Reviews from AWS customer
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
179 reviews
from
External reviews are not included in the AWS star rating for the product.
Great platform to guide you through SOC
What do you like best about the product?
Guidance received from staff and the platform is super easy to follow
What do you dislike about the product?
It has been a great experience so far. No constructive feedback.
What problems is the product solving and how is that benefiting you?
Getting ready for SOC
Excellent SOC 2 Compliance Assistance
What do you like best about the product?
Their platform made it super easy to attach evidence items and were clear about what types of evidence will satisfy the controls required to get multiple types of certifications and automatically links controls between the various frameworks.
Their example policies helped get information that has been stored in a wide variety of places and brains pared down to a manageable set of documents that are easy for our employees to find.
Caroline did an excellent job with helping me get descriptions and the many fine detail kinds of things edited so they best defined what was included for each control or evidence item. She made a daunting process managable, her attitude is always bright, and I look forward to calls with her.
Their example policies helped get information that has been stored in a wide variety of places and brains pared down to a manageable set of documents that are easy for our employees to find.
Caroline did an excellent job with helping me get descriptions and the many fine detail kinds of things edited so they best defined what was included for each control or evidence item. She made a daunting process managable, her attitude is always bright, and I look forward to calls with her.
What do you dislike about the product?
Nothing. The tool has been great and I can't say I ran into any trouble using it. Caroline took down some notes here and there about questions I had while entering information in, but none were show-stoppers and I honestly can't even remember most of what they were.
It would be nice to have an integration for Bitbucket through Atlassian since JIRA is available. I was also a bit bummed that the AWS integrations had to go through Cumulus, which we don't have.
It would be nice to have an integration for Bitbucket through Atlassian since JIRA is available. I was also a bit bummed that the AWS integrations had to go through Cumulus, which we don't have.
What problems is the product solving and how is that benefiting you?
They helped us attain a SOC 2 Type 1 audit so far. This benefitted our company by helping organize security information in a way that is easy to visualize and present to stakeholders. Our clients will be able to request our SOC 2 information for their auditors and compliance requirements. Our employees have a set of policies that can be referred to easily for questions and the policies can grow and change we we head into our future.
The tool greatly assisted us in achieving SOC compliance
What do you like best about the product?
Integrations for evidences was really cool thing and it was very helpful to integrate evidences from JIRA and AWS
What do you dislike about the product?
Sometimes there was a lack of coordination between controls and evidence
What problems is the product solving and how is that benefiting you?
It was helping us for audit purpose
Cost-effective and simple to get SOC-2 certified
What do you like best about the product?
-Simple
-Cost-Effective
-Inhouse auditing and SOC-2
-Easy to communicate with
-Cost-Effective
-Inhouse auditing and SOC-2
-Easy to communicate with
What do you dislike about the product?
More integrations, though admitedly we have a complicated cloud stack.
What problems is the product solving and how is that benefiting you?
Strikegraph got us SOC2 ready and SOC2 certified. Enterprise customers required a level of certification to feel comfortable engaging with us.
Great platform. Seamless onboarding and invaluable partnership and guidance
What do you like best about the product?
Strike Graph proved to be an indispensable ally as we journeyed through our SOC 2 Type 2 compliance. From the outset, their onboarding process was refreshingly straightforward. They astutely utilised our previous year's report (from previous supplier), importing all our controls into their platform, streamlining our initial setup and ensuring a seamless transition. This proactive approach was further complemented by Elliott, who played an instrumental role in the following phases. With his guidance, I gained clarity on how to effectively map these controls to our specific business processes. This wasn't just about plugging in data; it was a collaborative venture that involved uploading evidence against each control, ensuring that our compliance stood on solid ground. This partnership, characterised by its depth and dedication, provided immense value. The combined efficiency of their automated evidence collection platform and their hands-on approach to customer collaboration made for a potent mix. Further enriching our experience was their pentest package, a testament to their holistic approach to security and compliance. The thorough reports were useful and actionable, cementing their position as a top-tier provider in the realm of compliance and security.
What do you dislike about the product?
While there is so much to appreciate about Strike Graph, it's worth noting that as of my review and pentest, they weren't yet CREST accredited. This, to me, is a slight drawback given the weight such an accreditation holds in the industry and when responding to customer RFPs on our security practices. However, it's reassuring to hear that they are on track to achieving this accreditation later this year.
I would also see huge value in having an integration with Confluence so we can completly cover all facets of evidence automation collection.
I would also see huge value in having an integration with Confluence so we can completly cover all facets of evidence automation collection.
What problems is the product solving and how is that benefiting you?
Problems it's solving:
- Achieving certifications like SOC 2 Type II can be intricate, with a multitude of detailed requirements and technical nuances. This complexity can be compounded when companies consider multiple compliance standards, each with its distinct criteria.
- Manually gathering and showcasing evidence for compliance can be a long-winded and error-prone endeavor. An efficient mechanism is indispensable for renewal and preserving compliance status.
- Beyond compliance, there is a need for tangible security assurance. Penetration testing offers an avenue to uncover potential vulnerabilities, ensuring robust defenses.
- As companies grow and diversify, there's often a need to adhere to multiple compliance standards. Understanding the overlap and differences between them becomes crucial.
Benefits us:
- Through professionals like Elliott, Strike Graph offers bespoke advice tailored to our business needs. This ensures not only compliance adherence but also the refinement of our internal processes.
- Their platform's prowess in automating evidence collection through their many integrations substantially eases the process of yearly renewals. This ensures methodical documentation, reducing potential administrative hiccups.
- Their pentest package deep dives into system vulnerabilities, offering a clearer picture of our security health. This translates to a strengthened security framework, safeguarding company assets.
- Strike Graph's platform stands out with its ability to perform gap analyses across various compliance frameworks. This feature is invaluable for companies eyeing multiple certifications. It provides a clear roadmap, highlighting overlaps and differences, enabling an efficient pathway to achieving additional compliance goals.
- While there's room for growth, such as attaining the CREST accreditation, Strike Graph's forward-looking stance signifies a dedication to continuous enhancement and adherence to evolving industry benchmarks. This commitment underscores their drive to offer superior services in the years to come.
- Achieving certifications like SOC 2 Type II can be intricate, with a multitude of detailed requirements and technical nuances. This complexity can be compounded when companies consider multiple compliance standards, each with its distinct criteria.
- Manually gathering and showcasing evidence for compliance can be a long-winded and error-prone endeavor. An efficient mechanism is indispensable for renewal and preserving compliance status.
- Beyond compliance, there is a need for tangible security assurance. Penetration testing offers an avenue to uncover potential vulnerabilities, ensuring robust defenses.
- As companies grow and diversify, there's often a need to adhere to multiple compliance standards. Understanding the overlap and differences between them becomes crucial.
Benefits us:
- Through professionals like Elliott, Strike Graph offers bespoke advice tailored to our business needs. This ensures not only compliance adherence but also the refinement of our internal processes.
- Their platform's prowess in automating evidence collection through their many integrations substantially eases the process of yearly renewals. This ensures methodical documentation, reducing potential administrative hiccups.
- Their pentest package deep dives into system vulnerabilities, offering a clearer picture of our security health. This translates to a strengthened security framework, safeguarding company assets.
- Strike Graph's platform stands out with its ability to perform gap analyses across various compliance frameworks. This feature is invaluable for companies eyeing multiple certifications. It provides a clear roadmap, highlighting overlaps and differences, enabling an efficient pathway to achieving additional compliance goals.
- While there's room for growth, such as attaining the CREST accreditation, Strike Graph's forward-looking stance signifies a dedication to continuous enhancement and adherence to evolving industry benchmarks. This commitment underscores their drive to offer superior services in the years to come.
excellent product, onboarding and service
What do you like best about the product?
makes a tough topic really fun, takes away a lot of burden.
What do you dislike about the product?
nothing at all to be honest, everything perfect
What problems is the product solving and how is that benefiting you?
it guided us at PX throught the SOC2 certification process
Support and templates that help me achieve the goal
What do you like best about the product?
I like seeing the graphs change according to my treams progress, sharing the responsibility with stack holders, the policy templates and the email notifications on expired evidence and the fact I get notified on time!
There is barely any need in implementation to the team - the UI is clear, and the customer support is always available. The price is a bit high aspecially if it takes you longer then a year to achive compliance
There is barely any need in implementation to the team - the UI is clear, and the customer support is always available. The price is a bit high aspecially if it takes you longer then a year to achive compliance
What do you dislike about the product?
I would expect easier / day to day wording to explain the tasks
What problems is the product solving and how is that benefiting you?
SG is solving endless emailing with our legal team and gives an easy, visible platform that allows a few team members to work simultaniusly. Having templates ready for us saves a lot of time and money and allow me to move forward on my own.
Highly Recommended
What do you like best about the product?
Strike Graph's ability to give us insights into our team's progress towards SOC2 compliance is pretty awesome! Their reporting and monitoring features let us keep a close eye on our compliance efforts, spot any hurdles, and measure how far we've come. It's been a real game-changer for managing our compliance projects, making smart decisions based on data, and staying on the right track to get our SOC2 type 2.
What do you dislike about the product?
We had a great experience with Strike Graph, and there was nothing we disliked about their service. Throughout the process, their team was incredibly supportive, providing assistance and guidance every step of the way. Their commitment to our success made the entire journey smooth and enjoyable.
What problems is the product solving and how is that benefiting you?
Strike Graph is solving the problems of simplifying compliance efforts, providing real-time insights, supporting various compliance frameworks, fostering efficient team collaboration, and enabling data-driven decision-making. These benefits have greatly improved our cybersecurity posture and made the compliance process much smoother for our organization.
One of the best experiences implementing SOC2 for our company!
What do you like best about the product?
A very customer friendly team of experts, and an awesome Customer Success team that has guided us at every step of our SOC2 certification process.
What do you dislike about the product?
It is difficult to say, and our experiences has been exceptional so far.
What problems is the product solving and how is that benefiting you?
Strike Graph has helped us plug any security gaps in our infrastructure, and has helped us flawlessly achieve SOC2 certification.
Organized way to understand, fulfill, and track compliance
What do you like best about the product?
I like having all of my requirements in one place, as well as knowing where I am on each task.
What do you dislike about the product?
Nothing really - it is a highly useful way of staying organized.
What problems is the product solving and how is that benefiting you?
StrikeGraph helps us with our SOC 2 and data security/privacy profile.
showing 101 - 110