Secureframe Reviews

Pros

The platform really helped us streamline our SOC audit.

Cons

I haven't found anything negative as this really helped us organize and prepare for the audit.

Pros

I love how easy it is to use and the customer success team is always responsive and helpful. The user interface is so simple, making navigation seamless.

Cons

Sometimes the SecureFrame agent doesn't integrate properly, leading to control failures for a few controls.

Pros

The customer support team is extremely helpful and responsive and the platform is well-designed with great automation features. It's easy to use and integrates smoothly with other systems.

Cons

Not all integrations prove to be helpful and it's unclear what setting up an integration will accomplish beforehand. Some operations throw unexplained errors but you can generally work around them and support has been excellent.

Pros

I really appreciate how many of the tests have clear steps showing how to pass them. While some of those procedures get outdated quickly with fast interface changes, they provide a great starting point. Once the test is configured, you don't have to re evidence it each year, making it more of a set-and-forget system, unless it falls out of compliance.

Cons

It would be great if each test had its own unique test number. Right now, tests are grouped under common control numbers, which can make it hard to keep track of which test is which. It would be much easier to reference specific test numbers when collaborating with others. The test view filters also don't stick well and I had to keep re-saving them. Also, it would be helpful if zip files were the default file type for uploading. It's not a big deal but it's a bit of a nuisance to enable it each time.

Pros

We reviewed alternatives to SecureFrame for our SOC 2 compliance but many were either buggy or had pushy salespeople. Their staff has been proactive and helpful and the price has been reasonable. The UI has been super easy to navigate despite the complexity of the software.

Cons

Sign-in with Google is an upsell. It would have been nice to see this feature included.

Pros

The product is great for managing critical daily compliance tasks and keeping everything organized.

Cons

There was a bit of a learning curve for me. It took a few weeks to get familiar with the lingo.

Pros

The SOC 2 compliance process is smooth with easy access and navigation. The audit tool was really helpful in getting everything done on time.

Cons

Initially it gives you a long list of tasks but you don't have to complete everything. You only need to hit about 90%. Their prioritization is good though.

Pros

It was incredibly simple to get started and SecureFrame provided everything we needed to become SOC 2 compliant and maintain monitoring without going through a lengthy process. As a startup with a limited budget, it was perfect. The integrations with third-party applications for ongoing monitoring and the continuous compliance checklist were helpful. We have used it for SOC 2 Type 1 and Type 2.

Cons

Device management and asset tracking could be better, but they seem to be improving. I also wish the tasks for ongoing activities like yearly security training and device management were clearer. It would also be great if HIPAA compliance checklists were included without a significant additional cost or separate process.

Pros

SecureFrame provides a seamless way to manage and automate compliance processes. Its intuitive interface, robust integrations with tools like AWS and Google Workspace and clear guidance for SOC 2 and ISO PCI-DSS audits make it invaluable. Continuous monitoring and simplified evidence collection have been game changers for ensuring audit readiness.

Cons

The setup process can feel overwhelming at first but their support team is helpful. It would be beneficial to have more customization options for smaller, niche compliance frameworks.

Pros

The support team answered all my questions about the process or what needed to be documented for the SOC 2 certification. The many integrations reduced a lot of work especially when verifying my cloud environment and other vendors. The process was broken down into manageable steps, allowing us to gradually complete the tasks for the audit.

Cons

As I mentioned in the pros section, I liked how they broke the process down into different steps. Some of those steps were vague and I needed to contact SecureFrame support to clarify what needed to be done. The support staff was great but I think the examples or explanations could have been better so I wouldn't have had to reach out in the first place.

Pros

Support team offered detailed guidance to resolve issues and it was easy to follow every step of the process.

Cons

There's no support for Terraform when it comes to issue resolution.

Pros

SecureFrame helped us become SOC ready and was incredibly easy to use.

Cons

Some of the step by step remedies were a bit outdated but they were still invaluable.

Pros

PCI Compliance is a daunting process but SecureFrame helped me understand exactly what we need to do to stay compliant. There's still a lot of ongoing work but it makes it much easier to manage.

Cons

One issue I have is that when meeting the criteria for a "test" the system requires you to upload a document, when often all that's needed is an attestation or verbal explanation of how the company meets that criterion.

Pros

The interface is really helpful and super easy to follow and manage tasks as both an admin and employer.

Cons

The initial onboarding can be problematic. Sign up links should be available for seven days instead of 24 hours, as onboarding a new joiner can take longer than a day.

Pros

We used SecureFrame to streamline our ISO 27001 compliance efforts. Before that, we relied on consultants with inadequate tools or managed everything manually using Excel and Dropbox. SecureFrame has been a total game-changer for us. The integration features are outstanding and the system provided clear instructions to help improve our setup and ensure compliance with policies. The built in content management system for policies is also great, allowing employees to review policies based on their roles, ensuring compliance. The Vendor section, which tracks supplier risks and compliance documents, is another standout feature.

Cons

From an integration standpoint, all of our major cloud and SaaS suppliers are included, but it would be nice to have a few more options or for some integrations to be a bit more robust.

Pros

I've been using it for two years now and it's very easy to navigate and integrate with vendors while keeping policies and procedures organized. The ease of onboarding is a big plus and the customer success management team has been excellent.

Cons

Nothing negative to report. Everything has been working out just fine.

Pros

The UI is easy to use and the flow of information is smooth and efficient.

Cons

Some say that it limits access for non users which can impact collaboration.

Pros

SecureFrame is actively developing its platform so missing features are usually on the roadmap.

Cons

There's a general lack of work management integrations, meaning all work has to be tracked in it itself. This creates multiple sources of truth for my team.

Pros

Whenever there's a task to be done, SecureFrame sends an email with clear instructions on how to complete it. Whether it's onboarding a new employee, completing annual SOC 2 compliance, or verifying security policies, it ensures these tasks are done on time. Trying to manage all of this manually would be chaotic and we appreciate knowing we're covered by their software.

Cons

Our team receives security questionnaires at least weekly from prospective customers, which come in various formats (Excel, Word, external sites etc). While the questionnaire library feature in it is helpful, it's currently limited to reading and filling out Excel spreadsheets. If this were the only format we received, it would be perfect but unfortunately, that is not the case. Thankfully, the SecureFrame success/support team has been receptive to feedback on how this could be improved and has communicated those thoughts to their product team.

Pros

The service has been excellent. The staff is extremely knowledgeable and very prompt in answering any questions. They genuinely want to see you succeed and are always responsive, demonstrating true professionalism. I highly recommend their services and look forward to future interactions.

Cons

I have no negatives to mention here.