Reviews from AWS customer
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
1,183 reviews
from
External reviews are not included in the AWS star rating for the product.
Ideal at scaling banks.
What do you like best about the product?
Secureframe maintains our rules and guidelines in balance with minimum manual efforts. AWS integrations and Google Workspace are really good.
What do you dislike about the product?
Mid sized institutions could be more flexible in pricing.
What problems is the product solving and how is that benefiting you?
Having a number of structures to deal with as we grow global.
secureframe for SOC2
What do you like best about the product?
Customer Service was fantastic, not just software but compliance advice and technical help.
What do you dislike about the product?
Frequent bugs, but customer service promptly just aid "I'll get this fixed" and followed up in a day or two with resolution.
What problems is the product solving and how is that benefiting you?
Prior to secure frame, it took months and ~ 40k to complete a SOC assesment, after it took weeks and cost $10k
Uncomplicated, contemporary and useful.
What do you like best about the product?
Secureframe ensures that one can know what the auditors expect. The real time status dashboard enables the management to be confident.
What do you dislike about the product?
It has some documentation that is very US-centric.
What problems is the product solving and how is that benefiting you?
Lessening the time experienced in preparing audit evidence and closing gaps in compliance.
Outstanding Support Team Makes All the Difference
What do you like best about the product?
The technical support staff is second to none. They are incredibly friendly, knowledgeable, fun to work with make every effort to find an answer for even the toughest problems. If they don't know, they'll find out! (but they usually know)
What do you dislike about the product?
User management leaves a lot to be desired and audit processing, although I know that is inthe works to be overhauled.
What problems is the product solving and how is that benefiting you?
SecureFrame is helping maintain our frameworks adn track timelines to remind us when things are due as wel las giving us great information on how to pass tests, format evidence and other helpful details that make life a lot easier
Comprehensive Compliance Made Easy with Robust Integrations and Automation
What do you like best about the product?
Multi-Framework Support
Secureframe supports over 14 compliance frameworks, including:
SOC 2
ISO 27001
HIPAA
PCI DSS
GDPR
CCPA
This makes it suitable for organizations with diverse regulatory needs.
Extensive Integrations
Offers 200+ integrations with popular tools like AWS, GitHub, Jira, Azure, Google Workspace, and more—streamlining evidence collection and control monitoring.
Automated Evidence Collection
Secureframe automates many manual compliance tasks, helping teams prepare for audits faster and with less effort.
Real-Time Compliance Monitoring
Businesses can monitor their compliance posture in real time, enabling proactive risk management and faster issue resolution.
Employee Security Training
Built-in training modules help ensure that employees are aware of security best practices, which is often a requirement for frameworks like SOC 2 and HIPAA.
Risk & Vendor Management Tools
Includes features for assessing vendor risks and managing internal controls, which are critical for maintaining compliance.
Audit Readiness Support
Secureframe is designed to help teams reach audit readiness quickly—often within a couple of months for SOC 2 Type I.
Expert Support
Users report responsive support from compliance specialists, often within one business day.
Clean and Intuitive Interface
Especially helpful for first-time compliance teams, Secureframe’s UI is simple and easy to navigate.
Affordability for Startups
Pricing tiers (starting around $1,500/year) make it accessible for smaller companies looking to achieve initial compliance.
Secureframe supports over 14 compliance frameworks, including:
SOC 2
ISO 27001
HIPAA
PCI DSS
GDPR
CCPA
This makes it suitable for organizations with diverse regulatory needs.
Extensive Integrations
Offers 200+ integrations with popular tools like AWS, GitHub, Jira, Azure, Google Workspace, and more—streamlining evidence collection and control monitoring.
Automated Evidence Collection
Secureframe automates many manual compliance tasks, helping teams prepare for audits faster and with less effort.
Real-Time Compliance Monitoring
Businesses can monitor their compliance posture in real time, enabling proactive risk management and faster issue resolution.
Employee Security Training
Built-in training modules help ensure that employees are aware of security best practices, which is often a requirement for frameworks like SOC 2 and HIPAA.
Risk & Vendor Management Tools
Includes features for assessing vendor risks and managing internal controls, which are critical for maintaining compliance.
Audit Readiness Support
Secureframe is designed to help teams reach audit readiness quickly—often within a couple of months for SOC 2 Type I.
Expert Support
Users report responsive support from compliance specialists, often within one business day.
Clean and Intuitive Interface
Especially helpful for first-time compliance teams, Secureframe’s UI is simple and easy to navigate.
Affordability for Startups
Pricing tiers (starting around $1,500/year) make it accessible for smaller companies looking to achieve initial compliance.
What do you dislike about the product?
Limited Customization
Users report that Secureframe lacks flexibility in customizing workflows, templates, and controls—especially for complex or non-standard compliance needs.
Integration Challenges
While Secureframe supports many integrations, users have faced issues with:
Custom applications not being detected properly.
Work management tools (e.g., Asana, Monday.com) not integrating well, forcing teams to track tasks manually within Secureframe.
Initial Setup Confusion
Some users find the onboarding and navigation experience unclear, especially during the first-time setup.
Missing Features
Requests for:
Better test management tools
More industry-specific training materials
Enhanced regional compliance templates
Cost for Smaller Teams
Although pricing is competitive for mid-sized companies, early-stage startups may find it expensive if they don’t need all the features.
Over-Reliance on Automation
In some cases, automation can oversimplify nuanced compliance tasks, requiring manual intervention or expert guidance.
Vendor Risk Management Limitations
While Secureframe includes vendor management, users have noted that it lacks depth compared to dedicated third-party risk platforms.
Users report that Secureframe lacks flexibility in customizing workflows, templates, and controls—especially for complex or non-standard compliance needs.
Integration Challenges
While Secureframe supports many integrations, users have faced issues with:
Custom applications not being detected properly.
Work management tools (e.g., Asana, Monday.com) not integrating well, forcing teams to track tasks manually within Secureframe.
Initial Setup Confusion
Some users find the onboarding and navigation experience unclear, especially during the first-time setup.
Missing Features
Requests for:
Better test management tools
More industry-specific training materials
Enhanced regional compliance templates
Cost for Smaller Teams
Although pricing is competitive for mid-sized companies, early-stage startups may find it expensive if they don’t need all the features.
Over-Reliance on Automation
In some cases, automation can oversimplify nuanced compliance tasks, requiring manual intervention or expert guidance.
Vendor Risk Management Limitations
While Secureframe includes vendor management, users have noted that it lacks depth compared to dedicated third-party risk platforms.
What problems is the product solving and how is that benefiting you?
Manual Compliance Workflows
Traditional compliance involves spreadsheets, emails, and manual evidence collection. Secureframe automates these tasks, reducing human error and saving time.
Audit Readiness Delays
Preparing for audits like SOC 2 or ISO 27001 can take months. Secureframe accelerates this by guiding teams through readiness checklists and automating control monitoring.
Fragmented Tool Ecosystems
Evidence often lives across AWS, GitHub, Google Workspace, etc. Secureframe integrates with 200+ tools to centralize and continuously sync compliance data.
Lack of Real-Time Visibility
Without dashboards, it’s hard to know your compliance posture. Secureframe provides real-time monitoring and alerts for control failures or risks.
Vendor Risk Management Gaps
Many companies struggle to assess third-party risks. Secureframe includes tools to track vendor compliance and automate risk assessments.
Employee Training & Policy Management
Secureframe helps deploy security training and manage policy acknowledgments, which are often required for frameworks like HIPAA and SOC 2.
Traditional compliance involves spreadsheets, emails, and manual evidence collection. Secureframe automates these tasks, reducing human error and saving time.
Audit Readiness Delays
Preparing for audits like SOC 2 or ISO 27001 can take months. Secureframe accelerates this by guiding teams through readiness checklists and automating control monitoring.
Fragmented Tool Ecosystems
Evidence often lives across AWS, GitHub, Google Workspace, etc. Secureframe integrates with 200+ tools to centralize and continuously sync compliance data.
Lack of Real-Time Visibility
Without dashboards, it’s hard to know your compliance posture. Secureframe provides real-time monitoring and alerts for control failures or risks.
Vendor Risk Management Gaps
Many companies struggle to assess third-party risks. Secureframe includes tools to track vendor compliance and automate risk assessments.
Employee Training & Policy Management
Secureframe helps deploy security training and manage policy acknowledgments, which are often required for frameworks like HIPAA and SOC 2.
Continuous Innovation and Free Implementation Set This Tool Apart
What do you like best about the product?
Free and fast implementation, simple to use, integrations that just work, responsive support, and a complete SOC 2 feature set. We use it daily.
What do you dislike about the product?
Pricing feels unclear and hard to plan around. Clearer tiers and packaging would help. Advanced learning is also lacking depth.
What problems is the product solving and how is that benefiting you?
Secureframe centralizes our SOC 2 evidence and documents, continuously monitors controls, and automates testing across our stack. The result is faster audits, fewer manual tasks, clear ownership, and an audit ready posture year round.
Keeps us compliant while we scale fast.
What do you like best about the product?
Secureframe fits perfectly with our cloud stack and eliminates the trial and error of SOC 2 and ISO 27001. The observing and reminders save our staff hours in a week.
What do you dislike about the product?
The report exports can be made a bit more customizable.
What problems is the product solving and how is that benefiting you?
Ongoing engineering/risk compliance management in the expansion into new products.
The next level of compliance automtion.
What do you like best about the product?
Secureframe is expandable and is easily scalable. The control library and automation are saving phenomenal amounts of time and the platform allows us to see the transparency of each framework we are following.
What do you dislike about the product?
Onboarding was a carefully planned issue in the beginning, yet the long-term compensation will be justified.
What problems is the product solving and how is that benefiting you?
Automating the compliance documentation and tracking within fast moving teams and across multiple standards.
Saves time and creates customer trust.
What do you like best about the product?
Secureframe allows the management of several compliance frameworks on the same dashboard without trouble. The automation has minimized repetitive work and we currently have uniform evidence on international teams.
What do you dislike about the product?
Greater customization of reporting would be excellent in bigger businesses.
What problems is the product solving and how is that benefiting you?
Which issues are you resolving using the product?
Increasing the pace of audit and providing uniformity of controls to the global financial operations.
Increasing the pace of audit and providing uniformity of controls to the global financial operations.
Effortless Compliance Tracking with Intuitive Dashboards
What do you like best about the product?
Compliance tracking is no longer a chore. Secureframe’s dashboards and automated evidence collection save hours, and the platform is intuitive for the whole team.
What do you dislike about the product?
Learning some advanced reporting features took a few days, but now we can track everything in real-time.
What problems is the product solving and how is that benefiting you?
Eliminated manual audits and reduced the stress of vendor and internal compliance management.
showing 11 - 20