Sign in
Sign in
or
Create a new account
Categories
Your Saved List Become a Channel Partner Sell in AWS Marketplace Amazon Web Services Home Help

Secureframe Automated Security, Privacy & Compliance Platform

Secureframe

Reviews from AWS customer

0 AWS reviews
  • 5 star
    0
  • 4 star
    0
  • 3 star
    0
  • 2 star
    0
  • 1 star
    0

External reviews

1,083 reviews
from

External reviews are not included in the AWS star rating for the product.

    Lesley C.

Continuous Compliance, Zero Guesswork

  • August 15, 2025
  • Review provided by G2

What do you like best about the product?
This software includes automated evidence collection (cloud/HR/ticketing tools) and real-time drift alerts. Strong policy templates that can be tailored to your organization and centralized vendor risk management. Auditors love our exports — audit prep was reduced by 50%.
What do you dislike about the product?
In-app policy editor is rudimentary; more formatting features could go a long way. The Secureframe Agent sometimes reports BitLocker status incorrectly (false positives).
What problems is the product solving and how is that benefiting you?
With a small team you can now manage SOC 2. Controls, tests, and evidence are all in one place on Secureframe so we stay audit-ready.

    Daniel M.

GRC Clarity for Mid-Market Growth

  • August 15, 2025
  • Review provided by G2

What do you like best about the product?
Secureframe makes compliance less of a blackbox to give engineers clear, evidence-based prompts (e.g. "Source DOCX for AWS screenshots to document availability controls," etc.). The guided workflows were awesome for first time, and the vendor risk module really made third-party assessments a breeze. Implementation was easy and the customer support seems super active & friendly manners.
What do you dislike about the product?
The control verbiage is not totally aligned with the expectation of what those “Points of Focus” should be, according to the auditors. Other aspects lean more towards checklist than audit.
What problems is the product solving and how is that benefiting you?
Secureframe is a big win as we move from SMB to mid-market, allowing us to adopt security best practices more quickly and get ready for evidence. That said, it's at least a good base for some of the things we flesh out with auditor comments.

    Computer Software

Solid Compliance Platform with Excellent Integrations and Support

  • August 15, 2025
  • Review provided by G2

What do you like best about the product?
Secureframe is incredibly easy to use, even for team members who are not deeply technical. The interface is intuitive, and navigating between different compliance requirements and integrations feels seamless. Implementation was straightforward, and the onboarding process made it simple to get up and running quickly. Their customer support is exceptional, with every interaction being with someone knowledgeable, friendly, and able to provide clear answers to both platform-specific and general compliance questions. The number of features is impressive for the price, especially when compared to alternatives like Drata, and the ease of integration with a wide variety of SaaS solutions has saved us countless hours of manual work. We use the platform frequently throughout the week to check progress toward SOC 2 and other compliance standards, and it has significantly improved our ability to track and maintain our security posture.
What do you dislike about the product?
The platform is still growing, which means that while new features are added often, they occasionally come with bugs that need to be addressed. These are usually resolved quickly, but they can be mildly disruptive. The pace of changes is fast, and while that is generally positive, it sometimes introduces temporary instability. It is clear the product is evolving rapidly, and although that brings some short-term challenges, the improvements over time have been substantial.

I would love to see Secureframe introduce automated analysis for manually uploaded evidence. While I understand this can be computationally demanding, it would be an incredibly valuable feature to help ensure that the evidence being gathered is accurate and complete. The current manual upload method causes the test to pass, regardless of what is uploaded.
What problems is the product solving and how is that benefiting you?
Secureframe is helping us centralize and automate our security compliance efforts, particularly for SOC 2 and other industry standards. By integrating with our existing SaaS tools, it reduces the manual work of tracking controls and evidence, gives us real-time visibility into our compliance posture, and ensures we stay audit-ready year-round. This saves time, reduces errors, and allows our team to focus on higher-value security and IT initiatives.

    Jessica D.

Simplified Multi-Framework Compliance

  • August 15, 2025
  • Review provided by G2

What do you like best about the product?
Our SOC 2 and HIPAA control mapping was launched not in weeks, but days. AWS logs auto-collected for us, taking the drudgery out of grep/kubectl; and I'm sure as heck not going to ask anyone to save me chat logs anymore when we suddenly needed an audit trail courtesy of our vendors. Questions about the overlap of GDPR and HIPAA were also answered by customer support in a day or so, even if they were nuanced. Yesterday we replaced our (clunky) SAML workflows to use it daily for access reviews and training compliance.
What do you dislike about the product?
Limited in Report Export: Reporting is less flexible and allows for only a single custom export. And though most integrations are smooth, a couple tools that you need to run on-prem (anyone still have a physical asset tracker tool?) requires manual uploads.
What problems is the product solving and how is that benefiting you?
We are now multiple weeks ahead of audit prep — Secureframe transparency throughout the dev process kept us accountable as a team. Cut security questionnaire response time by 60% and flagged misconfigurations early.

    Chad M.

From Overwhelmed to Audit-Ready in Weeks

  • August 15, 2025
  • Review provided by G2

What do you like best about the product?
From an IT Manager perspective that has to manage SOC 2 & ISO 27001, the automated workflows from Secureframe saves us hundreds of hours. 90% of the evidence collection was done leveraging the Azure AD/GitHub integrations while the Policy Library acted as a head start.Support team guided us through tedious custom architecture setups. There is just no alternative to the dashboard that performs the real-time gap analysis.
What do you dislike about the product?
The onboarding process was seamless, albeit intensive — a few teams needed their hands held. Some on-prem systems (like our on-prem asset tracker) have no such native integration so they require CSV upload.
What problems is the product solving and how is that benefiting you?
SOC 2 was required by enterprise contracts, but we had no full-time security employees. Secureframe took care of 70% of the work for us, we accelerated sales cycles and we gained round-the-clock visibility of compliance.

    Michael W.

Eliminated Compliance Chaos

  • August 15, 2025
  • Review provided by G2

What do you like best about the product?
For me, by working with Secureframe and using the automated evidence collection (in particular for Jira & Google Workspace) what was previously a SOC 2 compliance nightmare became pretty much a hands-off experience. We were very excited about the pre-built policy templates which would save us weeks of work, and also a dashboard that other products offer for tracking gaps in real time. We had one small problem with setting up GitHub, which we solved in a few hours (thanks support!) The platform is user-friendly — somuch to the extent that even non-technical executors can view compliance status without any intervention from IT.
What do you dislike about the product?
Mobile experience is sluggish Want a more simple way to go in admin mode on my smartphone. The downside is that contextual alerts are vague, they do not tell you much; you need to click through several timeframes. They still require you to manually upload your evidence in some tools (e.g. our currentHR system) but the team are working on more wider integrations.
What problems is the product solving and how is that benefiting you?
Instead of always audit scrambling we did it in a manner suitable to be "audit-ready" at all time so cut our electron-to-electron time back down. Our sales cycle also improved as we are instantly proving our compliance and making sure the security posture is perceived well — all 24/7.

    Marketing and Advertising

Seamless - that's a one-word review for secureframe

  • August 15, 2025
  • Review provided by G2

What do you like best about the product?
Effortless Integrations: The ability to connect with services like AWS, Azure, and GitHub provides a centralized view of our security posture. This eliminates manual checks and ensures we are always up-to-date. and tests for each integration along with details for how to pass a specific test related to a certification and shows our progress

Comprehensive Compliance Monitoring: We can easily track our progress toward key certifications like SOC 2, GDPR, and ISO 27001. The platform consolidates all the necessary information, making it simple to see our compliance status at a glance.

Streamlined Onboarding: The integration with our HR portal is invaluable. We can automate the process of onboarding new staff, ensuring they receive and acknowledge all required security and compliance information from day one.

Centralized Information Hub: The platform serves as a single source of truth for all things compliance. We can access and review important documents, manage staff information, and monitor our overall compliance status in one place.
What do you dislike about the product?
Some time status doesn't update for few connections - and it was hard to figure out what else needed to be done. For ex certain PRs would fail but we follow all instruction on the test - but doesn't update. but we can add comments and upload evidence.
What problems is the product solving and how is that benefiting you?
We used secure frame for our SOC2, GDPR compliance.

    Thomas B.

How Secureframe Reinvented Our Audit Management

  • August 15, 2025
  • Review provided by G2

What do you like best about the product?
We hired manager of security (thus de-facto COO—same thing) who gave us an offer he could not refuse: to compare and sign the contract with Secureframe on our company behalf. Automated evidence collection and real-time compliance dashboards cut 80% of pre-audit scrambling. Our auditors used to spend weeks onsite and this has now been reduced to, only a couple of days as everything's pre-organized and verified.
What do you dislike about the product?
Reporting is not as customizable (eg, for executive board presentations), and sometimes the API rate limits are a bottleneck when you have very large audits that result in lots of data pulls/offloads.
What problems is the product solving and how is that benefiting you?
Your review tool help reduced finding you by 65%, audit preparation cost saved of 40% Secureframe Bolsters Compliance-as-Operational Risk For Pytorch COOs Protect Your Artificial Intelligence

    Rodrigo V.

Secureframe turned our AWS evidence into SOC 2 & ISO 27001 wins

  • August 15, 2025
  • Review provided by G2

What do you like best about the product?
Secureframe makes continuous compliance in AWS straightforward. The native AWS integrations (CloudTrail, Config, Security Hub, GuardDuty, IAM, S3/RDS/KMS, etc.) light up quickly and the out-of-the-box tests map cleanly to SOC 2 and ISO 27001 controls. I especially like how evidence is auto-collected and tied to specific controls, so I’m not chasing screenshots or ad-hoc exports. The tasking and workflows keep our team focused, and the dashboards make it obvious where we’re passing, drifting, or need to remediate. Their policy templates and auditor-friendly evidence packages have made audit prep much calmer.
What do you dislike about the product?
Mostly nits. A few AWS tests can be a bit strict Initial IAM permission setup took a moment of back-and-forth to align with our least-privilege standards. None of these were blockers, and once dialed in, the signal-to-noise has been excellent.
What problems is the product solving and how is that benefiting you?
Secureframe solves the revenue, gating problem of security compliance. For the enterprise deals we pursue, SOC 2 and ISO 27001 are now table stakes. Without them, procurement won’t move forward.

    Market Research

SecureFrame definitely helps our SaaS Co achieve and stay compliant using less internal resources

  • August 15, 2025
  • Review provided by G2

What do you like best about the product?
Some of the things I like best about SecureFrame are the extensive resources and templates it offers, the automation of compliance tests, the ability to easily view an overview of our ISMS health, and the dedicated success manager who collaborates with our security team year-round to help us achieve certification.
What do you dislike about the product?
While there are still some missing features for tracking risks and the downloadable agent our employees use to track their laptops isn’t perfect, I’ve seen definite improvements thanks to our feedback, and despite these dislikes, I would still highly recommend the product.
What problems is the product solving and how is that benefiting you?
SecureFrame has addressed our challenges—like not having full-time security staff, missing policies, and knowledge gaps—by streamlining and automating compliance processes, which enabled our team to successfully achieve initial certification in two frameworks in under 16 months.

showing 311 - 320