Reviews from AWS customer
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
166 reviews
from
External reviews are not included in the AWS star rating for the product.
The product and customer service has been quite helpful
What do you like best about the product?
The user interface has been simple and clear to use.
What do you dislike about the product?
May be helpful to understand more about what I should be doing to achieve my business goals while using the tool ... but that's more of a helpful preference.
What problems is the product solving and how is that benefiting you?
Helps to provide direction on where to provide evidence and controls for SOC 2 and NIST compliance.
Good balance between the platform and consulting services
What do you like best about the product?
The Strikegraph team is really supportive in helping you to achieve your compliance goals. The provided documentation (templates) and the advices provided make the journey to achieve certifications like ISO27001 less painful.
What do you dislike about the product?
The platform could benefit from improvements in visualizing the mappings between controls and the multiple standards they align with. Enhanced clarity and usability in this area would make it easier to track and manage compliance efforts effectively.
What problems is the product solving and how is that benefiting you?
GRC software for organizing artifacts for my ISO27001 and SOC2 audits.
Simple and Effective Compliance Guidance
What do you like best about the product?
I found the compliance document templates extremely helpful in establishing a framework and creating policies that address the necessary controls. The system itself is very helpful in understanding what needs to be done to meet the compliance needs of various frameworks, and where there is potential overlap. Support is always prompt and helpful as well.
What do you dislike about the product?
These frameworks are still complex and while Strikegraph does a great job brining things together and making them consumable, support is still needed to unravel the complexities. At times, it feels things could be easier to navigate, but that may just be a result of the web of frameworks, controls, evidence, etc.
What problems is the product solving and how is that benefiting you?
Establishign policies, controls, etc. and organizing and ensuring we are compliant with various frameworks.
Highly recommend!
What do you like best about the product?
Strike Graph made it relatively easy for us to obtain our SOC2 Type II audit and report. It took us time to get our documentation and evidence ready for audit, but our CSM Stephanie was extremely helpful. She set things up for us at the start of the process in a way that would be best aligned to our business and defined processes. She was super knowledgeable and responsive. The resources and templates available within the platform were invaluable. They saved us time, and gave us confidence that the documentation we provided using the templates met the requirements. When we needed just-in-time clarification, we got quick answers to our questions from the Strike Graph team who made themselves available via the online chat.
Overall, we had a very positive experience. The platform was easy to use and helped streamline the process of preparing for our SOC 2 Type II audit, the Strike Graph team was great to work with, and the actual audit went very smoothly.
Overall, we had a very positive experience. The platform was easy to use and helped streamline the process of preparing for our SOC 2 Type II audit, the Strike Graph team was great to work with, and the actual audit went very smoothly.
What do you dislike about the product?
There was somewhat of a learning curve in understanding how to use the tool effectively which is typical of using a new tool.
Two things that were slightly burdensome were:
1. Collaboration with the auditors was done outside the platform, using Google docs which we don't use so it was something we had to work out. It was not a big deal and we worked around it but it would be good if that could be streamlined and incorporated into the platform (i.e. additional evidence needed, draft audit report). 2. We used the same policy document to support several evidence items and when we updated the document, we had to re-upload it for each evidence item. It would be nice if we could upload the document only once, and associate multiple evidence to it.
Two things that were slightly burdensome were:
1. Collaboration with the auditors was done outside the platform, using Google docs which we don't use so it was something we had to work out. It was not a big deal and we worked around it but it would be good if that could be streamlined and incorporated into the platform (i.e. additional evidence needed, draft audit report). 2. We used the same policy document to support several evidence items and when we updated the document, we had to re-upload it for each evidence item. It would be nice if we could upload the document only once, and associate multiple evidence to it.
What problems is the product solving and how is that benefiting you?
We are required to deliver a SOC 2 Type II report to some of our customers. Strike Graph helped us prepare for and complete the audit and get the SOC2 Type II report.
Simple and clear user interface
What do you like best about the product?
I like the simple and clear user interface which makes the adminsitrators job easier.
What do you dislike about the product?
More instructions, like sample evidences to be uploaded, can be helpful.
What problems is the product solving and how is that benefiting you?
Simplify auditing tasks.
Streamline SOC 2 & Pen Testing—Strikegraph Is Highly Recommended
What do you like best about the product?
What I like best about Strikegraph is how seamlessly the platform brings both SOC 2 compliance and penetration testing together in one place. Having a unified solution saves our team significant time and reduces the complexity that usually comes with managing these processes separately. The user interface is intuitive, making it easy to track our progress and ensure all requirements are met. I’m particularly impressed with the depth of expertise the Strikegraph team brings—they offer clear, actionable guidance not just for SOC 2 but also for pen testing, making the entire compliance and security journey much more manageable and efficient.
What do you dislike about the product?
While our experience with Strikegraph has been overwhelmingly positive, one area for improvement might be further streamlining the integration of SOC 2 compliance tasks and penetration testing workflows. Initially, it required some effort to get our team fully up to speed on how both components—compliance and pen testing—fit together within the platform. Additional tailored onboarding resources or more detailed walkthroughs for managing both SOC 2 and penetration testing in parallel would be helpful. Nonetheless, the Strikegraph support team has always been responsive in addressing any questions or challenges we encountered.
What problems is the product solving and how is that benefiting you?
Strikegraph is solving the traditionally complex and time-consuming challenge of achieving and maintaining SOC 2 compliance. Instead of relying on scattered documents and manual checklists, their platform centralizes all of our compliance activities in one place, making it easy to assign responsibilities, track progress, and ensure nothing is missed. Additionally, Strikegraph’s integration of penetration testing within the same environment gives us a clear, holistic view of our security posture and allows us to address vulnerabilities proactively.
The biggest benefit has been peace of mind—knowing that both our SOC 2 requirements and our pen testing obligations are managed efficiently and transparently. This not only saves countless hours for our team but also helps us build greater trust with customers by demonstrating a strong commitment to security and compliance.
The biggest benefit has been peace of mind—knowing that both our SOC 2 requirements and our pen testing obligations are managed efficiently and transparently. This not only saves countless hours for our team but also helps us build greater trust with customers by demonstrating a strong commitment to security and compliance.
Fast, communicative, professional, and delivered results
What do you like best about the product?
Excellent experience all the way through- special thank you to Kevron (and the SG Team).
We scouted several other CaaS providers, and had even used others previously before trying StrikeGraph. We are very happy with StrikeGraph's process and product and they will continue to be our trusted compliance partner.
Absolutely perfect experience from beginning to now- we hit our target dates with full completion of multiple certs. Open and honest communication from day 1, quick responses from Kevron and the SG team, and overall just a very customer friendly process that helps move things along faster with less confusion and roadblocks. Appreciate all of the guidance and assistance along the way.
Highly recommend.
We scouted several other CaaS providers, and had even used others previously before trying StrikeGraph. We are very happy with StrikeGraph's process and product and they will continue to be our trusted compliance partner.
Absolutely perfect experience from beginning to now- we hit our target dates with full completion of multiple certs. Open and honest communication from day 1, quick responses from Kevron and the SG team, and overall just a very customer friendly process that helps move things along faster with less confusion and roadblocks. Appreciate all of the guidance and assistance along the way.
Highly recommend.
What do you dislike about the product?
None. We did not experience any issues.
What problems is the product solving and how is that benefiting you?
HIPAA, SOC2 compliance management / completion. We will also utilize them for other certs in the future ie. PCI
My experience using StrikeGraph for SOC2 Type 2 audits
What do you like best about the product?
The Compliance Dashboard and the Control Monitoring dashboards are the best feature that StrikeGraph offers in my opinion as it gives you high-level review of the status of risks, controls and evidence.
The Help Centre is also an incredibly helpful tool given it contains sample templates and documentation for most of controls.
The Help Centre is also an incredibly helpful tool given it contains sample templates and documentation for most of controls.
What do you dislike about the product?
The UI at times is unresponsive and glitchy. In my 2+ years of using StrikeGraph, I've notcied the UI at times fights with the user especially when I try using filters in the control library or evidence respository tabs.
Additionally, the inability to upload more than 1 file at a time for evidence does become frustrating at times especially if you have to upload 50+ onboarding checklists.
Additionally, the inability to upload more than 1 file at a time for evidence does become frustrating at times especially if you have to upload 50+ onboarding checklists.
What problems is the product solving and how is that benefiting you?
StrikeGraph has made it easier for our internal audit teams to monitor SOC2 Type 2 & GDPR compliance. The control library makes it easy for any user to upload evidence requirements without having to understand all the details and nuancs of the secuirty frameworks.
It's helped make it easy and quick to onboard new members onto the audit team as there's a need for minimal knowledge transfer on the framework requirements
It's helped make it easy and quick to onboard new members onto the audit team as there's a need for minimal knowledge transfer on the framework requirements
The product is functional and gets the job done
What do you like best about the product?
Aside from a easy way to store evidence, the automated collection reminders are what separates the platform from just creating your own Sharepoint storage. There's also audit tracking where you can see who and when evidence was uploaded which is also helpful.
What do you dislike about the product?
Occassionally glitchy when clicking evidence, you need to refresh a couple times fot evidence to appear.
What problems is the product solving and how is that benefiting you?
It helps during audit period as auditors can access the platform and conduct the audit using the system.
Working with StrikeGraph saved our team months in gaining our SOC-2 certification!
What do you like best about the product?
StrikeGraph's team and their SaaS application were key to enabling our succesful SOC-2 and HIPAA certifications. They were proactive in guiding us through every phase -and always available when needed. They earned my strongest recommendation! The ongoing review of our documentation and process updates, especially the timely reminders sent by their platform - help immensely in maintaining our certifications.
What do you dislike about the product?
Honestly, I don't have any negative feedback. From their platform, their knowledgable team, and fair pricing, they checked all of our boxes.
What problems is the product solving and how is that benefiting you?
With a small Operations team it is a challenge to keep abreast of all the compliance documentation updates, security testing schedules and audit execution preparations. StrikeGraph serves as our outsourced compliance officer of sorts, enabling our internal staff to better focus on client-facing tasks until pro-actively notified that they need to attend to a compliance task.
showing 31 - 40