Reviews from AWS Marketplace
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
External reviews are not included in the AWS star rating for the product.
Secureframe User
What do you like best about the product?
One-stop solution with a comprehensive list of security compliance requirements. The requirements become applicable based on the adopted standard. Another good part is solution is updated based on changing security compliance needs with most clients using AWS, Azure cloud.
What do you dislike about the product?
It needs manual fine-tuning to ensure the requirements align with adopted security standard. There should be option to filter out and remove bulk NA requirements from an audit plan. This could be enabled during a preassessment or triage state to ensure clients focus working on priority controls.
What problems is the product solving and how is that benefiting you?
One consolidated view of the requirements with policy/ controls, risk assessment, Vulnerability/ config assessment results placed within the same solution.
- Leave a Comment |
- Mark review as helpful
Very Intuitive Platform and Helpful Staff
What do you like best about the product?
What I like most about Secureframe are the integrations it offers with major platforms (e.g. AWS, Microsoft365, etc.) and the helpful walkthroughs on how to fulfill some of the more technical tasks. Once you follow the walkthrough, the test is automatically completed the next time there is a data sync. Secureframe gives you all of the tools you need to organize the work and help you do it faster. In addition to the platform, the staff at Secureframe are very knowledgeable and quick to respond to questions you might have regarding individual tests, the platform itself, compliance standards, etc.
What do you dislike about the product?
No complaints for me. The progress we have seen since we signed on with Secureframe a couple of months ago far exceeds my expectations.
What problems is the product solving and how is that benefiting you?
We are using Secureframe to become SOC 2 and HIPAA compliant. These two certifications will help us draw in more work from clients where standardized security practices are necessary.
Simplified SOC2 process
What do you like best about the product?
SecureFrame provided accessible and knowledgeable staff to support the process.
What do you dislike about the product?
I can't really say. If I needed someone, they had the proper SME abailable.
What problems is the product solving and how is that benefiting you?
Secureframe provided the tool we needed to help us find our security and compliance shortcomings, and supported the mitigation actions required to meet SOC2 requirements.
Great product with a strong support team that makes the process managable and less stressful.
What do you like best about the product?
Progress meter shows where you are in the certification process and helps the team stay focused on the goals.
What do you dislike about the product?
Nothing to dislike. Very happy with the product and support!
What problems is the product solving and how is that benefiting you?
SecureFrame simplifies the complex requirements of security compliance. Their easy-to-use UI and progress status makes it a great tool for our company.
I'm happy we decided to work with Secureframe
What do you like best about the product?
Before contacting Secureframe I was having difficulty knowing where to begin with SOC II compliance. Their platform guides us through the entire process, and anytime I’ve been stuck on something, Brady has been there with a short meeting or email. They'll automate the collection of any information they can, tell you what else you need to collect and then present it in an organized way.
What do you dislike about the product?
Determining what information they want on some templates can sometimes be challenging. I had to reach out to my compliance rep on one occasion. Not a big deal but more examples or hints would be nice.
What problems is the product solving and how is that benefiting you?
Secureframe lets us know what information, policies and procedures we need for compliance and helps us achieve it. It's an incredible time saver. It would have taken much longer if we were doing this on our own.
Great compliance tool
What do you like best about the product?
The integrations that SecureFrame offers when looking to achieve a SOC2 certification are invaluable. As a tool I was very impressed with how concise and driven it's instructions were to assist with our achievement of this goal.
As a user of the tool in the corporate space I would happily recommend this and we have alternative tools that this is now replacing.
As a user of the tool in the corporate space I would happily recommend this and we have alternative tools that this is now replacing.
What do you dislike about the product?
Thinking of downsides for SecureFrame the only thing that comes to mind is that it can be somewhat obtuse when it comes to a large architecture. It can be difficult to find the non-compliant resource, we have worked with SecureFrame though and they are actively working to rectify these issues.
What problems is the product solving and how is that benefiting you?
We are using SecureFrame to work towards SOC2 Type I and will then be continuing our use of the tool to achieve SOC2 compliance. We have great confidence in the tool that it will help us achieve this.
Comprehensive and Easy to Use
What do you like best about the product?
I was impressed by how simple it was to use. The software runs in the cloud and can be accessed from anywhere. The automation features saved us time. The software provides a dashboard with a status overview of compliance, making it simple to identify areas that need attention. It has a user-friendly interface makes it easy for me to get up and running quickly without having to do a lot of training. Secureframe should be seriously considered by any business looking to streamline its compliance management procedures.
What do you dislike about the product?
I have no negative comments about Secureframe since it helps me a lot.
What problems is the product solving and how is that benefiting you?
In my work, i spent a lot of time manually checking if compliance needs are being met, but using Secureframe helps me save time and makes compliance management more efficient.
Planning & Automating our SOC2 Type 2 Audit Process with SecureFrame
What do you like best about the product?
We selected Secureframe as our SOC2 compliance tracking solution after reviewing several software-based solutions as well as service-oriented offerings from qualified auditors. We liked how Secureframe integrated directly with most of the cloud-based applications and solutions we use as a software development company thus saving us much time and effort documenting our environment and approach. We also benefited from the integrated security awareness training that's part of the Secureframe offering making sure our teams and ICs we all current with their security training. Finally, the automated reminders helped ensure everyone responsible for their allocated SOC2 tasks were actively working on them in support of the whole team effort.
What do you dislike about the product?
Overall, we did have to make some adjustments to the way we develop and secure our software offerings which added a lot of expected effort and resource drain but it all turned out well in the end and made us a better team with a better offering. One complaint would be the Secureframe Agent that gets installed on company computers (Windows PCs as well as Macs) weren't always working as expected requiring some manual workarounds with the auditors to ensure compliance.
What problems is the product solving and how is that benefiting you?
Secureframe helped us organize and manage our SOC 2 Type 2 audit efforts as well as updating and consolidating all of our required policies and procedures. We also opted to have our SOC2 Type 2 formal audit performed by Secureframe partner Modern Assurance who were familiar with the Secureframe platform saving additional time/effort.
Like TurboTax for SOC2
What do you like best about the product?
SecureFrame is well organized, and it makes it easy to delegate SOC2 compliance tasks to the appropriate people within the company. It very clearly shows us what remaining work needs to be completed. Additionally, many integrations with other software we are using means we don't have to lift a finger to check a solid 1/3rd of the tests.
What do you dislike about the product?
The biggest headache isn't with Secureframe itself, per se, but often times when we want to integrate SecureFrame with another provider (like AWS, GitHub, our endpoint protection software, etc), the other provider requires us to update our "tier of service" to enable 3rd party connections. It's still worth it, and saves us the man-hours or non-compliance.
What problems is the product solving and how is that benefiting you?
Secureframe helps us manage our SOC 2 Type I and Type II compliance documents and processes. There are responsibilities across IT, HR, Legal, and finance. Secureframe lets us assign an appropriate person and reminds them to take care of their tasks for SOC2.
Overall I enjoyed Secureframe.
What do you like best about the product?
I loved how secureframe integrates with all systems and completes the controls. You can make changes to your system and it will sync up in Secureframe. I also love how secureframe provides templates for policies.
What do you dislike about the product?
There are few things that secureframe can improve is that sometimes syncing with system takes really long time. Secondly, Secureframe doesn't provide steps to complete the control. I wish it should what exactly you can do to fulfil the control. or maybe just show a example
What problems is the product solving and how is that benefiting you?
Instead of hiring more staff to work on controls and policies of ISO and Soc2, We used secureframe interagtion feature to collect evidence and template for the policies.
showing 151 - 160