Troops Chose Secureframe for Both SOC 2 Type I and Type II, Significantly  Cutting Time to Compliance and Building Customer Confidence 

customer_logo

Troops is an all-in-one HR platform that helps temporary employment agencies scale their business and maximize the potential of their talent, both in France and abroad. Designed by staffing experts and tailored to the needs of agencies, clients, and temp staff, this full-fledged solution increases staffing group productivity and strengthens client and candidate loyalty. Learn more about Troops.fr.

customer_testimonial
quote

“With Secureframe, it’s all automated. Most of our vendors were already integrated with Secureframe, which made it easy to move quickly. These automated integrations are one of the most compelling features of the Secureframe platform.”

Eugen Kuzmin, CTO, Troops

Highlights

Challenges

  • Meet the strict compliance and security requirements of HR clients. 
  • Reduce manual effort and automatically flag privacy concerns. 
  • Continue to provide privacy protection as the team and product grows.

Solutions

Secureframe enabled Troops to: 

  • Shorten time to SOC 2 Type I and Type II compliance. 
  • Reduce pressure on the team, allowing them to  focus on product development.
  • Maintain compliance and privacy protection with Secureframe’s alerting system.

Results

  • Improved efficiency and time savings on SOC 2 Type I and Type II compliance. 
  • Lighter workload for Troops’ engineering team during the audit phase. 
  • New business opportunities with future ISO 27001 certification.

Challenges

Troops needed a SOC 2 report to meet the strict security requirements of its HR clients, so it was critical for their lean team to find an automated solution that would reduce time and manual effort

quote-icon

“We have a B2B product,” says Eugen Kuzmin, CTO of Troops. “So our clients – small to large enterprises – are pretty specific regarding security and have strict requirements to work with certified software."

While Kuzmin knew that compliance would require a lift from their team, it was important that they find a solution that could reduce the workload while automatically flagging any privacy concerns going forward, as his team grew and new engineers began working on their product. 

quote-icon

“It takes a huge amount of time to upload everything for two hundred items. We’re not so big – under 50 people – so it’s a pretty big headache to track all those things,” says Kuzmin. 

Solutions

Secureframe’s automated system shortened time to compliance and reduced pressure on the Troops team, while also providing an alerting system for ongoing privacy protection

quote-icon

“With Secureframe, it’s all automated,” says Kuzmin. “Most of our vendors were already integrated with Secureframe, which made it easy to move quickly. These automated integrations are one of the most compelling features of the Secureframe platform.”

For Troops, Secureframe also protected against human error that could have hurt their compliance.

quote-icon

“It’s about being prepared,”  Kuzmin says. “Imagine in your infrastructure you’ve encrypted every bucket, every snapshot, every volume. But then a new DevOps engineer is working, creating new stuff, and they forget to encrypt a bucket. With Secureframe’s tracking system, you would be alerted that these new items weren’t encrypted. Then it’s only a matter of jumping in from my side to fix them.”

As Troops moved into SOC 2 Type II, Secureframe also provided a way to showcase their progress to companies in the pipeline.

quote-icon

“We were in the negotiation phase with a prospect when we were under Type I, and we needed to show them the progress bar with our ongoing efforts toward the next level of compliance. We told them, ‘We’re not SOC 2 Type II yet, but we’re preparing and able to show the exact percentage of items that are already completed.’ It was very useful.”

Results

Unlocked revenue, saved time and money, and got peace of mind that they are maintaining SOC 2 compliance

By continuing to work with Secureframe to maintain SOC 2 Type I and Type II, Kuzmin says they’ll save time in the audit and evidence-gathering phase, alleviating some of the heavy lift on his team.

quote-icon

“I estimate it would be at least one week of full-time equivalent work from the team just to re-upload everything, to re-describe everything in their system. And then, more time for each new integration.  Right now everything is set up, and there’s no need to switch.”

Kuzmin also appreciates the product evolution they’ve seen with Secureframe.

quote-icon

“They made good progress with the UX since last year – I see that they’re focused on improving.”

Troops plans to consider other integrations with Secureframe in the future.

quote-icon

“Initially we passed Type I certification. Right now we are getting Type II, and I am also interested in ISO 27001 certification, because it has the potential to attract more customers.”