JJ scheduled demos with multiple companies in the space, including Secureframe, Vanta, and Laika. After completing multiple demos, JJ realized that while each company offered a strong platform to help automate a lot of the evidence collection process, Secureframe took it an extra step further by providing dedicated white glove support from ex-auditors, and would stand by him during the actual audit itself.
“From the demos, it was clear to me that Secureframe’s dedicated compliance team would go above and beyond, hold my hand through the entire process and make SOC 2 compliance feel like less of a black box."
"They provided shared Slack channels for questions, multiple compliance experts supporting my account, and the team wouldn’t step away once they deemed us 'audit-ready'. They’d actually be with me during the audit, help translate 'auditor speak', and advocate for me if my auditor was making requests I didn’t know how to handle. It made me feel a lot more confident choosing them.”
JJ also liked the strong auditor relationships Secureframe had. He could tell that they didn’t try to work with everyone, but rather, the best in the industry who’d provide a strong customer experience and make the audit process as painless as possible.
Given the strength of Secureframe’s platform and 100+ integrations, their strong auditor relationships, as well as the end-to-end white glove support provided that went above what JJ noticed from other companies, JJ decided to work with Secureframe.
Once onboarded, Secureframe created a thorough checklist of all the required steps and documentation Rootly needed and what evidence they needed to provide to meet SOC 2 requirements. Secureframe was able to automate most of the evidence collection process through its 100+ integrations.
“The integrations were easy to set-up. Once connected, it pulled everything that was required, which saved my team a lot of time and manual effort. We didn’t need to supplement the data with much else. The integrations were very rich.”
Given this was Rootly’s first SOC 2, their team naturally had a lot of questions and needed reliable support. Secureframe’s customer success and compliance team was always there, answering questions typically in less than a day via Slack or check-in calls, providing tailored advice and recommendations, and keeping Rootly on track to meet their tight deadline to get their SOC 2 report.
“The support was super responsive. We had an urgency to get answers quickly and always got it. I remember asking Secureframe about how to talk to prospects about security questionnaires and how to best position ourselves, and got answers immediately. I also liked that the compliance experts didn’t just give me generic answers. They took it a step further by educating me on why something was important, and why we should do one thing over another.”
Rootly was able to get audit-ready in weeks with Secureframe’s support. But the support didn’t end there. When Rootly was going through the audit itself, Secureframe’s team was there, and actually helped clarify some auditor requests for more evidence and pushed back.
“I remember being on an auditor call and we were asked to provide additional evidence. Secureframe’s team pushed back on the auditor and got them to retract their request while making sure our requirements were met. That’s the extra level of support you don’t get from just using a piece of software.”
With Secureframe’s deep expertise, support and guidance, Rootly received their SOC 2 report without any issues or delays, meeting their tight deadline.