Reviews from AWS customer
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
1,157 reviews
from
External reviews are not included in the AWS star rating for the product.
Global Compliance Simplified
What do you like best about the product?
It helps us meet multiple international standards without juggling different system
What do you dislike about the product?
Not a true dislike, but additional local-language support would be helpful.
What problems is the product solving and how is that benefiting you?
We expanded into new regions quickly, with compliance handled automatically.
Always Audit Ready
What do you like best about the product?
Automated evidence gathering means we are always prepared, not just at audit time.
What do you dislike about the product?
Nothing negative-more AI-driven insights would be welcome.
What problems is the product solving and how is that benefiting you?
Audits no longer disrupt operations-we simply grant auditors access to Secureframe.
Compliance Automation for Growing Teams
What do you like best about the product?
Its automation is perefect for scaling teams without adding compliance staff.
What do you dislike about the product?
It's great overall; additional training resources would just make onboarding smoother.
What problems is the product solving and how is that benefiting you?
We've doubled our cloud usage without needing more compliance hires.
Seamless Vendor Risk Management
What do you like best about the product?
Vendor compliance reviews that once took weeks are now automated and transparent
What do you dislike about the product?
If anything, more vendor scoring detail would be a nice-to-have.
What problems is the product solving and how is that benefiting you?
Our procurement process is faster, and we onboard vendors with greater confidence.
Secureframe Streamlines Compliance for Azure-Centric Environments
What do you like best about the product?
Secureframe has helped us tremendously by reducing the level of effort we have to invest in implementing SOC 2 and ISO 27001 compliance requirements as we work with hybrid Azure environments within the roles of Cloud Security Engineer. Deep integration with Azure AD Domain Services and Microsoft 365 enables detailed evidence collection of critical controls (e.g., User Access Reviews, Conditional Access Policies, Log Monitoring) to be a streamlined part of your platform automation. Secureframe pulls this data in real-real-time Instead of manually exporting reports from Azure Portal or Entrap ID, shortening audit prep time from weeks to days.
The SAML SSO integration was easy and we had it hooked up to our iPDU in a matter of minutes, the user provisioning/deprovisioning with automation is exactly what we need for our zero-trust model. Where this shines through is on the dashboard, with its great clarity of tabs for gaps in control relating to Azure Pipelines, Defender for Cloud, and even some third-party SaaS Apps – for example GitHub. The customer support with Logic Apps has been proactive and made suggestions of ways in which we could optimize the way our Azure environment is set up that we hadn't considered.
The SAML SSO integration was easy and we had it hooked up to our iPDU in a matter of minutes, the user provisioning/deprovisioning with automation is exactly what we need for our zero-trust model. Where this shines through is on the dashboard, with its great clarity of tabs for gaps in control relating to Azure Pipelines, Defender for Cloud, and even some third-party SaaS Apps – for example GitHub. The customer support with Logic Apps has been proactive and made suggestions of ways in which we could optimize the way our Azure environment is set up that we hadn't considered.
What do you dislike about the product?
Although the Azure integrations are deep for us, I have noticed that there is some delay of syncing especially with the sconce pipeline when occasionally manual refreshes can be required. The policy templates provided by the platform are broad and answering them for how individual organizations use Azure like hybrid workloads including legacy systems can be time intensive. It would also be nice to get a more granular RBAC model with large teams, because the engineering sub-teams here are fairly broad for permissions.
What problems is the product solving and how is that benefiting you?
Prior to Secureframe, our compliance process was a hodgepodge of spreadsheets, PowerShell scripts, and one-off azure policy audits. It acts like the hub centralizing proof for Azure AD Conditional Access, MFA enforcement and Privileged Identity Management while auto-mapping controls to SOC 2/ISO frameworks. The most significant benefit is that Secureframe provides ongoing, real-time monitoring: if Azure ( for example an exposed storage account to public networks) enters a misconfiguration status, Secureframe can identify it right away versus 9 months later when they are being audited. It has reduced our remediation time from close to 100% more than the average times we have increased all scores by 70%, and gave our sales unit assurances on enterprise deals associated with compliance proof.
Compliance Without Bottlenecks
What do you like best about the product?
Boomi's fast-moving integrations are supported by secureframe's ability to keep compliance aligned without slowing delivery.
What do you dislike about the product?
Not really a dislike, just a wish for more built-in Boomi-specific templates.
What problems is the product solving and how is that benefiting you?
We can deliver integrations faster while meeting customer security requirements automatically.
Compliance Without the Headache—Exactly What Founders Need
What do you like best about the product?
Secureframe was able to make compliance the kind of thing no one at a company wants to do but that everyone has peace of mind it is being taken care of simply, which is what I needed as a founder. I have seen and tried many security products to date, but no other product comes close when it is compared with ease of use (pre-built policies, one-click evidence collection saved us months!). Painless implementation (live chat resolved Azure integration hitches on-the-fly). We use it every day, and other features like real-time risk alerts have made certain that nothing gets through. It is very much like an extension of our team.
What do you dislike about the product?
I'd also like to see more options with custom reporting; I wish we had the ability to create dashboards specifically for our board meetings. It does major integrations (Slack, Google Workspace) but smaller HR tools need to be uploaded by CSV.
What problems is the product solving and how is that benefiting you?
Secureframe eliminated compliance as a roadblock and turned it into an asset. We got SOC 2 Type II in 4 months (vs. the traditional 7+ months) and close enterprise deals faster with out-of-the-box audit reports.
Cloud Compliance for Security Teams – A Perspective from an IT Manager
What do you like best about the product?
Secureframe has become our single point of entry, everything the IT Manager responsible for cloud security compliance needs to see. Automated Monitoring of AWS and Azure Environments for SOC 2/ISO 27001 by the Platform -Only Manual Evidence Collection eliminated Change management process now integrates Security in the DevOps Pipeline with Automated AI—more than 75% reduction in compliance-related security incidents thanks to real-time misconfiguration alerts that enables us to resolve issues before they become a vulnerability.
What do you dislike about the product?
Though the cloud coverage is good, you never known — we would like a little more in terms of wider support for hybrid environments that may involve on-premises components. It could also offer more flexible reporting for different stakeholder requirements.
What problems is the product solving and how is that benefiting you?
1. Decrease Audit Preparation from 3 months to 3 weeks
2. Reduced compliance evidence collection time by 85%
3. Enhanced our security stance by continually activating compliance controls
4. Easier security and compliance collaboration with cloud teams
Secureframe delivers both the peace of mind and time savings IT managers need to fulfill security and compliance requirements. It has turned compliance from a passive exercise to an active security benefit
2. Reduced compliance evidence collection time by 85%
3. Enhanced our security stance by continually activating compliance controls
4. Easier security and compliance collaboration with cloud teams
Secureframe delivers both the peace of mind and time savings IT managers need to fulfill security and compliance requirements. It has turned compliance from a passive exercise to an active security benefit
From Chaos to Confidence in Compliance
What do you like best about the product?
Secureframe’s simplicity is its superpower. As a bootstrapped founder, I had no way to pay for consultants but their self-serve options, in particular the ability to collect evidence through automation and policies that they supplied made SOC 2 doable. It would take us days to implement, and support walked us through step-by-step the entire way. We use it once a week and we have vendor risk scoring.
What do you dislike about the product?
Custom report structure is constrained — it frequently includes going out to Excel for financial investor audits. Certain controls take "standard" setups that mean auditor back and forth for unique cases.
What problems is the product solving and how is that benefiting you?
KISS — Compliance is something you can check off, not an emergency. Secureframe has allowed us to onboard Fortune 500 clients we never would have been able to work with as they required months of manual audits.
Transformed Our Compliance Workflows
What do you like best about the product?
Automated ticket creation for compliance tasks with bi-directional Fresh service integration → ~30 hour/mo. Configuration took almost no time (less than 2 weeks) and the ease of using the platform allowed even non-technical stakeholders to submit evidence. Support was helping set it all up in terms of ticket prioritization — awesome! We live and breath the tool, and capabilities like auto-remediation for controls that did not pass is priceless.
What do you dislike about the product?
Lack of complexity/personalization in workflows documentation (such as multi-tier approvals) High-load sync delays can sometimes mean it takes 2–3 minutes to get your data into the system, thus a synchronous process is not workable under peak loads and someone would have needed to check.
What problems is the product solving and how is that benefiting you?
The other one is Secureframe where they try to combine some DevOps measurement with helping you define what your compliance requirements are. We have improved time-to-remediation times by 45% and still receive real-time alerts to keep our auditors up-to-date on severity with the latest issues for leadership.
showing 361 - 370