# Best Cloud Compliance Software for Small Business *By [Lauren Worth](https://research.g2.com/insights/author/lauren-worth)* Products classified in the overall Cloud Compliance category are similar in many regards and help companies of all sizes solve their business problems. However, small business features, pricing, setup, and installation differ from businesses of other sizes, which is why we match buyers to the right Small Business Cloud Compliance to fit their needs. Compare product ratings based on reviews from enterprise users or connect with one of G2's buying advisors to find the right solutions within the Small Business Cloud Compliance category. In addition to qualifying for inclusion in the Cloud Compliance Software category, to qualify for inclusion in the Small Business Cloud Compliance Software category, a product must have at least 10 reviews left by a reviewer from a small business. ## How Many Cloud Compliance Software Products Does G2 Track? **Total Products under this Category:** 151 ### Category Stats (May 2026) - **Average Rating**: 4.55/5 - **New Reviews This Quarter**: 128 - **Buyer Segments**: Small-Business 47% │ Mid-Market 37% │ Enterprise 16% - **Top Trending Product**: Data Theorem Cloud Secure (+0.25) *Last updated: May 18, 2026* ## How Does G2 Rank Cloud Compliance Software Products? **Why You Can Trust G2's Software Rankings:** - 30 Analysts and Data Experts - 15,000+ Authentic Reviews - 151+ Products - Unbiased Rankings G2's software rankings are built on verified user reviews, rigorous moderation, and a consistent research methodology maintained by a team of analysts and data experts. Each product is measured using the same transparent criteria, with no paid placement or vendor influence. While reviews reflect real user experiences, which can be subjective, they offer valuable insight into how software performs in the hands of professionals. Together, these inputs power the G2 Score, a standardized way to compare tools within every category. ## Which Cloud Compliance Software Is Best for Your Use Case? - **Best for Small Businesses:** [Vanta](https://www.g2.com/products/vanta/reviews) - **Best for Mid-Market:** [Vanta](https://www.g2.com/products/vanta/reviews) - **Best for Enterprise:** [Wiz](https://www.g2.com/products/wiz-wiz/reviews) - **Highest User Satisfaction:** [Sprinto](https://www.g2.com/products/sprinto-inc/reviews) - **Best Free Software:** [Sprinto](https://www.g2.com/products/sprinto-inc/reviews) --- **Sponsored** ### Decrypt Compliance Decrypt Compliance is a licensed CPA firm that provides independent cybersecurity and compliance audit services for cloud-native startups and high-growth technology companies. The firm operates as both a public accounting practice and an accredited certification body, specializing in frameworks that help organizations demonstrate security, privacy, and governance to their customers. Decrypt’s services are designed for technology-driven companies that need formal certifications to meet customer and regulatory expectations. Typical use cases include obtaining SOC 2 reports for customer assurance, achieving ISO 27001 certification to support enterprise sales, or aligning with ISO 42001 for artificial intelligence governance. By working with Decrypt, companies address customer questions about trust and risk management while building a compliance foundation that scales with business growth. As a firm rooted in Silicon Valley, Decrypt combines the rigor of traditional audit practice with a modern, technology-enabled approach. Audits are conducted by professionals who are fluent across multiple frameworks, reducing the complexity of working with separate specialists for each certification. The process emphasizes readiness, efficiency, and accuracy, ensuring that organizations receive credible results that can be confidently shared with customers and partners. Our work is guided by three core values that directly shape the client experience: Responsiveness, Responsibility, and Resilience: - Responsive: Clients can expect clear, concise communication, timely updates, and proactive guidance that anticipates next steps. This minimizes uncertainty and keeps projects moving without last-minute surprises - Responsible: As independent assessors, we adhere to the highest professional standards, hold ourselves and others accountable to commitments, and provide transparent judgments — including acknowledging what we don’t yet know - Resilient: We evaluate challenges objectively, adapt quickly to unexpected issues, and commit to continuous improvement so that clients receive reliable results even in complex or fast-changing environments Key Features and Value Propositions: - Independent audit and certification services across SOC 2, ISO 27001, ISO 42001, and related frameworks. - Cross-trained audit professionals who streamline multi-framework engagements into a unified process. - Technology-enabled methodology that incorporates AI throughout the entire audit process, not just for evidence requests, to streamline review, highlight risks, and deliver timely certifications. Decrypt Compliance is licensed as a CPA firm in the state of California (License #9491). [Visit website](https://www.g2.com/external_clickthroughs/record?secure%5Bad_program%5D=ppc&secure%5Bad_slot%5D=category_product_list&secure%5Bcategory_id%5D=1861&secure%5Bdisplayable_resource_id%5D=1861&secure%5Bdisplayable_resource_type%5D=Category&secure%5Bmedium%5D=sponsored&secure%5Bplacement_reason%5D=page_category&secure%5Bplacement_resource_ids%5D%5B%5D=1861&secure%5Bprioritized%5D=false&secure%5Bproduct_id%5D=1343508&secure%5Bresource_id%5D=1861&secure%5Bresource_type%5D=Category&secure%5Bsource_type%5D=category_page&secure%5Bsource_url%5D=https%3A%2F%2Fwww.g2.com%2Fcategories%2Fcloud-compliance&secure%5Btoken%5D=e67dfc83b8738608a28dbb5f53eac107c597bda5327294f976b2cb6ec2697113&secure%5Burl%5D=https%3A%2F%2Fdecrypt.cpa&secure%5Burl_type%5D=company_website) --- ## What Are the Top-Rated Cloud Compliance Software Products in 2026? ### 1. [Vanta](https://www.g2.com/products/vanta/reviews) Vanta is the leading Agentic Trust Platform helping 15k+ companies—like Atlassian, Duolingo, Golden State Warriors, and Icelandair—start and scale their security programs and build trust with buyers. Vanta saves security teams time and improves program visibility by automating 35+ compliance frameworks, such as SOC 2 and ISO 27001, and GRC workflows, like risk management. **Average Rating:** 4.6/5.0 **Total Reviews:** 2,413 **How Do G2 Users Rate Vanta?** - **Has the product been a good partner in doing business?:** 9.2/10 (Category avg: 9.3/10) - **Compliance Monitoring:** 9.4/10 (Category avg: 9.0/10) - **Auditing:** 9.1/10 (Category avg: 8.9/10) - **Cloud Gap Analytics:** 8.5/10 (Category avg: 8.6/10) **Who Is the Company Behind Vanta?** - **Seller:** [Vanta](https://www.g2.com/sellers/vanta) - **Company Website:** https://www.vanta.com/ - **Year Founded:** 2018 - **HQ Location:** San Francisco, California - **Twitter:** @TrustVanta (4,641 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/vanta-security/ (1,624 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** CTO, CEO - **Top Industries:** Computer Software, Information Technology and Services - **Company Size:** 56% Small-Business, 38% Mid-Market #### What Are Vanta's Pros and Cons? **Pros:** - Ease of Use (798 reviews) - Compliance (606 reviews) - Integrations (463 reviews) - Automation (457 reviews) - Time-saving (446 reviews) **Cons:** - Integration Issues (207 reviews) - Pricing Issues (178 reviews) - Expensive (173 reviews) - Limited Integrations (172 reviews) - Missing Features (165 reviews) ### 2. [Sprinto](https://www.g2.com/products/sprinto-inc/reviews) Sprinto is the world's first Autonomous Trust Platform, detecting change across your posture, determining what's at risk, and acting across compliance, vendor risk, AI governance, and more, so your organization stays trustworthy without the operational chaos. Sprinto is trusted by 3,000+ companies across 75 countries, including Emergent, CodeRabbit, Anaconda, and Whatfix. The platform supports 200+ global standards, including SOC 2, ISO 27001, GDPR, HIPAA, PCI-DSS, and ISO 42001, for AI governance across 300+ integrations. **Average Rating:** 4.8/5.0 **Total Reviews:** 1,622 **How Do G2 Users Rate Sprinto?** - **Has the product been a good partner in doing business?:** 9.6/10 (Category avg: 9.3/10) - **Compliance Monitoring:** 9.5/10 (Category avg: 9.0/10) - **Auditing:** 9.4/10 (Category avg: 8.9/10) - **Cloud Gap Analytics:** 9.1/10 (Category avg: 8.6/10) **Who Is the Company Behind Sprinto?** - **Seller:** [Sprinto Technology Private Limited](https://www.g2.com/sellers/sprinto-technology-private-limited) - **Company Website:** https://sprinto.com/ - **Year Founded:** 2020 - **HQ Location:** San Francisco, US - **Twitter:** @sprintoHQ (13,300 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/sprinto-com (460 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** CTO, CEO - **Top Industries:** Computer Software, Information Technology and Services - **Company Size:** 56% Small-Business, 42% Mid-Market #### What Are Sprinto's Pros and Cons? **Pros:** - Ease of Use (418 reviews) - Customer Support (346 reviews) - Compliance (324 reviews) - Helpful (320 reviews) - Compliance Management (275 reviews) **Cons:** - Integration Issues (74 reviews) - Limited Integrations (42 reviews) - Limited Customization (41 reviews) - Unclear Guidance (41 reviews) - Software Bugs (40 reviews) ### 3. [Scrut Automation](https://www.g2.com/products/scrut-automation/reviews) Scrut Automation is a leading compliance automation platform designed for fast-growing businesses looking to streamline security, risk, and compliance without disrupting operations. It centralizes compliance functions, automates evidence collection, and simplifies audits, helping security teams reduce compliance efforts by up to 80%. Scrut supports 60+ out-of-the-box frameworks, including SOC 2, ISO 27001, GDPR, HIPAA, and PCI-DSS, with the flexibility to add custom frameworks for unique regulatory needs. With 100+ integrations, Scrut seamlessly integrates into your security and IT ecosystem, automating compliance, eliminating manual work, and improving risk visibility. Join 1700+ industry leaders who trust Scrut for simplified compliance and risk management. Schedule a demo today. **Average Rating:** 4.9/5.0 **Total Reviews:** 1,298 **How Do G2 Users Rate Scrut Automation?** - **Has the product been a good partner in doing business?:** 9.7/10 (Category avg: 9.3/10) - **Compliance Monitoring:** 9.6/10 (Category avg: 9.0/10) - **Auditing:** 9.5/10 (Category avg: 8.9/10) - **Cloud Gap Analytics:** 9.5/10 (Category avg: 8.6/10) **Who Is the Company Behind Scrut Automation?** - **Seller:** [Scrut Automation](https://www.g2.com/sellers/scrut-automation) - **Company Website:** https://www.scrut.io/ - **Year Founded:** 2022 - **HQ Location:** Palo Alto, US - **Twitter:** @scrutsocial (121 Twitter followers) - **LinkedIn® Page:** https://in.linkedin.com/company/scrut-automation (230 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** CTO, CEO - **Top Industries:** Computer Software, Information Technology and Services - **Company Size:** 50% Small-Business, 48% Mid-Market #### What Are Scrut Automation's Pros and Cons? **Pros:** - Ease of Use (276 reviews) - Customer Support (249 reviews) - Compliance Management (225 reviews) - Helpful (216 reviews) - Compliance (190 reviews) **Cons:** - Improvement Needed (69 reviews) - Technical Issues (52 reviews) - Missing Features (44 reviews) - UX Improvement (44 reviews) - Learning Curve (41 reviews) ### 4. [Drata](https://www.g2.com/products/drata/reviews) Drata is a security and compliance automation platform that continuously monitors and collects evidence of a company's security controls, while streamlining compliance workflows end-to-end to ensure audit readiness. Drata helps thousands of companies streamline their compliance efforts through continuous, automated control monitoring and evidence collection, resulting in lower costs and time spent preparing for annual audits and better overall security posture. Drata's supported frameworks include: SOC 2, ISO 27001, HIPAA, GDPR, PCI DSS, CCPA, CCM, CMMC, ISO 27701, ISO 27017, ISO 27018, Cyber Essentials, Microsoft SSPA, NIST 800-53, NIST CSF, NIST AI, FFIEC, NIST 800-171, and Custom Frameworks. Drata is backed by ICONIQ Growth, GGV Capital, SVCI (Silicon Valley CISO Investments), Okta Ventures, Salesforce Ventures, Cowboy Ventures, Leaders Fund, SV Angel, and many key industry leaders. **Average Rating:** 4.7/5.0 **Total Reviews:** 1,150 **How Do G2 Users Rate Drata?** - **Has the product been a good partner in doing business?:** 9.6/10 (Category avg: 9.3/10) - **Compliance Monitoring:** 9.3/10 (Category avg: 9.0/10) - **Auditing:** 9.1/10 (Category avg: 8.9/10) - **Cloud Gap Analytics:** 8.4/10 (Category avg: 8.6/10) **Who Is the Company Behind Drata?** - **Seller:** [Drata](https://www.g2.com/sellers/drata) - **Company Website:** https://drata.com/ - **Year Founded:** 2020 - **HQ Location:** San Diego, US - **Twitter:** @DrataHQ (1,513 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/drata/ (690 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** CTO, CEO - **Top Industries:** Computer Software, Information Technology and Services - **Company Size:** 51% Small-Business, 43% Mid-Market #### What Are Drata's Pros and Cons? **Pros:** - Customer Support (161 reviews) - Ease of Use (148 reviews) - Compliance (130 reviews) - Time-saving (106 reviews) - Integrations (103 reviews) **Cons:** - Limited Integrations (47 reviews) - Improvements Needed (42 reviews) - Integration Issues (41 reviews) - Lack of Clarity (31 reviews) - Missing Features (24 reviews) ### 5. [Scytale](https://www.g2.com/products/scytale-g2/reviews) Scytale is the only AI GRC platform and human experts that drive real compliance outcomes - from getting compliant to staying compliant, and building trust across every framework. Trusted by 1,000+ companies worldwide, Scytale replaces fragmented testing with continuous control visibility, automating evidence, control cross-mapping, and risk management across 80+ security, privacy, and AI frameworks, including SOC 2, ISO 27001, GDPR, SOX ITGC, ISO 42001, and many more. Scytale is a full-scope trust and compliance platform with everything you need to run your GRC program in one central hub, including: an agentic GRC network, a Trust Center, AI-integrated offensive security and expert GRC services. **Average Rating:** 4.8/5.0 **Total Reviews:** 608 **How Do G2 Users Rate Scytale?** - **Has the product been a good partner in doing business?:** 9.6/10 (Category avg: 9.3/10) - **Compliance Monitoring:** 9.1/10 (Category avg: 9.0/10) - **Auditing:** 9.0/10 (Category avg: 8.9/10) - **Cloud Gap Analytics:** 8.7/10 (Category avg: 8.6/10) **Who Is the Company Behind Scytale?** - **Seller:** [Scytale AI](https://www.g2.com/sellers/scytale-ai) - **Company Website:** https://scytale.ai/ - **Year Founded:** 2021 - **HQ Location:** New York, US - **Twitter:** @scytale_ai (76 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/scytale-ai/ (145 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** CTO, CEO - **Top Industries:** Computer Software, Information Technology and Services - **Company Size:** 72% Small-Business, 22% Mid-Market #### What Are Scytale's Pros and Cons? **Pros:** - Helpful (162 reviews) - Ease of Use (148 reviews) - Compliance (102 reviews) - Customer Support (94 reviews) - Team Helpfulness (85 reviews) **Cons:** - Integration Issues (45 reviews) - Limited Integrations (35 reviews) - Evidence Collection (23 reviews) - Missing Features (22 reviews) - Software Bugs (19 reviews) ### 6. [Thoropass](https://www.g2.com/products/thoropass/reviews) Thoropass is a modern compliance audit firm that helps organizations of all sizes build and prove trust with high-quality audits, expert guidance, and integrated security services. Combining deep auditor expertise with intuitive technology, Thoropass delivers a streamlined path to achieving and maintaining compliance with frameworks including SOC 1, SOC 2, ISO 27001, ISO 42001, HIPAA, HITRUST, GDPR, CMMC, Cyber Essentials, PCI DSS, and others. As a licensed CPA firm and CREST-accredited provider, Thoropass brings a level of credibility and rigor that scales from fast-growing startups to complex, regulated enterprises. Our auditors, security engineers, and compliance experts partner closely with customers to simplify evidence collection, reduce audit friction, and ensure results that stand up to regulator, partner, and customer scrutiny. Beyond audits, Thoropass supports the full trust-building lifecycle with penetration testing, risk assessment, access reviews, AI governance assessments, and questionnaire automation—helping teams unify compliance operations without relying on multiple vendors. Organizations choose Thoropass for our responsive expert support, consistent audit outcomes, and a service experience built for modern security and compliance teams. Thoropass is trusted by thousands of companies to prove compliance, strengthen security posture, and confidently meet the expectations of customers, auditors, and regulators. **Average Rating:** 4.7/5.0 **Total Reviews:** 577 **How Do G2 Users Rate Thoropass?** - **Has the product been a good partner in doing business?:** 9.5/10 (Category avg: 9.3/10) - **Compliance Monitoring:** 9.2/10 (Category avg: 9.0/10) - **Auditing:** 9.0/10 (Category avg: 8.9/10) - **Cloud Gap Analytics:** 8.4/10 (Category avg: 8.6/10) **Who Is the Company Behind Thoropass?** - **Seller:** [Thoropass](https://www.g2.com/sellers/thoropass) - **Company Website:** https://thoropass.com/?utm_source=adwords&utm_medium=ppc&utm_campaign=Brand+NA&utm_term=b_thoropass - **Year Founded:** 2019 - **HQ Location:** New York - **Twitter:** @thoropass (380 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/thoropass/ (232 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** CEO, CTO - **Top Industries:** Computer Software, Information Technology and Services - **Company Size:** 70% Small-Business, 26% Mid-Market #### What Are Thoropass's Pros and Cons? **Pros:** - Ease of Use (115 reviews) - Helpful (108 reviews) - Customer Support (89 reviews) - Compliance (70 reviews) - Team Helpfulness (54 reviews) **Cons:** - Lack of Clarity (18 reviews) - Integration Issues (17 reviews) - Audit Issues (15 reviews) - Improvements Needed (14 reviews) - Limited Integrations (14 reviews) ### 7. [Secureframe](https://www.g2.com/products/secureframe/reviews) Secureframe empowers businesses to build trust with customers by simplifying information security and compliance through AI and automation. Thousands of organizations such as AngelList, Nasdaq, Coda, and Remote trust Secureframe to help them obtain and maintain compliance with global information security standards. **Average Rating:** 4.7/5.0 **Total Reviews:** 794 **How Do G2 Users Rate Secureframe?** - **Has the product been a good partner in doing business?:** 9.5/10 (Category avg: 9.3/10) - **Compliance Monitoring:** 9.4/10 (Category avg: 9.0/10) - **Auditing:** 9.0/10 (Category avg: 8.9/10) - **Cloud Gap Analytics:** 8.7/10 (Category avg: 8.6/10) **Who Is the Company Behind Secureframe?** - **Seller:** [Secureframe](https://www.g2.com/sellers/secureframe) - **Company Website:** https://secureframe.com/ - **Year Founded:** 2020 - **HQ Location:** San Francisco, US - **Twitter:** @secureframe (2,234 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/secureframe/ (125 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** CEO, CTO - **Top Industries:** Computer Software, Information Technology and Services - **Company Size:** 66% Small-Business, 30% Mid-Market #### What Are Secureframe's Pros and Cons? **Pros:** - Ease of Use (663 reviews) - Compliance (560 reviews) - Automation (422 reviews) - Security (406 reviews) - Integrations (390 reviews) **Cons:** - Integration Issues (188 reviews) - Limited Integrations (145 reviews) - Limited Customization (141 reviews) - Improvements Needed (110 reviews) - Missing Features (109 reviews) ### 8. [Microsoft Defender for Cloud](https://www.g2.com/products/microsoft-defender-for-cloud/reviews) Microsoft Defender for Cloud is a cloud native application protection platform for multicloud and hybrid environments with comprehensive security across the full lifecycle, from development to runtime. **Average Rating:** 4.4/5.0 **Total Reviews:** 281 **How Do G2 Users Rate Microsoft Defender for Cloud?** - **Has the product been a good partner in doing business?:** 8.5/10 (Category avg: 9.3/10) - **Compliance Monitoring:** 8.8/10 (Category avg: 9.0/10) - **Auditing:** 8.7/10 (Category avg: 8.9/10) - **Cloud Gap Analytics:** 8.5/10 (Category avg: 8.6/10) **Who Is the Company Behind Microsoft Defender for Cloud?** - **Seller:** [Microsoft](https://www.g2.com/sellers/microsoft) - **Year Founded:** 1975 - **HQ Location:** Redmond, Washington - **Twitter:** @microsoft (13,115,342 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/microsoft/ (227,697 employees on LinkedIn®) - **Ownership:** MSFT **Who Uses This Product?** - **Who Uses This:** Saas Consultant, Software Engineer - **Top Industries:** Information Technology and Services, Computer & Network Security - **Company Size:** 39% Mid-Market, 35% Enterprise #### What Are Microsoft Defender for Cloud's Pros and Cons? **Pros:** - Security (121 reviews) - Comprehensive Security (92 reviews) - Cloud Security (71 reviews) - Vulnerability Detection (63 reviews) - Threat Detection (57 reviews) **Cons:** - Complexity (27 reviews) - Expensive (24 reviews) - Delayed Detection (22 reviews) - False Positives (19 reviews) - Improvement Needed (19 reviews) ### 9. [Sysdig Secure](https://www.g2.com/products/sysdig-sysdig-secure/reviews) Sysdig Secure is the real-time cloud-native application protection platform (CNAPP) trusted by organizations of all sizes around the world.. Built by the creators of Falco and Wireshark, Sysdig uniquely delivers runtime-powered visibility and agentic AI to stop cloud attacks instantly, not after the damage is done. With Sysdig, you can: - Stop threats in 2 seconds and respond in minutes - Cut vulnerability noise by 95% with runtime prioritization - Detect real risk instantly across workloads, identities, and misconfigurations - Close permissions gaps in under 2 minutes Sysdig Secure consolidates CSPM, CWPP, CIEM, vulnerability management, and threat detection into a single open, real-time platform. Unlike other CNAPPs, Sysdig connects signals across runtime, identity, and posture to eliminate blind spots, reduce tool sprawl, and accelerate innovation without compromise. No guesswork. No black boxes. Just cloud security, the right way. Learn more at https://sysdig.com **Average Rating:** 4.8/5.0 **Total Reviews:** 111 **How Do G2 Users Rate Sysdig Secure?** - **Has the product been a good partner in doing business?:** 9.7/10 (Category avg: 9.3/10) - **Compliance Monitoring:** 9.6/10 (Category avg: 9.0/10) - **Auditing:** 9.6/10 (Category avg: 8.9/10) - **Cloud Gap Analytics:** 9.6/10 (Category avg: 8.6/10) **Who Is the Company Behind Sysdig Secure?** - **Seller:** [Sysdig](https://www.g2.com/sellers/sysdig-715eaed9-9743-4f27-bd2b-d3730923ac3e) - **Company Website:** https://www.sysdig.com - **Year Founded:** 2013 - **HQ Location:** San Francisco, California - **Twitter:** @Sysdig (10,283 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/3592486/ (640 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** Security Engineer - **Top Industries:** Financial Services, Information Technology and Services - **Company Size:** 46% Enterprise, 39% Mid-Market #### What Are Sysdig Secure's Pros and Cons? **Pros:** - Security (33 reviews) - Vulnerability Detection (32 reviews) - Threat Detection (31 reviews) - Detection Efficiency (30 reviews) - Features (23 reviews) **Cons:** - Feature Limitations (10 reviews) - Complexity (9 reviews) - Missing Features (8 reviews) - Difficult Learning (7 reviews) - Feature Complexity (7 reviews) ### 10. [Cortex Cloud](https://www.g2.com/products/cortex-cloud/reviews) Cortex Cloud by Palo Alto Networks, the next version of Prisma Cloud, understands a unified security approach is essential for effectively addressing AppSec, CloudSec, and SecOps. Connecting cloud security and SOC workflows enables teams to achieve holistic visibility, trace risk across the lifecycle, and correlate real-time threat activity with development and runtime contexts. Cortex Cloud is a unified platform built on three core pillars: data integration, AI-driven intelligence, and automation. Now you can safeguard applications, data, and infrastructure across multicloud and hybrid environments with a unified data model that consolidates telemetry from code, runtime, identity, and endpoints, all into a single data source. Empower teams with precise, AI-powered insights and 2200+ machine learning models to identify and stop zero-day threats with real-time advanced threat detection and response. And automate with 1000+ prebuilt playbooks across your cloud stack to reduce manual workloads, accelerate remediations, and cut response times tenfold. Cortex Cloud delivers more than tools—it transforms how organizations secure their cloud environments. **Average Rating:** 4.1/5.0 **Total Reviews:** 110 **How Do G2 Users Rate Cortex Cloud?** - **Has the product been a good partner in doing business?:** 8.0/10 (Category avg: 9.3/10) - **Compliance Monitoring:** 8.5/10 (Category avg: 9.0/10) - **Auditing:** 8.6/10 (Category avg: 8.9/10) - **Cloud Gap Analytics:** 8.1/10 (Category avg: 8.6/10) **Who Is the Company Behind Cortex Cloud?** - **Seller:** [Palo Alto Networks](https://www.g2.com/sellers/palo-alto-networks) - **Company Website:** https://www.paloaltonetworks.com - **Year Founded:** 2005 - **HQ Location:** Santa Clara, CA - **Twitter:** @PaloAltoNtwks (128,883 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/30086/ (21,355 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Information Technology and Services, Computer & Network Security - **Company Size:** 38% Enterprise, 31% Mid-Market #### What Are Cortex Cloud's Pros and Cons? **Pros:** - Ease of Use (49 reviews) - Features (45 reviews) - Security (43 reviews) - Visibility (38 reviews) - Cloud Integration (34 reviews) **Cons:** - Expensive (31 reviews) - Difficult Learning (30 reviews) - Learning Curve (29 reviews) - Pricing Issues (24 reviews) - Complex Setup (21 reviews) ### 11. [Delve](https://www.g2.com/products/delve-delve/reviews) Delve is an AI-native compliance platform that helps 100s of fast-growing companies get compliant with frameworks like SOC 2, HIPAA, ISO 27001, GDPR, PCI-DSS, HITRUST, and more. Delve's AI platform streamlines compliance from months of busywork down to days. AI is integrated throughout the process to automate code and infrastructure scanning, identify risks proactively, autofill security questionnaires, and more. We also provide white-glove onboarding, 1:1 Slack support, and end-to-end audit management for every engagement. Hypergrowth companies like Bland, 11x, and Lovable use Delve for automating compliance. Delve is backed by Y Combinator, General Catalyst, Funders Club, and more. **Average Rating:** 4.7/5.0 **Total Reviews:** 134 **How Do G2 Users Rate Delve?** - **Has the product been a good partner in doing business?:** 9.7/10 (Category avg: 9.3/10) - **Compliance Monitoring:** 9.4/10 (Category avg: 9.0/10) - **Auditing:** 9.4/10 (Category avg: 8.9/10) - **Cloud Gap Analytics:** 9.2/10 (Category avg: 8.6/10) **Who Is the Company Behind Delve?** - **Seller:** [Delve](https://www.g2.com/sellers/delve-7f4853c3-d5f3-426c-a6ff-2fc37d20a2ce) - **Company Website:** https://www.delve.co - **Year Founded:** 2023 - **HQ Location:** San Francisco, US - **LinkedIn® Page:** https://www.linkedin.com/company/getdelve (40 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** CEO, CTO - **Top Industries:** Computer Software - **Company Size:** 34% Small-Business, 1% Mid-Market #### What Are Delve's Pros and Cons? **Pros:** - Ease of Use (84 reviews) - Easy Setup (77 reviews) - Compliance (76 reviews) - Response Time (32 reviews) - Integrations (28 reviews) **Cons:** - Software Bugs (19 reviews) - Improvements Needed (14 reviews) - Limited Integrations (11 reviews) - Insufficient Information (8 reviews) - Lack of Clarity (8 reviews) ### 12. [Coro Cybersecurity](https://www.g2.com/products/coro-cybersecurity/reviews) Coro is the easy cybersecurity company. We designed an all-in-one platform that every lean IT team will master. While other solutions scare people into buying complicated, confusing products, we lead with elegant simplicity. Coro is fast to deploy, easy to use, and designed not to waste your time. Once you install Coro, you’ll hardly think about us. That’s the point. Coro automatically detects and fixes security problems, so IT teams don’t have to spend time investigating or troubleshooting. We’re also one of the fastest-growing tech companies in North America, just ask Deloitte. Designed primarily for lean IT teams, Coro’s platform is particularly beneficial for organizations that may lack extensive IT resources or dedicated cybersecurity teams. With the increasing complexity of cyber threats, these businesses often find it challenging to maintain adequate security measures. Coro addresses this gap by automating the detection and remediation of security threats, allowing businesses to focus on their core operations without the constant worry of potential breaches or security incidents. One of Coro's key benefits is its intuitive, user-friendly interface, which simplifies the management of cybersecurity protocols. This ease of use is particularly advantageous for organizations with limited IT expertise, as it minimizes the need for extensive training or technical knowledge. Additionally, Coro’s continuous monitoring and reporting features provide businesses with valuable insights into their security posture, enabling them to make informed decisions about their cybersecurity strategies. Another impressive features is how comprehensive, yet powerful, it's all-in-one platform is. Using advanced AI technology, it detects and remediates over 92% of threats automatically, ensuring potential vulnerabilities are identified and addressed in real-time, significantly reducing the risk of data breaches and other cyber incidents. Their impressive performance has been recognised by G2 with a 94% approval rating from users and SE Labs, who awarded them three AAA ratings for their EDR, Email and Cloud modules. Overall, Coro’s cybersecurity platform represents a significant advancement in the field of cybersecurity. By automating threat detection and remediation, offering customizable solutions, and providing a user-friendly experience, Coro empowers organizations to effectively defend against the evolving landscape of cyber threats. Its recognition as one of the fastest-growing cybersecurity companies in North America further underscores its commitment to delivering innovative and effective security solutions. **Average Rating:** 4.7/5.0 **Total Reviews:** 231 **How Do G2 Users Rate Coro Cybersecurity?** - **Has the product been a good partner in doing business?:** 9.6/10 (Category avg: 9.3/10) - **Compliance Monitoring:** 9.5/10 (Category avg: 9.0/10) - **Auditing:** 9.0/10 (Category avg: 8.9/10) - **Cloud Gap Analytics:** 8.5/10 (Category avg: 8.6/10) **Who Is the Company Behind Coro Cybersecurity?** - **Seller:** [Coronet](https://www.g2.com/sellers/coronet) - **Company Website:** https://www.coro.net - **Year Founded:** 2014 - **HQ Location:** Chicago, IL - **Twitter:** @coro_cyber (1,886 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/coronet (295 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** IT Manager, IT Director - **Top Industries:** Non-Profit Organization Management, Financial Services - **Company Size:** 57% Mid-Market, 36% Small-Business #### What Are Coro Cybersecurity's Pros and Cons? **Pros:** - Ease of Use (99 reviews) - Security (68 reviews) - Customer Support (67 reviews) - Protection (55 reviews) - Easy Setup (49 reviews) **Cons:** - Performance Issues (32 reviews) - Improvements Needed (20 reviews) - False Positives (19 reviews) - Inaccuracy (19 reviews) - Limited Features (16 reviews) ### 13. [Wiz](https://www.g2.com/products/wiz-wiz/reviews) Wiz transforms cloud security for customers – including more than 50% of the Fortune 100 – by enabling a new operating model. With Wiz, organizations can democratize security across the development lifecycle, empowering them to build fast and securely. Its Cloud Native Application Protection Platform (CNAPP) consolidates CSPM, KSPM, CWPP, Vulnerability management, IaC scanning, CIEM, DSPM into a single platform. Wiz drives visibility, risk prioritization, and business agility. Protecting Your Cloud Environments Requires a Unified, Cloud Native Platform. Wiz connects to every cloud environment, scans every layer, and covers every aspect of your cloud security - including elements that normally require installing agents. Its comprehensive approach has all of these cloud security solutions built in. Hundreds of organizations worldwide, including 50 percent of the Fortune 100, to rapidly identify and remove critical risks in cloud environments. Its customers include Salesforce, Slack, Mars, BMW, Avery Dennison, Priceline, Cushman & Wakefield, DocuSign, Plaid, and Agoda, among others. Wiz is backed by Sequoia, Index Ventures, Insight Partners, Salesforce, Blackstone, Advent, Greenoaks, Lightspeed and Aglaé. Visit https://www.wiz.io for more information. **Average Rating:** 4.7/5.0 **Total Reviews:** 786 **How Do G2 Users Rate Wiz?** - **Has the product been a good partner in doing business?:** 9.4/10 (Category avg: 9.3/10) - **Compliance Monitoring:** 9.0/10 (Category avg: 9.0/10) - **Auditing:** 8.6/10 (Category avg: 8.9/10) - **Cloud Gap Analytics:** 8.9/10 (Category avg: 8.6/10) **Who Is the Company Behind Wiz?** - **Seller:** [Wiz](https://www.g2.com/sellers/wiz-76a0133b-42e5-454e-b5da-860e503471db) - **Company Website:** https://www.wiz.io/ - **Year Founded:** 2020 - **HQ Location:** New York, US - **Twitter:** @wiz_io (24,357 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/wizsecurity/ (3,248 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** CISO, Security Engineer - **Top Industries:** Financial Services, Information Technology and Services - **Company Size:** 54% Enterprise, 39% Mid-Market #### What Are Wiz's Pros and Cons? **Pros:** - Features (113 reviews) - Security (107 reviews) - Ease of Use (104 reviews) - Visibility (87 reviews) - Easy Setup (68 reviews) **Cons:** - Improvement Needed (35 reviews) - Feature Limitations (34 reviews) - Learning Curve (34 reviews) - Improvements Needed (29 reviews) - Complexity (27 reviews) ### 14. [Check Point Cloud Firewall (formerly CloudGuard Network Security)](https://www.g2.com/products/check-point-cloud-firewall-formerly-cloudguard-network-security/reviews) CloudGuard Network Security is a comprehensive cloud security solution designed to protect public, private, and hybrid cloud environments from a wide array of cyber threats. This platform focuses on delivering advanced threat protection, ensuring that organizations can confidently transition to the cloud while maintaining robust security measures. With an impressive malware catch rate, CloudGuard is engineered to defend against various types of attacks, including ransomware and other malicious software. Targeted at enterprises and organizations that are increasingly adopting cloud technologies, CloudGuard Network Security is particularly beneficial for IT teams and security professionals who require a reliable and efficient way to manage security across multiple environments. The solution is ideal for businesses looking to enhance their cloud security posture without compromising on agility or operational efficiency. By integrating seamlessly with leading Infrastructure as Code (IaC) tools, CloudGuard automates network security processes, making it easier for teams to implement security measures within their continuous integration and continuous deployment (CI/CD) workflows. One of the standout features of CloudGuard is its advanced protection capabilities. The platform includes a suite of security features such as a firewall, data loss prevention (DLP), intrusion prevention system (IPS), application control, IPsec VPN, URL filtering, antivirus, anti-bot protection, threat extraction, and threat emulation. These tools work in concert to provide a multi-layered defense strategy that addresses various attack vectors, ensuring that organizations can mitigate risks effectively. Additionally, CloudGuard's automated network security capabilities support IaC and CI/CD practices, allowing organizations to streamline their security processes through the use of APIs and automation. This enables security teams to focus on more strategic initiatives rather than being bogged down by manual tasks. The unified security management feature further enhances the solution by providing consistent visibility and policy management across hybrid-cloud and on-premises environments. Users can access logging, reporting, and control from a single interface, simplifying the management of security policies and improving overall operational efficiency. Overall, CloudGuard Network Security stands out in the cloud security landscape by offering a robust, integrated solution that not only protects against emerging threats but also enhances the agility and efficiency of security operations. Its comprehensive feature set and automation capabilities make it a valuable asset for organizations navigating the complexities of cloud security. **Average Rating:** 4.4/5.0 **Total Reviews:** 268 **How Do G2 Users Rate Check Point Cloud Firewall (formerly CloudGuard Network Security)?** - **Has the product been a good partner in doing business?:** 8.8/10 (Category avg: 9.3/10) - **Compliance Monitoring:** 8.9/10 (Category avg: 9.0/10) - **Auditing:** 9.0/10 (Category avg: 8.9/10) - **Cloud Gap Analytics:** 8.7/10 (Category avg: 8.6/10) **Who Is the Company Behind Check Point Cloud Firewall (formerly CloudGuard Network Security)?** - **Seller:** [Check Point Software Technologies](https://www.g2.com/sellers/check-point-software-technologies) - **Company Website:** https://www.checkpoint.com/ - **Year Founded:** 1993 - **HQ Location:** Redwood City, CA - **Twitter:** @CheckPointSW (71,000 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/check-point-software-technologies/ (8,356 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** Security Engineer, Network Engineer - **Top Industries:** Computer & Network Security, Information Technology and Services - **Company Size:** 40% Enterprise, 33% Mid-Market #### What Are Check Point Cloud Firewall (formerly CloudGuard Network Security)'s Pros and Cons? **Pros:** - Security (42 reviews) - Ease of Use (28 reviews) - Threat Detection (28 reviews) - Threat Protection (28 reviews) - Cloud Integration (22 reviews) **Cons:** - Complexity (26 reviews) - Difficult Setup (25 reviews) - Difficult Learning (24 reviews) - Difficult Configuration (23 reviews) - Difficult Learning Curve (22 reviews) ### 15. [Copla](https://www.g2.com/products/copla/reviews) Copla offers an advanced cybersecurity compliance platform for financial institutions, focusing on DORA while also supporting a range of other industry frameworks. Our platform simplifies compliance with predefined and customizable workflows that eliminate manual tasks. Employees are engaged in real-time compliance checks and evidence gathering via our chatbot Copla Stream, reducing bottlenecks and streamlining the process. Compliance evidence is automatically stored in a central location, making audits faster and always regulator-ready. Features like data extraction, risk assessment, vulnerability scanning, penetration testing, and continuous monitoring ensure businesses stay secure and compliant. We also provide business continuity planning and awareness training to strengthen security posture. Copla includes fractional CISO services, offering expert guidance and strategic leadership to help organizations navigate complex compliance and risk management challenges. With fully guided DORA implementation, compliance analysis, and robust risk management workflows, our platform empowers financial institutions to reduce compliance workloads by up to 80% and save over 60K EUR, ensuring efficient and secure operations. **Average Rating:** 4.9/5.0 **Total Reviews:** 87 **How Do G2 Users Rate Copla?** - **Has the product been a good partner in doing business?:** 9.7/10 (Category avg: 9.3/10) - **Compliance Monitoring:** 9.2/10 (Category avg: 9.0/10) - **Auditing:** 9.5/10 (Category avg: 8.9/10) - **Cloud Gap Analytics:** 9.3/10 (Category avg: 8.6/10) **Who Is the Company Behind Copla?** - **Seller:** [Copla](https://www.g2.com/sellers/copla) - **Company Website:** https://www.copla.com - **Year Founded:** 2023 - **HQ Location:** N/A - **LinkedIn® Page:** https://www.linkedin.com/company/cyber-upgrade/ (41 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Financial Services, Information Technology and Services - **Company Size:** 75% Small-Business, 30% Mid-Market #### What Are Copla's Pros and Cons? **Pros:** - Compliance (42 reviews) - Ease of Use (42 reviews) - Time-saving (30 reviews) - Auditing (29 reviews) - Evidence Collection (27 reviews) **Cons:** - Difficult Setup (12 reviews) - Integration Issues (11 reviews) - Complex Setup (9 reviews) - UX Improvement (9 reviews) - Learning Curve (8 reviews) ### 16. [Hybrid Cloud Security](https://www.g2.com/products/trend-micro-hybrid-cloud-security/reviews) In today's complex digital landscape, securing your cloud environment is paramount. The management and security of your hybrid and multi-cloud setup pose increasing challenges. Trend's Cloud Security provides essential visibility, allowing you and your teams to secure every aspect of your transformation and eliminate disruptive security silos. Automate security policies, deployments, monitoring, and compliance audits seamlessly from a single console, ensuring the automatic protection of all workloads from both known and unknown threats. With Cloud-Native Application Protection and robust platform capabilities, Trend empowers you to proactively address vulnerabilities and defend against threats. Gain centralized visibility, continuous asset discovery, and contextualized risk assessments, equipping your team with everything necessary to stay ahead of potential cloud security risks. **Average Rating:** 4.5/5.0 **Total Reviews:** 181 **How Do G2 Users Rate Hybrid Cloud Security?** - **Has the product been a good partner in doing business?:** 9.1/10 (Category avg: 9.3/10) - **Compliance Monitoring:** 9.1/10 (Category avg: 9.0/10) - **Auditing:** 9.0/10 (Category avg: 8.9/10) - **Cloud Gap Analytics:** 9.1/10 (Category avg: 8.6/10) **Who Is the Company Behind Hybrid Cloud Security?** - **Seller:** [Trend Micro](https://www.g2.com/sellers/trend-micro) - **Year Founded:** 1988 - **HQ Location:** Tokyo - **LinkedIn® Page:** https://www.linkedin.com/company/4312/ (8,090 employees on LinkedIn®) - **Ownership:** OTCMKTS:TMICY - **Total Revenue (USD mm):** $1,515 **Who Uses This Product?** - **Who Uses This:** Cyber Security Engineer, Cyber Security Associate - **Top Industries:** Computer & Network Security, Information Technology and Services - **Company Size:** 43% Mid-Market, 34% Enterprise #### What Are Hybrid Cloud Security's Pros and Cons? **Pros:** - Security (9 reviews) - Security Protection (7 reviews) - Compliance (6 reviews) - Cloud Security (4 reviews) - Comprehensive Security (4 reviews) **Cons:** - Complexity (6 reviews) - Complex Setup (4 reviews) - Feature Complexity (4 reviews) - Learning Curve (4 reviews) - Difficult Learning (3 reviews) ### 17. [Secfix](https://www.g2.com/products/secfix/reviews) Secfix is Europe's security and compliance automation platform made for SMBs and mid-market companies. The platform automates up to 90% of the effort to achieve ISO 27001, SOC 2, GDPR, NIS2 and other compliance frameworks through deep integrations to AWS cloud, SSO, ticketing and HR systems. With direct access to European auditors and multilingual support, Secfix makes the audit experience smooth and stress-free. **Average Rating:** 4.8/5.0 **Total Reviews:** 84 **How Do G2 Users Rate Secfix?** - **Has the product been a good partner in doing business?:** 9.5/10 (Category avg: 9.3/10) - **Compliance Monitoring:** 9.0/10 (Category avg: 9.0/10) - **Auditing:** 7.9/10 (Category avg: 8.9/10) - **Cloud Gap Analytics:** 8.3/10 (Category avg: 8.6/10) **Who Is the Company Behind Secfix?** - **Seller:** [Secfix](https://www.g2.com/sellers/secfix) - **Company Website:** https://secfix.com/ - **Year Founded:** 2021 - **HQ Location:** Munich, DE - **LinkedIn® Page:** https://www.linkedin.com/company/secfix (30 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** CTO - **Top Industries:** Computer Software, Information Technology and Services - **Company Size:** 82% Small-Business, 18% Mid-Market #### What Are Secfix's Pros and Cons? **Pros:** - Ease of Use (43 reviews) - Customer Support (31 reviews) - Helpful (26 reviews) - Compliance (24 reviews) - Guidance (24 reviews) **Cons:** - Integration Issues (11 reviews) - Limited Integration (9 reviews) - Limited Integrations (8 reviews) - Missing Features (8 reviews) - Limitations (7 reviews) ### 18. [VGS Platform](https://www.g2.com/products/very-good-security-vgs-platform/reviews) Very Good Security (“VGS”) makes it easy for customers to collect, protect and share sensitive financial data in a way that accelerates revenue, eliminates risk, ensures compliance, and drives profitability. VGS secures that information in an encrypted token vault; enabling our customers to de-risk their technical environment and achieve compliance certifications like PCI DSS, SOC 2, GDPR, and more, faster. VGS delivers a modern solution to collect, protect, and exchange sensitive data that spans from data privacy to payment acceptance and card issuance; providing businesses with tokenization, PCI compliance, data security, processor optionality, and the ability to operate on that data without compromising their security posture. VGS delivers a modern payments security solution that gives businesses ownership and control over critically valuable customer data, granting them maximum portability, operationality, and value extraction. VGS customers decouple the value and utility of data from the associated security and compliance risks and allow customers to achieve continuous PCI DSS compliance 16x faster, at 25% the cost of a DIY approach. **Average Rating:** 4.7/5.0 **Total Reviews:** 46 **How Do G2 Users Rate VGS Platform?** - **Has the product been a good partner in doing business?:** 8.9/10 (Category avg: 9.3/10) - **Compliance Monitoring:** 10.0/10 (Category avg: 9.0/10) - **Auditing:** 10.0/10 (Category avg: 8.9/10) - **Cloud Gap Analytics:** 10.0/10 (Category avg: 8.6/10) **Who Is the Company Behind VGS Platform?** - **Seller:** [Very Good Security](https://www.g2.com/sellers/very-good-security) - **Year Founded:** 2015 - **HQ Location:** San Francisco, California - **Twitter:** @getvgs (1,432 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/18142614/ (452 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** Software Engineer - **Top Industries:** Financial Services, Banking - **Company Size:** 51% Mid-Market, 45% Small-Business ### 19. [Akitra](https://www.g2.com/products/akitra/reviews) Akitra is an Agentic-AI native platform that automates evidence collection, continuous control monitoring, user access reviews, vendor risk, security questionnaires, trust center workflows, penetration testing coordination, and AI governance readiness across major security and privacy frameworks. Tailored for businesses in highly regulated sectors like finance, healthcare, and technology, Akitra serves compliance officers, CISOs, risk teams, and executives who need to meet complex regulatory requirements with speed and precision. With a user-friendly interface and intuitive workflows, Akitra simplifies even the most rigorous frameworks-including SOC 2, ISO 27001, HIPAA, NIST 800-53, GDPR, and more. Organizations can now achieve certification in weeks and maintain continuous compliance with ease. Akitra’s powerful automation capabilities reduce manual effort, streamline evidence collection, and proactively surface risks-enhancing accuracy and reducing audit fatigue. Backed by patented AI technology, a suite of integrated cybersecurity solutions, and extraordinary support, Akitra offers far more than a typical compliance tool. It enables instant trust with customers, partners, and auditors through transparency and real-time insights. With over 300 integrations across leading cloud platforms and SaaS applications, Akitra seamlessly fits into your existing stack, delivering operational efficiency without disruption. By combining regulatory intelligence with cutting-edge automation, Akitra empowers businesses to stay ahead of threats, close deals faster, and turn compliance into a competitive advantage. **Average Rating:** 4.9/5.0 **Total Reviews:** 60 **How Do G2 Users Rate Akitra?** - **Has the product been a good partner in doing business?:** 9.8/10 (Category avg: 9.3/10) **Who Is the Company Behind Akitra?** - **Seller:** [Akitra](https://www.g2.com/sellers/akitra) - **Company Website:** https://akitra.com/ - **Year Founded:** 2017 - **HQ Location:** Sunnyvale, California - **Twitter:** @Akitra_Inc (125 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/akitra/ (90 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Computer Software, Information Technology and Services - **Company Size:** 58% Small-Business, 18% Mid-Market #### What Are Akitra's Pros and Cons? **Pros:** - Compliance (19 reviews) - Helpful (19 reviews) - Ease of Use (16 reviews) - Team Helpfulness (10 reviews) - Automation (7 reviews) **Cons:** - Compliance Difficulty (2 reviews) - Control Issues (2 reviews) - Difficult Initiation (2 reviews) - Difficult Setup (2 reviews) - Integration Issues (2 reviews) ### 20. [Orca Security](https://www.g2.com/products/orca-security/reviews) The Orca Cloud Security Platform identifies, prioritizes, and remediates risks and compliance issues in workloads, configurations, and identities across your cloud estate spanning AWS, Azure, Google Cloud, Kubernetes, Alibaba Cloud, and Oracle Cloud. Orca offers the industry’s most comprehensive cloud security solution in a single platform — eliminating the need to deploy and maintain multiple point solutions. Orca is agentless-first, and connects to your environment in minutes using Orca’s patented SideScanning™ technology that provides deep and wide visibility into your cloud environment, without requiring agents. In addition, Orca can integrate with third-party agents for runtime visibility and protection for critical workloads. Orca is at the forefront of leveraging Generative AI for simplified investigations and accelerated remediation – reducing required skill levels and saving cloud security, DevOps, and development teams time and effort, while significantly improving security outcomes. As a Cloud Native Application Protection Platform (CNAPP), Orca consolidates many point solutions in one platform, including: CSPM, CWPP, CIEM, Vulnerability Management, Container and Kubernetes Security, DSPM, API Security, CDR, Multi-cloud Compliance, Shift Left Security, and AI-SPM. **Average Rating:** 4.6/5.0 **Total Reviews:** 257 **How Do G2 Users Rate Orca Security?** - **Has the product been a good partner in doing business?:** 9.4/10 (Category avg: 9.3/10) - **Compliance Monitoring:** 8.9/10 (Category avg: 9.0/10) - **Auditing:** 8.6/10 (Category avg: 8.9/10) - **Cloud Gap Analytics:** 8.5/10 (Category avg: 8.6/10) **Who Is the Company Behind Orca Security?** - **Seller:** [Orca Security](https://www.g2.com/sellers/orca-security) - **Company Website:** https://orca.security - **Year Founded:** 2019 - **HQ Location:** Portland, Oregon - **Twitter:** @orcasec (4,827 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/35573984/ (495 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** Security Engineer, CISO - **Top Industries:** Information Technology and Services, Computer Software - **Company Size:** 45% Enterprise, 44% Mid-Market #### What Are Orca Security's Pros and Cons? **Pros:** - Ease of Use (37 reviews) - Features (33 reviews) - Security (29 reviews) - User Interface (22 reviews) - Visibility (22 reviews) **Cons:** - Improvement Needed (15 reviews) - Feature Limitations (12 reviews) - Limited Features (10 reviews) - Missing Features (10 reviews) - Ineffective Alerts (9 reviews) ### 21. [TrustCloud®](https://www.g2.com/products/trustcloud/reviews) As a Trust Assurance platform, TrustCloud® uses a unified, graph-based architecture that connects your controls, policies, and knowledge base into one silo-free compliance automation and risk management platform. We help compliance teams: - Reduce cost and time managing controls and preparing for audits - Accelerate sales deals with faster security reviews - Manage and quantify risk We help CISOs: - Reduce corporate and personal liability - Programmatically measure and report on control status, compliance audits, customer commitments, and risk - Become strategic partners to the board and leadership TrustCloud is a fast, affordable, and accurate compliance and risk management platform that dynamically scopes to your objectives as regulations change and your business grows. **Average Rating:** 4.6/5.0 **Total Reviews:** 49 **How Do G2 Users Rate TrustCloud®?** - **Has the product been a good partner in doing business?:** 9.6/10 (Category avg: 9.3/10) - **Compliance Monitoring:** 8.8/10 (Category avg: 9.0/10) - **Auditing:** 9.0/10 (Category avg: 8.9/10) - **Cloud Gap Analytics:** 8.1/10 (Category avg: 8.6/10) **Who Is the Company Behind TrustCloud®?** - **Seller:** [TrustCloud®](https://www.g2.com/sellers/trustcloud) - **Company Website:** https://www.trustcloud.ai/ - **HQ Location:** Boston, US - **Twitter:** @TrustCloudAI (441 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/bekintent/ (67 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Computer Software, Information Technology and Services - **Company Size:** 82% Small-Business, 18% Mid-Market #### What Are TrustCloud®'s Pros and Cons? **Pros:** - Automation (2 reviews) - Policy Management (2 reviews) - Risk Management (2 reviews) - Time-saving (2 reviews) - Compliance (1 reviews) **Cons:** - Integration Issues (2 reviews) - Limited Integrations (2 reviews) - Expensive (1 reviews) - Lack of Customization (1 reviews) - Limited Customization (1 reviews) ### 22. [Apptega](https://www.g2.com/products/apptega/reviews) Tired of spreadsheets that don’t scale and require too much manual effort? Hampered by overly complex IT GRC systems that have you working for them? Apptega is the cybersecurity and compliance management platform that makes it easy to assess, build, manage, and report your cybersecurity and compliance program. Organizations in all industries and MSSPs rely on Apptega to meet the challenges of cybersecurity and compliance more efficiently and cost-effectively than with any other approach. Featuring 25+ frameworks, including SOC 2, NIST, CMMC, ISO, CIS, PCI, GDPR, HIPAA and more, and manage your program with: - Multi-Tenant - Assessments - Compliance Scoring - Risk Management - Vendor Risk Management - Audit Management - Reporting - Integrations **Average Rating:** 4.7/5.0 **Total Reviews:** 153 **How Do G2 Users Rate Apptega?** - **Has the product been a good partner in doing business?:** 9.7/10 (Category avg: 9.3/10) - **Compliance Monitoring:** 9.4/10 (Category avg: 9.0/10) - **Auditing:** 9.0/10 (Category avg: 8.9/10) - **Cloud Gap Analytics:** 8.4/10 (Category avg: 8.6/10) **Who Is the Company Behind Apptega?** - **Seller:** [Apptega](https://www.g2.com/sellers/apptega) - **Company Website:** https://www.apptega.com - **HQ Location:** Atlanta Junction, Georgia, United States - **Twitter:** @apptega (290 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/19418228/ (56 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** Chief Information Security Officer - **Top Industries:** Information Technology and Services, Computer & Network Security - **Company Size:** 42% Mid-Market, 41% Small-Business #### What Are Apptega's Pros and Cons? **Pros:** - Ease of Use (38 reviews) - Compliance Management (30 reviews) - Compliance (29 reviews) - Features (22 reviews) - Security (22 reviews) **Cons:** - Improvements Needed (12 reviews) - Limited Functionality (11 reviews) - Missing Features (8 reviews) - Limitations (7 reviews) - Limited Customization (7 reviews) ### 23. [Rotate](https://www.g2.com/products/rotate/reviews) Rotate is a 360-degree cybersecurity cloud platform designed for small and midsize businesses (SMBs and SME’s). It provides all-around protection that integrates seamlessly with existing tech stacks. Rotate features five key hubs: Identity, Email, Endpoint, Training, and Monitoring, offering essential technology services, education, and expertise to help SMBs, SMEs, and Managed Service Providers (MSPs) tackle cybersecurity challenges effectively. Supported by investors of SentinelOne, Rotate is rapidly gaining adoption across North America. **Average Rating:** 5.0/5.0 **Total Reviews:** 23 **How Do G2 Users Rate Rotate?** - **Has the product been a good partner in doing business?:** 10.0/10 (Category avg: 9.3/10) - **Compliance Monitoring:** 9.8/10 (Category avg: 9.0/10) - **Auditing:** 9.5/10 (Category avg: 8.9/10) - **Cloud Gap Analytics:** 8.8/10 (Category avg: 8.6/10) **Who Is the Company Behind Rotate?** - **Seller:** [Rotate](https://www.g2.com/sellers/rotate) - **Year Founded:** 2023 - **HQ Location:** Palo Alto, US - **LinkedIn® Page:** https://www.linkedin.com/company/withrotate (29 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** CEO - **Top Industries:** Computer & Network Security - **Company Size:** 87% Small-Business, 13% Mid-Market #### What Are Rotate's Pros and Cons? **Pros:** - Affordable (1 reviews) - Centralized Management (1 reviews) - Comprehensive Solutions (1 reviews) - Cyber Security (1 reviews) - Ease of Use (1 reviews) **Cons:** - Compatibility Issues (1 reviews) - Limited Compatibility (1 reviews) - Missing Features (1 reviews) ### 24. [Strike Graph](https://www.g2.com/products/strike-graph/reviews) Strike Graph is an AI-native compliance management software designed to revolutionize how businesses achieve and maintain security certifications, including CMMC, NIST, ISO 27001, HIPAA, SOC 2, PCI DSS, TISAX, and more. With a mission to help companies efficiently and effectively prove compliance and build trust, Strike Graph transforms compliance from a burdensome expense into a strategic advantage. Traditional security compliance processes are often slow, opaque, and costly, requiring reliance on outdated methods. Strike Graph eliminates these inefficiencies by providing companies with a transparent, objective solution to design, operate, and measure their security programs. Strike Graph’s innovative tools simplify every stage of compliance. It enables users to create customized security programs tailored to their specific risks and operational needs, streamlines evidence collection and testing, and offers in-platform certification options that reduce reliance on third-party auditors. This comprehensive approach not only saves time and money but also ensures continuous compliance monitoring to protect businesses against evolving threats. The platform caters to security leaders in all industries, including SaaS, FinTech, HealthTech, EdTech, and beyond, offering a knowledgeable and approachable partner in compliance management. Strike Graph’s AI-powered features, like Verify AI, enhance accuracy and efficiency while ensuring data security through self-hosted models. By turning compliance into a revenue enabler, Strike Graph helps companies build trust with their customers, partners, and stakeholders, paving the way for sustainable growth and innovation. **Average Rating:** 4.6/5.0 **Total Reviews:** 187 **How Do G2 Users Rate Strike Graph?** - **Has the product been a good partner in doing business?:** 9.5/10 (Category avg: 9.3/10) - **Compliance Monitoring:** 8.9/10 (Category avg: 9.0/10) - **Auditing:** 8.5/10 (Category avg: 8.9/10) - **Cloud Gap Analytics:** 8.3/10 (Category avg: 8.6/10) **Who Is the Company Behind Strike Graph?** - **Seller:** [Strike Graph](https://www.g2.com/sellers/strike-graph) - **Company Website:** https://www.strikegraph.com/ - **Year Founded:** 2020 - **HQ Location:** Seattle, WA - **Twitter:** @StrikeGraph (133 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/42342591/ (39 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** CEO, CTO - **Top Industries:** Information Technology and Services, Computer Software - **Company Size:** 57% Small-Business, 36% Mid-Market #### What Are Strike Graph's Pros and Cons? **Pros:** - Ease of Use (77 reviews) - Helpful (76 reviews) - Customer Support (60 reviews) - Compliance Management (51 reviews) - Team Helpfulness (47 reviews) **Cons:** - Improvement Needed (24 reviews) - Evidence Collection (20 reviews) - Integration Issues (15 reviews) - Lack of Guidance (14 reviews) - Evidence Management (13 reviews) ### 25. [Horangi Warden](https://www.g2.com/products/horangi-warden/reviews) Warden is a Cloud Security Posture Management (CSPM) solution that helps organizations using AWS, GCP, Ali Cloud, Huawei, or Azure infrastructure to configure their infrastructure according to globally recognized compliance standards, without requiring any cloud expertise. Reduce the headcount required to hire a cloud security team by 70% to do manual checks by automatically identifying and mapping infrastructure configurations to compliance standards like MAS TRM, OJK, SOC 2, GDPR, or your custom compliance needs, in a 10-minute no code set up. **Average Rating:** 4.4/5.0 **Total Reviews:** 52 **How Do G2 Users Rate Horangi Warden?** - **Has the product been a good partner in doing business?:** 9.2/10 (Category avg: 9.3/10) - **Compliance Monitoring:** 9.0/10 (Category avg: 9.0/10) - **Auditing:** 8.7/10 (Category avg: 8.9/10) - **Cloud Gap Analytics:** 8.4/10 (Category avg: 8.6/10) **Who Is the Company Behind Horangi Warden?** - **Seller:** [Horangi](https://www.g2.com/sellers/horangi) - **Year Founded:** 2016 - **HQ Location:** Singapore, Singapore - **Twitter:** @horangi (13 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/horangi/ (41 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Information Technology and Services, Financial Services - **Company Size:** 43% Small-Business, 32% Mid-Market ## What Is Cloud Compliance Software? [Cloud Security Software](https://www.g2.com/categories/cloud-security) ## What Software Categories Are Similar to Cloud Compliance Software? - [Cloud Workload Protection Platforms](https://www.g2.com/categories/cloud-workload-protection-platforms) - [Cloud Security Posture Management (CSPM) Software](https://www.g2.com/categories/cloud-security-posture-management-cspm) - [Security Compliance Software](https://www.g2.com/categories/security-compliance)