Secureframe Reviews

Secureframe's dedicated customer support and response time.

Secureframe doesn't provide a full info-security solution platform yet, but they are introducing new features all the time.

We previously used other info-sec/SOCII SaaS platforms, but what differentiated Secureframe was their customer support, response type, and quality of guidance.

The Secureframe team and platform helped our company organize, document, prepare, and ultimately achieve SOCII-Type 1 compliance. This greatly enhances our ability to compete for new business.

Their security is top notch, their customer service as well.

Got a little too many emails at the start, when I let them know, I got a reply from a human (!), saying they would send fewer of those.

We are heading towards ISO27001 and SOC2 certifications thanks to SecureFrame.

Customer support is definitively one of the best things about Secureframe. You get to talk with a customer support manager from time to time, with GDPR, SOC2, HIPAA experts. You will supported all along.

The platform is also great and the tests are well documented. It is easy to go over them.

Happy overall, there is nothing I really dislike. It's the only platform I have used.

Secuframe is making compliance much easier for a startup like us. This is helping us to focus more on product and our users.

We have used Secureframe to manage our compliance with the SOC2 and PCI frameworks. The system integrates with most of the software / service platforms that we use, and immediately applies tests to each of the controls required by each of the frameworks you are using. The tests help you to follow best practices and give instructions on how to fix them. Once we were passing on all of our tests, our audit was much simpler than I've ever experienced before.

Early on, we found that one of our tests was failing inconsistently regarding the enforcement of MFA for our staff. We needed to contact Secureframe customer support through their convenient chat tool in order to address this issue. Secureframe's team has corrected this problem though, and I have not noticed tests failing in this way anymore.

The one other thing that I wish were easier is that sometimes there are aspects of a particular user that I am unable to update as an administrator on our account (sometimes a user will get imported with their personal email from our benefits program and don't get their business email address added). Once again, an easy contact with support through chat has been able to address that problem.

Secureframe is helping me to manage compliance with several compliance frameworks without having a large staff to manage compliance.

All of the time our employees saved working on the SOC Audits that can be spent on more useful activities. Responsiveness and knowledge of audit team and support group. Less room for human error and ease of use.

We have not had a downside to using SecureFrame.

SecureFrame was easy to integrate and solves the problem of manual recordkeeping and excel spreadsheets. We are able to focus on more critical jobs and allow the ongoing integration to do most of the work. Additionally, the fact that you interact with SecureFrame on a regular basis makes everything manageable.

I love the easy-to-follow UI and the way everything is organized; I also like periodic task reminders and the colorful dashboard that lets you see what tests are failing and what action items need to be addressed. It's very convenient for some Secureframe to already have SOC2 or other certifications for some of the larger third-party vendors we use. It'd be ideal if they had these for all the vendors, but I recognize the difficulty. Secureframe's support and agents are also easy to reach, and they frequently provide office hours or meeting opportunities for us to discuss things. The product and services provided by SecureFrame helped us get our SOC2 Type I and II certifications in a much more streamlined and convenient way.

Update: The service I've received has been consistently good, with extremely dedicated agents helping to solve any problem quickly!

Edit: Previously I'd said the updates caused confusion, but that hasn't been an issue this year! The only possible bug is that some error notifications persist even after they've been fixed, but those are small things.

Having SOC2 compliance helps us ensure our software is compliant with the security requirements of our customers as well as enforcing rigor in our own risk management. Secureframe organizes everything we need, prepares us for audits, and regularly reminds us to take care of our security tasks.

The platform is easy to start using and integrates with our cloud service easily. Their customer service quickly solved the few things we couldn't solve ourselves. Many different features are available, and I especially like the step-by-step guide that tells us how to solve failing tests. None of the other providers we looked at had that feature.

I haven't found anything that I dislike about it.

We needed a platform that could help us with our ISO 27001 certification. The way they integrate with Azure directly removes a considerable amount of the manual burden of validating the configurations. We're saving a lot of time and personnel costs by using Secureframe.

Secureframe is helping us get ready for a SOC2 audit by automatically detecting every test we will need to pass that is relevant to our infrastructure setup.

It integrates seamlessly with AWS and highlights any non-compliant infrastructure changes that need to be made.

Whenever there is an alternative route to compliance (specifically with AWS for us), Secureframe's customer service is always quick and helpful to clarify to us the requirements of being compliant.

It is easy to add company policies (important requirement for SOC2) and invite employees to accept said policies.

Secureframe has become part of our daily workflow thanks to its ease of use and implementation!

If I had one complaint it would be the lack of alternate passing criteria for certain AWS tests. In a few cases for us, there are different ways to approach AWS compliance problems that save a lot of headaches. Having said that, we simply reach out to customer support where they manually confirm to us if our alternate solution is compliant or not, and you can manually override each test on a case-by-case basis with justification.

Our company is on the route to being fully SOC2 compliant and Secureframe streamlines this process for us.

- I feel like I always have a compliance officer on hand to answer questions as we go through the SOC2 and other certification processes

- They give us all the guidance we need in order to understand the types of policies, systems, etc we need in place to come into compliance.

- They are really quick to take feedback and make changes to improve the system or sort out any issues

- Honestly, no downsides. It's a great system.

They help us gain compliance for SOC2, GDPR, and CCPA

My company had no previous experience with security compliance and Secureframe made it incredibly easy to get our company compliant. Their integrations, check lists and employee onboarding made it a breeze and their live chat customer service held our hands through the whole process.

We haven't come across any downsides yet!

We need to be HIPPA and SOC 2 compliant, so that our customers feel 100% safe using our product. By using Secureforce to quickly and easily become compliant, our company is now more secure and we are able to sign up more customers. It puts their minds more at ease.