Reviews from AWS Marketplace
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
External reviews are not included in the AWS star rating for the product.
Security & compliance automation solution that offer good value for money
What do you like best about the product?
Ease of Use, Ease of Implementation, good customer support.
What do you dislike about the product?
Limited number of available integrations
What problems is the product solving and how is that benefiting you?
Secureframe helps us streamline SOC 2 and HIPAA compliance.
- Leave a Comment |
- Mark review as helpful
Secureframe helps make SOC 2 easy
What do you like best about the product?
Having Secureframe installed in our AWS environment and reviewing our configurations was a game changer. It really helped us get to a much more secure posture. We now feel that we are in a much better place after doing our SOC readiness and eventual audit. It was such an easy way to find issues and gives you the steps to remedy them.
What do you dislike about the product?
Secureframe is going to find things that are problematic in our configuration. Unfortunately, this means more work for the DevOps group.
What problems is the product solving and how is that benefiting you?
As small start up with only 2 people, securframe gave us the ability to get SOC ready and compliant in relatively short amount of time. We feel that it is helping us stay on top of issues in our environment and preparing us for future audits.
SecureFrame is an exremely valuable compliance tool
What do you like best about the product?
SecureFrame centralizes all of the information you need to achieve compliance. The interface is easy to use, and the integrations allow you to stay on top of changes in your organization.
What do you dislike about the product?
I can't think of any downsides to using this framework.
What problems is the product solving and how is that benefiting you?
We are a small organization, and do not have the time and resources to devote to security compliance that larger organiations do. SecureFrame allows us to understand where we need to apply our effort most efficiently. The document templates are also invaluable.
company that gives you the support you need to pass certifications like SOC2
What do you like best about the product?
You get access to people who know how things are typically documented. A lot of these certifications are essentially documentation exercises and if you know how they are typically done, it becomes a lot easier to complete.
Their tools are constantly improving, they introduce process for things that would be manual otherwise and become a central clearing house for all of your compliance artifacts.
Their tools are constantly improving, they introduce process for things that would be manual otherwise and become a central clearing house for all of your compliance artifacts.
What do you dislike about the product?
Their REST api is kind of barebones right now. You can't look up, for example, which employees are out of compliance at any given moment. It basically allows you to C.R.U.D. custom tests and data, but doesn't let you access the builtin stuff. They're always improving, so i'm sure eventually this data will be exposed via their rest api;.
What problems is the product solving and how is that benefiting you?
they allow us to centralize all of the artifacts we need to pass a SOC2 audit and attest to being GDPR compliant. They help introduce process for something that would be exhausting to do manually. They have automation that looks at your environment and makes sure things are setup properly.
Effortless SOC2 compliance
What do you like best about the product?
Secureframe has made SOC2 compliance easier for us. It is a single source of truth for our company and the auditor. We've been using it for almost 4 years now and the platform has become more functional and convenient over this time.
When we started our SOC2 journey, the Secureframe support team and success manager helped us understand the peculiarities of the SOC2 framework, answered our numerous questions, and guided us through the setup.
One of the best things about Secureframe is the number of available integrations (HR systems, project management tools, version control systems, etc.). These integrations make the compliance process easy and autonomous—data syncs from all your systems into your Secureframe account automatically, and you do not have to worry about having up-to-date data for your auditor.
Another benefit is that your auditor can access your Secureframe workspace and view all your evidence at any time.
You can invite all your team members, store all your security policies there, provide security training for employees, manage risk register and vendors, and many other things.
When we started our SOC2 journey, the Secureframe support team and success manager helped us understand the peculiarities of the SOC2 framework, answered our numerous questions, and guided us through the setup.
One of the best things about Secureframe is the number of available integrations (HR systems, project management tools, version control systems, etc.). These integrations make the compliance process easy and autonomous—data syncs from all your systems into your Secureframe account automatically, and you do not have to worry about having up-to-date data for your auditor.
Another benefit is that your auditor can access your Secureframe workspace and view all your evidence at any time.
You can invite all your team members, store all your security policies there, provide security training for employees, manage risk register and vendors, and many other things.
What do you dislike about the product?
Any system might experience issues. But even if we did - which happened not often - we received fast support and issue resolution.
What problems is the product solving and how is that benefiting you?
The platform automatically syncs data from multiple systems, ensuring our audit evidence remains current for the auditor. Secureframe offers a comprehensive list of SOC2 compliance tests, validated through the data sync. Completed tests are marked accordingly, while those requiring special attention are clearly highlighted. This simplifies the entire compliance process, making it easy to track and manage.
Each test provides information on how to successfully complete it, explains its importance, and even includes templates that can be customized with your own data to help you pass the test.
Additionally, it serves as a single source of truth for both us and the auditor, ensuring we’re always aligned and viewing the same data.
Each test provides information on how to successfully complete it, explains its importance, and even includes templates that can be customized with your own data to help you pass the test.
Additionally, it serves as a single source of truth for both us and the auditor, ensuring we’re always aligned and viewing the same data.
Excellent Software for Compliance Tracking
What do you like best about the product?
Ease of use, overview of training for individuals, status of entire company
What do you dislike about the product?
Inability to adjust some frameworks to be extended beyond pre determined time periods
What problems is the product solving and how is that benefiting you?
Making sure we are 100% compliant (SOC-2, GDPR)
Structure your security controls
What do you like best about the product?
A structured way to follow my organizations security controls, and easy to follow guidelines on how to improve our security posture.
What do you dislike about the product?
The UI could be more intuitive for users who are not that experienced with different security standards.
What problems is the product solving and how is that benefiting you?
Validation of all our applicable security controls and how they are implemented
How Secureframe Revolutionized Our ISO 27001 Compliance Process
What do you like best about the product?
We used Secureframe to streamline our ISO 27001 compliance efforts. Before that, we worked with consulting companies that either had their own, not-so-great compliance tools or had us managing everything manually with Excel files and Dropbox—an incredibly tedious process. A colleague recommended Secureframe, and it’s been a complete game changer for us.
The integration features are outstanding. We connected it to our Azure account (and other SaaS platforms we use), and it immediately identified configuration changes we needed to make. The system provided easy-to-follow instructions to help us harden our setup and ensure compliance with our policies. This automation not only made the process smoother, but it also simplified showing evidence of controls to auditors.
Secureframe’s built-in content management system for policies is another great feature. It tracks version history and allows employees to log in and review policies based on their roles. This ensures everyone is reviewing the required policies annually for compliance.
I also found the Vendor section extremely useful. It enables us to assess and rate the risks associated with our suppliers and keep track of their compliance documents. The integrated risk register is another standout feature. While I could go on about many more features, these are the ones that have been particularly impactful for us.
We just completed our annual surveillance audit, and it went incredibly smoothly. Our external auditor, who’s quite old-school, was initially skeptical of Secureframe, especially its ability to integrate with our systems and provide real-time compliance evidence. By the end of the audit, he said it was the best compliance tool he’d ever seen and planned to recommend it to his clients.
If that wasn’t enough, their support team is fantastic. Our Customer Success Manager, Brandon, is super responsive, often replying to emails within the hour. If he can’t address something immediately, he loops in his team, and they follow up just as quickly.
We couldn’t be happier with Secureframe and are excited to expand its usage as our business scales and we explore support for more frameworks.
The integration features are outstanding. We connected it to our Azure account (and other SaaS platforms we use), and it immediately identified configuration changes we needed to make. The system provided easy-to-follow instructions to help us harden our setup and ensure compliance with our policies. This automation not only made the process smoother, but it also simplified showing evidence of controls to auditors.
Secureframe’s built-in content management system for policies is another great feature. It tracks version history and allows employees to log in and review policies based on their roles. This ensures everyone is reviewing the required policies annually for compliance.
I also found the Vendor section extremely useful. It enables us to assess and rate the risks associated with our suppliers and keep track of their compliance documents. The integrated risk register is another standout feature. While I could go on about many more features, these are the ones that have been particularly impactful for us.
We just completed our annual surveillance audit, and it went incredibly smoothly. Our external auditor, who’s quite old-school, was initially skeptical of Secureframe, especially its ability to integrate with our systems and provide real-time compliance evidence. By the end of the audit, he said it was the best compliance tool he’d ever seen and planned to recommend it to his clients.
If that wasn’t enough, their support team is fantastic. Our Customer Success Manager, Brandon, is super responsive, often replying to emails within the hour. If he can’t address something immediately, he loops in his team, and they follow up just as quickly.
We couldn’t be happier with Secureframe and are excited to expand its usage as our business scales and we explore support for more frameworks.
What do you dislike about the product?
While Secureframe covers all of our major cloud and SaaS providers, I do wish there were a few more integration options available, and in some cases, I’d like the existing integrations to be a bit more robust.
What problems is the product solving and how is that benefiting you?
Secureframe is helping us streamline and automate our ISO 27001 compliance process, significantly reducing manual tasks and simplifying audits. By integrating with our cloud and SaaS platforms, it provides real-time insights into our compliance status, ensures our systems are secure, and makes it easier to demonstrate evidence to auditors. This has not only saved us time and effort but also increased our overall efficiency and confidence in staying compliant.
Secureframe UI
What do you like best about the product?
I really enjoy their Ui layout and the flow of the info
What do you dislike about the product?
Some say that Secureframe limits access for non-users, which can impact collaboration
What problems is the product solving and how is that benefiting you?
Security compliance
Best GRC Tool
What do you like best about the product?
Single pain of glass GRS SaaS tool to prepair for audits.
What do you dislike about the product?
Onboarding emails are getting marked as junk mail via M365 even afer being added to the allow list.
What problems is the product solving and how is that benefiting you?
Secureframe keeps us organized by allowing us to hook into our SaaS apps to for better visibility into vulnerabilities and license assignment. We also published all our policies for employees and contractors to review and accept.
showing 11 - 20