Reviews from AWS customer
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
1,185 reviews
from
External reviews are not included in the AWS star rating for the product.
Simplifying a Complicated Process
What do you like best about the product?
As a founder who does not come from a security background, I really appreciate how SecureFrame clarifies the complex words of SOC 2 with an easy checklist. I understand what controls and evidence mean in real life, now. What’s even better is that their customer support people are incredible. I never feel stupid asking basic questions.
What do you dislike about the product?
Getting everyone to finish their training and acknowledge the policies needed more follow-up than I expected.
What problems is the product solving and how is that benefiting you?
As a B2B SaaS company, we were missing out on deals because we struggled to respond to security questionnaires effectively. Now, we not only have the certification, but we also have a platform that shows our ongoing commitment to security. It’s become a key part of our sales and marketing strategy, helping us build trust with potential clients right from the start.
Simplifies Cloud Compliance & Vendor Security in One Place
What do you like best about the product?
We love how intuitive the platform is centralized dashboards, automated evidence collection and constant monitoring make ongoing compliance and vendor reviews a lot easier.
What do you dislike about the product?
The initial setup can be a bit technical, especially for teams new to compliance tools. More guided steps during integration with cloud platforms would improve the first time experience.
What problems is the product solving and how is that benefiting you?
Secureframe helps us streamline vendor security assessments and meet cloud compliance requirements without heavy manual work. It's a game changer for a lean manufacturing IT team.
Simplified the journey of compliance from Azure to Marketplace.
What do you like best about the product?
The platform's ease of use is exceptional. As the Operations Manager for Bokksu, I do not want to get overwhelmed by technical details. I want an overview.
Rephrase
More
Undo
Secureframe dashboard offers a user-friendly glimpse into compliance status. We connected our Azure Portal environment easily, and evidence collection automated implementation began within no time. Whenever we have questions, their customer support team is always quick to respond. This is essential for a platform that we use every day to check our security posture. The features, especially pre-mapped controls for SOC 2, have saved us tremendous amount of time.
Rephrase
More
Undo
Secureframe dashboard offers a user-friendly glimpse into compliance status. We connected our Azure Portal environment easily, and evidence collection automated implementation began within no time. Whenever we have questions, their customer support team is always quick to respond. This is essential for a platform that we use every day to check our security posture. The features, especially pre-mapped controls for SOC 2, have saved us tremendous amount of time.
What do you dislike about the product?
The basic platform is pretty solid, but the set up for our e-commerce marketplace design needed a few more custom adjustments than I originally envisioned. The other integrations were very useful as they work "out of box" for most cloud configurations, however, changing some of the control mappings to match our Bokksu operations took a bit more time. This is but a small point as it was a flexible process, it just needed a little work upfront.
What problems is the product solving and how is that benefiting you?
We are centralizing our security and compliance efforts with Secureframe since Bokksu is a company that handles customers data.
Rephrase
More
Undo
It's figuring out how to automate evidence collection and policy management. By automating compliance monitoring straight from our Azure infra, it gives assurance to us and our partners regarding our security posture which is a significant asset for our marketplace.
Rephrase
More
Undo
It's figuring out how to automate evidence collection and policy management. By automating compliance monitoring straight from our Azure infra, it gives assurance to us and our partners regarding our security posture which is a significant asset for our marketplace.
Incredibly Efficient Path to SOC 2 Compliance.
What do you like best about the product?
With automation of the evidence collection, things have changed. In my previous role as a security manager, I often spent weeks searching for engineer screenshots and configurations. With Secureframe, everything is automated and centralized. We were able to collect all the data we wanted from the start because of the prebuilt AWS/GCP/Saas integrations. It made an out-of-control project easier and tidy-upable.
What do you dislike about the product?
When a minor configuration is changed, the system may state that it needs review. I get that it is better to be safe, but it is a false alarm for me sometimes. However, their support responds quickly to clear things up, and I think this is a small price to pay for the time we save.
What problems is the product solving and how is that benefiting you?
It solved our biggest worry related to time and cost of SOC 2 Type II compliance that was significant. We were audit-ready and passed it at a much quicker time than anticipated. I have started focusing on security strategy instead of being mired in compliance paperwork with this transition. It has also given our sales team a useful tool for building trust and closing enterprise deals more quickly.
Efficiency and Compliance in Operations: How a Pet Brand Manages Growth
What do you like best about the product?
As the COO of a consumer goods company, I require clear visibility into all of our operational activities, and Secureframe provides exactly that when it comes to compliance. The platform is very user-friendly, allowing me to assess our audit readiness without getting bogged down in technical complexities. Implementation was smooth and efficient—we were fully operational in under 30 days, thanks to AOM’s internal deployment resources. Customer Support acted as a genuine partner, assisting us in tailoring audit templates to fit our specific retail needs. I make it a point to check the platform weekly to review our compliance dashboard, and I appreciate that the range of features is both easy to navigate and thorough. The seamless integration with our e-commerce system and inventory was a major advantage, enabling us to maintain business continuity while enhancing our security.
What do you dislike about the product?
The initial investment for our three-year contract required careful budgeting, but the 30% discount made the long-term value very appealing. We also needed to develop a few custom reports to meet our retail-specific compliance requirements, and Onspring provided support throughout that process.
What problems is the product solving and how is that benefiting you?
Secureframe alleviated our pain point of managing several compliance initiatives across multiple retailers and marketplaces. The partners each had their own security questionnaires, and this overhead was substantial. Now we have a centralized and automated system that stores evidence according to its retention policy, so that no one is in violation of the rules. This has cut compliance effort by 40% (or more) and has been especially helpful as we move into new retail channels who require gated vendor security.
Incredibly Powerful Tool
What do you like best about the product?
Our company became SOC2 certified in 2023. Initially I was part of a team that gathered evidence and documentation in preparation for the audits, but had very little involvement in the process otherwise. This year, we lost our internal lead for this initiative, and I had to quickly step up to prepare for this year's audit.
Throughout this process, our rep, Brandon, has been extremely helpful (and patient!) getting me up to speed. He is responsive and knowledgeable, and seems to really care about helping us with our upcoming audit.
I have no other similar software to compare to SecureFrame, but beyond the stellar customer service, the two things I like best are the ease with which other apps / systems integrate, and the step-by-step instructions on how to provide evidence for failing tests. I'm sure this has saved hours of researching what to do and how to do it! I couldn't be more pleased with how easy it is to use for someone who is just getting their feet wet.
Throughout this process, our rep, Brandon, has been extremely helpful (and patient!) getting me up to speed. He is responsive and knowledgeable, and seems to really care about helping us with our upcoming audit.
I have no other similar software to compare to SecureFrame, but beyond the stellar customer service, the two things I like best are the ease with which other apps / systems integrate, and the step-by-step instructions on how to provide evidence for failing tests. I'm sure this has saved hours of researching what to do and how to do it! I couldn't be more pleased with how easy it is to use for someone who is just getting their feet wet.
What do you dislike about the product?
I've found a couple tests that are failing because (it appears) SecureFrame is mis-reporting evidence from other integrations (primarily Microsoft/Azure). But, it's easy to submit evidence to pass the test.
Beyond that, I haven't yet found any downside.
Beyond that, I haven't yet found any downside.
What problems is the product solving and how is that benefiting you?
Secureframe was selected by former colleagues as the software to use to attain SOC 2 certification. We successfully achieved that in 2023 and maintained status during last year's audit. We are currently prepping for our annual audit next month, and we will rely on the Secureframe tests to help us stay compliant this year. Being SOC 2 certified is a plus for many of our clients and alleviates the need for a lot of legal paperwork that would otherwise be required.
Worth Every Penny for Scaling Startups
What do you like best about the product?
Honestly, it’s the speed. We went from having nothing to being SOC 2 Type I certified in less than 90 days. This was a game changer for our sales cycle. The prebuilt policies and templates provided a solid foundation to work from. Our compliance expert was very responsive and helpful throughout the audit process. Plus, the platform’s interface is user friendly and doesn’t complicate things.
What do you dislike about the product?
Some of the training modules seem a bit too generic for my taste. I’d like to see more options for customizing the security awareness training to match our specific tech stack and threat model. Also, while the core platform is great, some of the advanced features, like HIPAA compliance, still seem like they’re in development compared to the main SOC 2 offering.
What problems is the product solving and how is that benefiting you?
It’s really taking the security overhead off our engineering team’s plate. By automating evidence collection, our developers aren’t constantly interrupted for screenshots or configuration checks. This allows them to focus on building the product. The upside is twofold. We become compliant faster and maintain our development speed, which gives us a significant edge over the competition.
A Project Manager's Dream for Managing Security Compliance.
What do you like best about the product?
What I enjoy the most, however, is how it converts complicated security frameworks into a project plan I can manage.
Rephrase
More
Undo
The capability for Azure integration was the first win, pulling evidence in straight away. The customer support is quite proactive and recommends best practices we didn’t suggest. Though it has many features, ease of use is something else! I can assign tasks to my engineers, set a deadline and see the percentage done like any other project tool. This frequency of use for daily management is invaluable.
Rephrase
More
Undo
The capability for Azure integration was the first win, pulling evidence in straight away. The customer support is quite proactive and recommends best practices we didn’t suggest. Though it has many features, ease of use is something else! I can assign tasks to my engineers, set a deadline and see the percentage done like any other project tool. This frequency of use for daily management is invaluable.
What do you dislike about the product?
We would like to have more granular reporting and possibility of dashboards customized to various stakeholder audiences from a project management perspective While the high level overview is good, specific views for eng leads vs exec mgmt would simplify my reporting. The stakeholders made it relatively easy to implement. The ideal report for those stakeholders took some effort to configure.
What problems is the product solving and how is that benefiting you?
It is solving the problem of visibility and accountability in our compliance efforts. Before Secureframe, it was difficult to know who was responsible for what control and what the status was. Now, everything is tracked within the platform. This benefits me by providing a single source of truth for the entire compliance project, reducing missed tasks and ensuring we meet our audit deadlines efficiently.
Integrating security is important throughout Azure DevOps life cycle
What do you like best about the product?
I like how easy it is to use and that it centralizes compliance monitoring. Before Secureframe, it was a challenge to track security controls for our Azure subscriptions. Now, I have a single pane of glass. The many features offered look very impressive; in particular, automated policy enforcement and real time alerts for misconfiguration. The customer support team is well-informed and has a technical understanding of integration points, which is very important.
What do you dislike about the product?
While it was relatively easy to implement at first, the configuration of more bespoke Azure DevOps pipelines required some back-and-forth with Support to confirm we were pulling all necessary evidence. Moreover, I would like to see even deeper integration with Azure DevOps to track code security scans as control evidence which feels a little bolted on at the moment.
What problems is the product solving and how is that benefiting you?
The effort aims to make compliance the day-to-day norm for a company, rather than a periodic project.
Rephrase
More
Undo
This means we can assure our partners and customers that our security posture on Azure is actively managed and monitored. The sales cycle is shorter and is more trusted since we can demonstrate compliance more quickly.
Rephrase
More
Undo
This means we can assure our partners and customers that our security posture on Azure is actively managed and monitored. The sales cycle is shorter and is more trusted since we can demonstrate compliance more quickly.
Make SOC 2 Achievable With Secureframe 9 Words Paraphrase
What do you like best about the product?
Secureframe makes an often messy process clear and structured. Using the app is very easy as it breaks down SOC 2 requirements into tasks. The ability to run “make” commands directly in Visual Studio Code significantly reduces overhead and speeds up our work processes.We use the platform a few times per week, and the support has been a great experience as they often share best-practice, not just platform answers.
What do you dislike about the product?
For a growing company such as The Sill, the pricing can be a major consideration. While the value is there, it's an investment.
Rephrase
More
Undo
Some more advanced features, namely certain risk management modules, can be difficult to learn and do not feel as well integrated as the more core compliance features. I would like to see these areas mature.
Rephrase
More
Undo
Some more advanced features, namely certain risk management modules, can be difficult to learn and do not feel as well integrated as the more core compliance features. I would like to see these areas mature.
What problems is the product solving and how is that benefiting you?
Secureframe helped solve the problem of not knowing where to start with SOC 2 by providing a clear roadmap, while also automating the most tedious parts. Because we are now achieving compliance faster and with increased confidence, this gives us a competitive edge for our company, The Sill, as we design and scale our marketplace.
showing 141 - 150