Reviews from AWS customer
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
52 reviews
from
External reviews are not included in the AWS star rating for the product.
Excellent Way to Automate Third Party Reviews
What do you like best about the product?
- Automated security questionnaires
- The security profile feature is a great way to share your security posture without having to complete questionnaires
- The trust catalog
- The security profile feature is a great way to share your security posture without having to complete questionnaires
- The trust catalog
What do you dislike about the product?
Would be great to be able to import previously provided questionnaires from vendors, but this is not critical. You can always ask the vendor to complete their review on the platform during the next review cycle for that vendor.
What problems is the product solving and how is that benefiting you?
We have been able to build efficiency in our third-party review processes.
Whistic makes supplier risk management easy
What do you like best about the product?
I like the ability to add new vendors, quickly get responses to questionnaires and also see a risk score for each vendor.
What do you dislike about the product?
Nothing yet. Whistic makes it easy to risk assess my vendors.
What problems is the product solving and how is that benefiting you?
Providing my users with the ability to request new vendors via a customized on-boarding questionnaire; automation to ask the new supplier to create my security questionnaire and the ability for suppliers to provide audit reports, documents and questionnaires in a streamlined fashion.
NICE CXone security and compliance- Travis
What do you like best about the product?
I like the simplistic view and not over complicating things with more buttons and views that are not enhancing the outcome.
What do you dislike about the product?
No drag and drop when adding files to the repository.
What problems is the product solving and how is that benefiting you?
Audit and compliance regulations. Due diligence evidence for vendors/clients etc. questionnaires that are custom are very helpful.
Great platform and awesome customer support!
What do you like best about the product?
The Whistic platform is very intuitive, streamlined, and easy to use. In addition, the entire Whistic team has been so great to work with! The Whistic team has supported our needs as we navigate through our custom use case for the platform. They are open to hearing any feature suggestions that we come up with and are always willing to jump on a call with us to learn more about our needs. We have had interactions with multiple teams within Whistic from sales, customer success, product, and engineering, and everyone we have worked with has been fantastic. We are delighted with the platform and, more importantly, the team behind the platform that is helping us deliver on our client's needs.
What do you dislike about the product?
So far, there has been nothing to dislike :)
What problems is the product solving and how is that benefiting you?
We are leveraging the Whistic platform to help facilitate our vendor review and audit process
Exceptional Software and Time Saving
What do you like best about the product?
We receive hundreds of security and compliance-related inquiries. Not one of these requests were ever the same and they involved Excel spreadsheets, Google Docs and other unstructured systems. This made it impossible to ever build a "source of truth". I don't have to read old and outdated security documents no do I dread sharing how we protect and reference our compliance policies.
What do you dislike about the product?
That I didn't find out about the tool sooner.
What problems is the product solving and how is that benefiting you?
Whistic standardized our process and with one button in Salesforce, we proactively send our security posture to the procurement teams.
Recommendations to others considering the product:
Review your past surveys, see how much time it takes you, and measure this. Whistic will save you 10X.
Whistic makes life easy
What do you like best about the product?
I am a newer Security Professional and have found that Whistic makes sharing profiles, reviewing vendors, and getting documents/insights on those vendors a breeze.
What do you dislike about the product?
I haven't found any dislikes at this time. Everything is easy to use and find.
What problems is the product solving and how is that benefiting you?
Being new, I haven't had problems but a day to day process of easily sharing/reviewing makes communication and profile sharing easy.
Recommendations to others considering the product:
Ask questions and make sure you are familiar with each section.
Whistic Risk Management Platform
What do you like best about the product?
We have been using Whistic for a few years now, and I like that they are always making improvements to the platform. I like the use of the Trust Catalog (the completed questionnaire, certificates, and riskcon score.
What do you dislike about the product?
I don't like that the vendor reassessment process is not fully defined. I know they are doing some work in the space. There a some things that need to be done to improve this process. Also, there's not a lot of integration capability out of box.
What problems is the product solving and how is that benefiting you?
Vendor risk assessment and management.
Fantastic Solution
What do you like best about the product?
I love that the Sales team can manage the flow of due diligence information through a very stable SalesForce integration.
What do you dislike about the product?
I wish I could bulk download policies and questionnaire responses.
What problems is the product solving and how is that benefiting you?
There is no longer a wait time for Sales to get documents out; the integrated click-through NDA and the ability for the client to receive information is excellent.
Wouldn't have got SOC 2 certification without Whistic - it does the work no one wants to do!
What do you like best about the product?
Vendor risk assessments are not the "sexiest" thing in cybersecurity & not something anyone gets excited about doing. Still, they are a fundamental requirement of any effective security program &, as highlighted by recent data breaches, are a real concern to any company using or providing hosted services. Whistic makes this task both much more automatic and effective - it allows me to focus on more critical (& maybe more fun) tasks. If you are trying to run a security program with limited resources, then Whistic is a must. IT allows me to keep on top of assessing 100+ vendors by myself. This effort went under significant scrutiny as part of the SOC 2 & ISO 27001 certification process we recently underwent & I can safely say without Whistic we would not have obtained certification. Its automation & ease of use combined with fantastic reporting & ease of evidence sharing for auditors make it one of my must-have tools to build or mature any security program.
What do you dislike about the product?
There are some tweaks I'd like to see, including the ability to sort by multiple columns rather than a single column, a mobile app to give visibility to key metrics on the go, or the ability to scrape from vendor websites & pre-approve larger enterprises (e.g. auto-download security certification from AWS & approve without me having to contact etc).
The other area for improvement is the development of the eco-system. The more vendors they can get to create & maintain security profiles the better this approach becomes & in doing so they will establish themsleves as fundamental to all security leaders.
The other area for improvement is the development of the eco-system. The more vendors they can get to create & maintain security profiles the better this approach becomes & in doing so they will establish themsleves as fundamental to all security leaders.
What problems is the product solving and how is that benefiting you?
We don't have the resources, or the desire, to approach vendor risk in the traditional way by sending out, chasing, re-chasing & then reviewing questionnaires. Whistic solves that problem for us by automating the process & by providing a very easy to use user interface as well as a great way to catalogue & provide auditable processes.
The security profile is a revalation! We are very transparent in our approach to security & it allows us to proactively share all our policies/procedures, self-assessments, certifications & external audit/pen testing with leads early in the sales cycle. It has significantly reduced the volume & size of security questionnaires we are being sent & driven short sales cycles.
The security profile is a revalation! We are very transparent in our approach to security & it allows us to proactively share all our policies/procedures, self-assessments, certifications & external audit/pen testing with leads early in the sales cycle. It has significantly reduced the volume & size of security questionnaires we are being sent & driven short sales cycles.
Recommendations to others considering the product:
Get it! It makes vendor risk management so much easier. If you have a small team & need to focus their efforts on other things, this is as near to automation of VRM as you can get!
Ease Your Third-Party Assessments Using Whistic
What do you like best about the product?
Whistic is a simple-to-use third-party assessment platform that has significantly eased the pain of our assessments to be conducted in different jurisdictions with differing requirements owing to the availability of custom questionnaires. Compliant Answers have allowed us to spend less time reviewing answers to standard questions and more time on descriptive answers. The team has also been receptive to feedback and incorporated some of the feature requests in subsequent releases.
What do you dislike about the product?
We had some difficulty integrating Whistic with our identity provider for SAML SSO authentication, but it was sorted through subsequent discussions with the support team.
Also, when creating a new questionnaire from an existing questionnaire, the settings for Compliant Answers for questions are not copied over, which makes it hard to set the Compliant Answers, especially when duplicating long questionnaires.
Also, when creating a new questionnaire from an existing questionnaire, the settings for Compliant Answers for questions are not copied over, which makes it hard to set the Compliant Answers, especially when duplicating long questionnaires.
What problems is the product solving and how is that benefiting you?
Whistic has helped us to meet our compliance requirements on third-party assessments across jurisdictions, even with a small team, while delivering significant time savings due to the automations in place.
showing 31 - 40