Reviews from AWS customer
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
1,171 reviews
from
External reviews are not included in the AWS star rating for the product.
Secureframe is our compliance backbone
What do you like best about the product?
the platform has allowed us to streamlime SOC 2,PCI, and risk management all in one Place .it's well organized , intuitive and auditor friendly .
What do you dislike about the product?
they've thought through nearly everything. the platform is robust out of the box , with strong multiframework support we continue to benefit from
What problems is the product solving and how is that benefiting you?
secureframe helps us meet regulatory and enterprise client expectation without overextending our security team. it's a key part of how we manage to trust and security at scale
The best Investment for compliance Ops
What do you like best about the product?
secureframe centralizes everything control, task, and integrations. their AI highlight issues beore they become problems. it's like having a full time compliance officer in yours pocket.
What do you dislike about the product?
their roadmap is impressive, and it's clear they are always improving. we've enjoyed watching new features roll out that add real value
What problems is the product solving and how is that benefiting you?
we were looking for a way to manage security framework without being hiring a full compliance team. secureframe helped us scale our proccesses and confidence, structure and even clear sense control
Secureframe Simplifies Compliance Chaos for IT Teams
What do you like best about the product?
Secureframe is a game changer for our IT. — Duties are now deployed as managing compliance across SOC 2, ISO 27001, and HIPAA frameworks syndication duty. The most common activity that we do is the evidence collection, and the way in which it could be done through automation saves us hours of manual work (especially with integrations like AWS, Okta, Github.). No more hunting for system logs or user access reports, all under one roof and audit qualified. It has an intuitive dashboard that presents complex controls as clear and manageable tasks which you can use to monitor progress and identify gaps.
A special shoutout to customer support. Whenever I run into a wall —some of it is about getting control mappings right or troubleshooting an job —their team answers fast and with actionable solutions. The onboarding was pretty seamless, and the pre-built policy templates let us get our document game for new employees up to speed very quickly.
A special shoutout to customer support. Whenever I run into a wall —some of it is about getting control mappings right or troubleshooting an job —their team answers fast and with actionable solutions. The onboarding was pretty seamless, and the pre-built policy templates let us get our document game for new employees up to speed very quickly.
What do you dislike about the product?
It might be a bit hard to configure for older legacy systems we had (like our on-premise HR tool), but the integration library is solid. Those System have some additional overhead as they also require manual evidence uploads. I would also like to see deeper alert configuration—some of the automated flags are too eager and always require human validation.
What problems is the product solving and how is that benefiting you?
Pre-Secureframe, compliance was this fire-drill reaction right before accounting scrutiny. Now, it’s a proactive process. This reduces the last minute fire drills we used to have to endure, and increases our confidence in the security posture of our organization. Personally, from an IT perspective, visibility is the biggest win — we can now show users and stakeholders that we are compliant with regulations all year round, not just at audit time. And it has simplified vendor evaluations, as being in one spot means we can answer security questionnaires a lot faster.
Secureframe scales with a distributed team
What do you like best about the product?
The automation and remote-friendly features of secureframe are perfect for our distributed team. We particularly like how it integrates with Slack, supports remote onboarding and continuously monitor our cloud systems.
What do you dislike about the product?
The pricing structure could be more flexible, especially for smaller remote -first startups. Some features feel locked behind pricing tier
What problems is the product solving and how is that benefiting you?
Secureframe helped us achieve SOC 2 Type l compliance without needing a large in-house team. it's made easier for us to win contracts with Client who require strong information security practices and compliance documentation.
Excellent for maintaining HIPAA-level security standards
What do you like best about the product?
Secureframe helped our company create a compliance structure that support both ISO 27001 and HIPAA-level safeguards. The platform's automated monitoring, audit trail tracking, and security controls gave our team the insight and tools needed to meet industry expectations.
What do you dislike about the product?
A few health-tech-specific integration are missing, and the platform assumes some prior security experience, which meant we had to spend extra tie understanding certain task
What problems is the product solving and how is that benefiting you?
Compliance in healthcare is critical. Secureframe helped us centralize security control, manage risks, and prepare audit documentation. it has made our compliance journey not only faster but more manageable and scalable as our business grows.
Essential tool for enterprise readiness
What do you like best about the product?
The level of automation in Secureframe is impressive. It connects easily with our repositories, and third-party services. The tool essentially acts as a victual compliance officer, reducing the burden on our internal team.
What do you dislike about the product?
Support is good, but could be more proactive. For larger clients like us, it would help to have a dedicated success manager earlier in the process.
What problems is the product solving and how is that benefiting you?
Secureframe has helped us achieve both SOC 2 and ISO 27001, which are critical for landing enterprise contracts it keeps us continuously audit-ready and ensures our team follows best practices.
Critical Compliance Partner in a Heavily Regulated Industry
What do you like best about the product?
Secureframe offers a reliable structure that helped us pursue ISO 27001 with minimal internal overhead. The audit preparation features, task, tracking, and policy automation saved our lean compliance team countless hours. We especially appreciate the real-time alerts and automated evidence collection
What do you dislike about the product?
The GCP integration needed additional configuration compare to AWS, which slowed our setup slightly. Also, we'd like more custom reporting options
What problems is the product solving and how is that benefiting you?
We're in a regulated software development space, and being ISO 27001 certified is critical for regulatory and partner expectation. Secureframe got us audit-ready faster than we anticipated and continues to help us maintain compliance with minimal ongoing effort
Made SOC 2 compliance feel effortless
What do you like best about the product?
Secureframe provide us with a guided, structured approach to achieve SOC 2 compliance. The integrations with AWS and GiTHub flawlessly, which reduced manual oversight significantly. The pre-built policy templates were also a lifesaver for our small team. It made the overall process much less intimidating
What do you dislike about the product?
The dashboard UI is functional but could use improvements in terms of visual clarity, especially when tracking audit readiness progress. Some onboarding steps were slightly unclear at first a non-technical audience.
What problems is the product solving and how is that benefiting you?
As a startup preparing for enterprise sale, we needed to achieve SOC 2 quickly without diverting too many resources. Secureframe helped us get compliant within weeks and ensured we had everything in place for the audit. Now we can confidently approach larger clients and stand out in security-conscious sales processes
Secureframe Platform Review – From a Consultant’s Perspective
What do you like best about the product?
What I like best about Secureframe is how intuitive and customizable the platform is. It allows me to tailor compliance workflows to each client's unique environment while keeping everything easy to manage and audit-ready.
What do you dislike about the product?
While Secureframe is a powerful and user-friendly platform, one area that could be improved is the flexibility of some evidence automation workflows. In more complex client environments, especially where systems fall outside standard integrations, there can be limitations that require manual workarounds. Expanding custom integration support or allowing more configurable evidence logic would make the platform even more robust.
What problems is the product solving and how is that benefiting you?
Secureframe is solving the complexity and overhead associated with managing multiple compliance frameworks like ISO 27001, SOC 2, and GDPR. As a consultant supporting clients across different industries and maturity levels, the platform enables me to centralize evidence collection, automate control monitoring, and align documentation to audit requirements with minimal friction. This significantly reduces the time and manual effort needed to get clients audit-ready, improves accuracy, and allows me to deliver a more streamlined, scalable service.
Solid compliance platform with excellent support - great for SOC 2 journey
What do you like best about the product?
Secureframe has been instrumental in our SOC 2 compliance journey. The platform's intuitive interface makes navigating complex compliance requirements much more manageable than trying to tackle everything manually. What really impressed me was how the dashboard breaks down each compliance control into clear, actionable tasks with real-time progress tracking.
The implementation process was surprisingly straightforward, we were up and running within a few days rather than the weeks I had anticipated. The automated evidence collection through integrations with our existing tools (AWS, Google Workspace, etc.) has saved us countless hours of manual work. Instead of scrambling to gather documentation during audit time, everything is continuously monitored and organized in one central location.
I use Secureframe daily to monitor our compliance status and track progress on remediation tasks. The frequency of use speaks to how central it's become to our security operations, it's not just an audit time tool but an ongoing compliance management system.
The customer support team deserves special recognition, they're incredibly responsive and knowledgeable. Whenever I've had questions about specific controls or needed clarification on evidence requirements, I've received detailed responses within hours, not days. The onboarding process was smooth, and our assigned customer success manager really understood our specific needs and timeline.
The policy management features are also excellent. Having all our security policies, employee training, and acknowledgments centralized in one platform has streamlined our HR processes significantly. New employee onboarding now includes automatic policy assignments and training modules, which has been a game changer for maintaining compliance as we scale.
The implementation process was surprisingly straightforward, we were up and running within a few days rather than the weeks I had anticipated. The automated evidence collection through integrations with our existing tools (AWS, Google Workspace, etc.) has saved us countless hours of manual work. Instead of scrambling to gather documentation during audit time, everything is continuously monitored and organized in one central location.
I use Secureframe daily to monitor our compliance status and track progress on remediation tasks. The frequency of use speaks to how central it's become to our security operations, it's not just an audit time tool but an ongoing compliance management system.
The customer support team deserves special recognition, they're incredibly responsive and knowledgeable. Whenever I've had questions about specific controls or needed clarification on evidence requirements, I've received detailed responses within hours, not days. The onboarding process was smooth, and our assigned customer success manager really understood our specific needs and timeline.
The policy management features are also excellent. Having all our security policies, employee training, and acknowledgments centralized in one platform has streamlined our HR processes significantly. New employee onboarding now includes automatic policy assignments and training modules, which has been a game changer for maintaining compliance as we scale.
What do you dislike about the product?
The integration catalog, while comprehensive, doesn't cover every tool we use. We had to handle some evidence collection manually for a few legacy systems, which wasn't ideal but manageable. It would be helpful to see more integrations added, especially for older enterprise software that many companies still rely on.
Some of the automated tests can be overly sensitive, flagging minor configuration changes that don't actually impact compliance. This creates some noise that requires manual review to determine if action is truly needed. While the automated monitoring is generally excellent, fine-tuning these sensitivity levels would reduce false positives and make the alerts more actionable.
Some of the automated tests can be overly sensitive, flagging minor configuration changes that don't actually impact compliance. This creates some noise that requires manual review to determine if action is truly needed. While the automated monitoring is generally excellent, fine-tuning these sensitivity levels would reduce false positives and make the alerts more actionable.
What problems is the product solving and how is that benefiting you?
We needed to achieve SOC 2 Type II certification to close deals with enterprise customers, and Secureframe has made this complex process manageable for our small security team. The platform solved our biggest challenges: organizing evidence collection, maintaining continuous compliance monitoring, and preparing for the actual audit.
The automated monitoring gives us confidence that we're staying compliant between audits, and the audit ready evidence collection has significantly reduced the stress of working with our external auditors. We've been able to focus on actually improving our security posture rather than just scrambling to document it.
The time savings have been substantial, what would have taken weeks of manual effort now happens automatically in the background, allowing our team to focus on strategic security initiatives rather than compliance busy work.
The automated monitoring gives us confidence that we're staying compliant between audits, and the audit ready evidence collection has significantly reduced the stress of working with our external auditors. We've been able to focus on actually improving our security posture rather than just scrambling to document it.
The time savings have been substantial, what would have taken weeks of manual effort now happens automatically in the background, allowing our team to focus on strategic security initiatives rather than compliance busy work.
showing 771 - 780