Reviews from AWS customer
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
957 reviews
from
External reviews are not included in the AWS star rating for the product.
A Compliance Game-Changer for Fast-Growing Companies
What do you like best about the product?
Secureframe has helped us scale compliance without slowing down operations as a CEO. We were able to easily automate policy attestations and employee training, integrating with Google Workspace and Microsoft 365. They also have excellent customer support, and they walked us step-by-step in preparing for SOC 2 Type II which saved us months of work doing it ourselves. It has daily set frequency usage, is feature rich (e.g. vendor risk assessment etc) comparable to enterprise tools but at less than fraction of the cost.
What do you dislike about the product?
There's some back-and-forth to get your custom controls mapped on the first setup; and their integration with Paycor seemed kind of limited compared to other HRIS tools. Although it is easy to use, our non-technical team members do find it hard to navigate the audit trail.
What problems is the product solving and how is that benefiting you?
Secureframe removes compliance as a growth hindrance. The solution helped to onboard new enterprise clients faster by serving compliance proof in real time which resulted in reduced audit costs by 40%, as evidences can be collected automatically.
Excellent Platform for Security & Compliance Management
What do you like best about the product?
We’ve had a great experience using Secureframe. The platform is intuitive, well-structured, and makes the process of achieving and maintaining compliance much more efficient.
Secureframe has not only streamlined our compliance process but also given us greater confidence in our overall security posture.
Secureframe has not only streamlined our compliance process but also given us greater confidence in our overall security posture.
What do you dislike about the product?
If there’s one area for improvement, it would be adding even more customization options for reporting, as that would make it easier to adapt dashboards to specific internal needs.
What problems is the product solving and how is that benefiting you?
Secureframe is helping us streamline and automate our security and compliance processes, reducing the manual effort and complexity involved in meeting frameworks like SOC 2 and ISO 27001. It centralizes evidence collection, integrates smoothly with our existing tools, and keeps us audit-ready year-round. This has saved us significant time, minimized the risk of human error, and given us greater confidence in our overall security posture.
Must have framework for SOC compliance
What do you like best about the product?
SecureFrame is a manager for your SOC audits. We'd have to hire someone at a much higher cost to do what SecureFrame automates for us. The user interface is relatively easy to understand and we generally had a bug free experience. Customer support is there for you if needed. The application continues to improve over time.
What do you dislike about the product?
Product is amazing but the sales process/contract renewal adds work to your plate. Wish they had transparent/Tesla like pricing on the website instead of a negotiation process.
What problems is the product solving and how is that benefiting you?
SOC readiness
United Way Review SF
What do you like best about the product?
SecureFrame is an excellent tool for organizations navigating GRC compliance for the first time. What I appreciate most is its evidence-based approach—it clearly outlines what documentation is needed for each compliance requirement, saving us from digging through lengthy regulatory texts.
For example, it might prompt us to provide a screenshot of our AWS environment to support availability, and then guide us on how to demonstrate storage capacity, such as memory usage, with precision.
For example, it might prompt us to provide a screenshot of our AWS environment to support availability, and then guide us on how to demonstrate storage capacity, such as memory usage, with precision.
What do you dislike about the product?
Our auditors have highlighted that while the current control wording in Secureframe is useful for evidence collection, it doesn’t fully support audit readiness—especially around the Points of Focus. There’s an opportunity here to enhance the features and alignment to better meet audit expectations for its customers.
What problems is the product solving and how is that benefiting you?
We are trying to be Security Compliance ready, we are small medium sized business turning into a mid size enterprise. Its helping us get Security Compliant ready, its benefiting us for getting the evidence prepared for our audit and also helping us understand what the cybersecurity best practices are in short simple understanding!
Great for managing your compliance obligations across the board
What do you like best about the product?
A single platform to manage all compliance obligations—HIPAA, GDPR, SOC 2, ISO 27001, and more. I like that Secureframe centralizes compliance tasks and automates evidence collection, making it much easier to maintain these frameworks without heavy manual effort.
What do you dislike about the product?
I wish the policy management and editing tool allowed in-platform editing instead of requiring changes outside the tool. Additionally, uploading policies one at a time can be tedious, especially when managing 50+ policies.
What problems is the product solving and how is that benefiting you?
Secureframe streamlines compliance by automating evidence collection, tracking controls, and centralizing documentation for multiple frameworks like SOC 2, ISO 27001, HIPAA, and GDPR. This reduces manual effort, minimizes the risk of missed requirements, and shortens audit preparation time.
Amazing
What do you like best about the product?
What I like best about Secureframe is how incredibly easy and fast it makes the entire compliance process. The AI-driven automation takes away so much manual work, and the continuous monitoring across multiple cloud services gives me peace of mind that nothing will slip through the cracks. It’s a huge time saver and really helps us stay audit-ready at all times.
What do you dislike about the product?
Honestly, there’s very little to dislike about Secureframe. If anything, I’d say the platform is so comprehensive that it took a bit of time to explore all the features, but once we got familiar with it, that depth became one of its biggest strengths.
What problems is the product solving and how is that benefiting you?
Secureframe is helping us simplify and accelerate the entire compliance process for standards like SOC 2 and ISO 27001. Instead of spending months gathering evidence and manually tracking controls, we can get compliant in weeks while the platform continuously monitors our systems. This not only saves us significant time and resources but also gives our customers confidence that we take security and compliance seriously.
A Game-Changer for Cloud Compliance, But Needs Polish
What do you like best about the product?
We found it incredibly easy to integrate with Azure and FreshService — connecting our cloud resources and ticketing system was very straightforward. It also have real-time alerts on mis-configurations (eg open / unencrypted S3 buckets) which are great. We use customer support to lead us through the complicated paths of HIPAA mappings and it's used every day as we have automated evidence collection. Feature rich, especially for cloud-native teams.
What do you dislike about the product?
Navigation: multi-cloud setups become less simple to navigate (AWS + Azure or similar). There are limited advanced formatting options in the policy editor and some of the API endpoints available feel only semi-documented for higher level integration_DONE Non-standard deployment This necessitated a few scripting workarounds in the implementation.
What problems is the product solving and how is that benefiting you?
We bridge the gap between cloud operations and auditors. Auto-remediation of issues such as excessive IAM permissions has reduced our compliance-related downtime; this saves us around 20 hours a month on manual reviews.
We replaced multiple tools with SecureFrame and haven't looked back
What do you like best about the product?
Being able to select the compliance standards mandated by your company (HIPAA, HITRUST, etc.) and then getting instant scoring based on submitted policies has been a game-changer for us. Plus our employees appreciate the quick process of reviewing and approving policies as they are updated in the system. Finally, collecting artifacts (evidence) to back up our compliance has been very easy. Audits have never been so smooth!
What do you dislike about the product?
Cost relative to other packages, but in our view, it's worth it.
What problems is the product solving and how is that benefiting you?
Having all artifcats in one place for auditors to hit is the main benefit.
Comprehensive security platform for our business
What do you like best about the product?
Dashboard that helps me monitor my company's security profile and our team's compliance. Secureframe is easy to use with reminders and configurable reports that I can assign tasks from to ensure that we are in compliance throughout the year and during our SOC2 certification process.
What do you dislike about the product?
At times it doesn't detect the latest information on some employees computers, takes some manual prompting to update
What problems is the product solving and how is that benefiting you?
Secureframe monitors our employees and contractors compliance with security policies, and also ensures that our vendors are in compliance.
Good GRC tool for Soc2 and other compliance frameworks
What do you like best about the product?
This was my first time managing an audit for a company and the Secureframe platform made the process very straightforward. The Secureframe team has been fantastic and answered questions within hours, which was especially critical when our audit window was about to end. The Trust Center was easy to configure and now allows prospects to retrieve our Soc2 and Soc3 reports in a self-serve fashion. The platform has pre-built integrations for all major systems we us, which significantly cut down on the time it took us to collect evidence. Now that we have gone through our first Soc2 audit, I log in 2-3 times a month to ensure every compliance test is passing. Of all providers we reached out and did demos with (Vanta, Drata, Sprinto), Secureframe seemed to provide the best value for the price and I would go with Secureframe again.
What do you dislike about the product?
There were definitely some oddities to work around, especially when it comes to the integration with our HR system, which often lead Secureframe to wrongly mark employees as contractors, or misclassified employees that are no longer with the company. This took some time to get to a stable state, but now works rather well. The other area of concern was the Secureframe agent and the related policy set for MacBooks, which took many employees several tries to get right, even though we had written up our own step-by-step instructions with screenshots, so this process could be simplified.
What problems is the product solving and how is that benefiting you?
Secureframe takes care of our evidence management and lets us know what we need to provide for audits and what things we need to change. We don't have a specific compliance person on staff, so without a platform like Secureframe it would have been very hard for us to get everything together we need to pass an audit. The fact that auditors know Secureframe and have access to our evidence made the audit process a lot more straightforward than I expected.
showing 351 - 360