRC (Governance, Risk and Compliance) tool we needed at the right time for the right cost. Strike Graph doesnt have a monolithic GRC tool that does everything and cost six figures. It had enough to support our needs for TISAX and ISO27001 without having to pay for features and functionality we didnt need. In addition to a SaaS tool they have available very helpful and responsive support that goes beyond "tech support." They have resources that can help with low level compliance questions and access to currated content like policies and procesdures. The tool was easy to implement (self implementation) and use. StrikeGraph even took feedback and incorporated that feedback. Review collected by and hosted on G2.com.
Its not a dislike, but to be clear, its not for all organzations depending on need. It currently doesnt have workflow/approval management of Polciy and Procedures, for example. Reporting is limited, but effective for what we needed. Review collected by and hosted on G2.com.
Strike Graph makes the compliance process smooth and stress-free. The platform is incredibly intuitive, making it easy to navigate SOC 2, ISO 27001, and other security frameworks without unnecessary complexity. Review collected by and hosted on G2.com.
The Strike Graph team lacks regular check-ins and outreach. Although the platform is intuitive, quarterly check-ins would help monitor progress and address compliance needs. More engagement would benefit companies navigating compliance for the first time. Review collected by and hosted on G2.com.
Periodic reminders about expiring evidence is very helpful for staying on top of what needs to be refreshed, when, and how often.
Control- and evidence-assignment makes it simple for different users to look up what has been assigned to them, which controls have been fully/partially satisfied.
The web portal makes it easy to access things from anywhere. Review collected by and hosted on G2.com.
A lot of the documentation & examples are focused on AWS and particular products/services, which is unfortunate for inexperienced users from organizations that use other options.
Some of the control/evidence descriptions could be made clearer. Review collected by and hosted on G2.com.
Strike Graph made it relatively easy for us to obtain our SOC2 Type II audit and report. It took us time to get our documentation and evidence ready for audit, but our CSM Stephanie was extremely helpful. She set things up for us at the start of the process in a way that would be best aligned to our business and defined processes. She was super knowledgeable and responsive. The resources and templates available within the platform were invaluable. They saved us time, and gave us confidence that the documentation we provided using the templates met the requirements. When we needed just-in-time clarification, we got quick answers to our questions from the Strike Graph team who made themselves available via the online chat.
Overall, we had a very positive experience. The platform was easy to use and helped streamline the process of preparing for our SOC 2 Type II audit, the Strike Graph team was great to work with, and the actual audit went very smoothly. Review collected by and hosted on G2.com.
There was somewhat of a learning curve in understanding how to use the tool effectively which is typical of using a new tool.
Two things that were slightly burdensome were:
1. Collaboration with the auditors was done outside the platform, using Google docs which we don't use so it was something we had to work out. It was not a big deal and we worked around it but it would be good if that could be streamlined and incorporated into the platform (i.e. additional evidence needed, draft audit report). 2. We used the same policy document to support several evidence items and when we updated the document, we had to re-upload it for each evidence item. It would be nice if we could upload the document only once, and associate multiple evidence to it. Review collected by and hosted on G2.com.
Strike Graph does a great job of organizing our controls and evidence and keeping us on the schedule. Review collected by and hosted on G2.com.
I really like that Strike Graph supports Sign in with Google and allows us to associate files on our Google Drive with Evidence. If there's any way for it to only ask me for my Google credentials once rather than each time I link a file, that would be amazing. Review collected by and hosted on G2.com.
Strike Graph's ability to give us insights into our team's progress towards SOC2 compliance is pretty awesome! Their reporting and monitoring features let us keep a close eye on our compliance efforts, spot any hurdles, and measure how far we've come. It's been a real game-changer for managing our compliance projects, making smart decisions based on data, and staying on the right track to get our SOC2 type 2. Review collected by and hosted on G2.com.
We had a great experience with Strike Graph, and there was nothing we disliked about their service. Throughout the process, their team was incredibly supportive, providing assistance and guidance every step of the way. Their commitment to our success made the entire journey smooth and enjoyable. Review collected by and hosted on G2.com.
The Compliance Dashboard and the Control Monitoring dashboards are the best feature that StrikeGraph offers in my opinion as it gives you high-level review of the status of risks, controls and evidence.
The Help Centre is also an incredibly helpful tool given it contains sample templates and documentation for most of controls. Review collected by and hosted on G2.com.
The UI at times is unresponsive and glitchy. In my 2+ years of using StrikeGraph, I've notcied the UI at times fights with the user especially when I try using filters in the control library or evidence respository tabs.
Additionally, the inability to upload more than 1 file at a time for evidence does become frustrating at times especially if you have to upload 50+ onboarding checklists. Review collected by and hosted on G2.com.
Having the ability to upload evidence throughout the year is a huge benefit of Strike Graph. Typically, an audit kicks off and you start collecting evidence at that time. Strike Graph allows us to upload evidence as it expires which spreads the effort over the year instead of doing it all within 1-3 months. Review collected by and hosted on G2.com.
There are very few dowsides. Being a younger product, there are some features/functionality I would like to see implemented. However, Strike Graph is one of the few vendors we've used that actually implemented a feature that we requested which is great. Review collected by and hosted on G2.com.
Working with Kevron from Strike Graph has been like having an extension of my team, assisting with compliance guidance, documentation, audit prep, and open conversation about initiatives across our business. The compliance dashboard, document templates, and resources available make enhancing a security and compliance program a breeze. I have been thrilled with the progress and process of interacting with Strike Graph as a whole, but certainly with Kevron in particular. Review collected by and hosted on G2.com.
I have not experienced any downsides in working with Strike Graph. My situation may be pretty simple, but I have been offered resources above what I even need and have really only scratched the surface of the offerings available through the compliance dashboard. Review collected by and hosted on G2.com.
Strike Graph has an amazing support team. Obtaining our SOC2 certification seemed like an overwhelming task at first, but our account rep and the rest of the support team were always available to help us and guide us through it. Review collected by and hosted on G2.com.
Their Security Questionnaires feature, while helpful, could use some improvements. Review collected by and hosted on G2.com.
