Scytale Reviews & Product Details

What I like best about Scytale is its user-friendly interface and automation capabilities. It simplifies compliance workflows by centralizing evidence collection and control tracking, which saves a lot of time compared to manual processes. I also appreciate the transparency it provides across frameworks like SOC 2 and ISO, making audits much more efficien Review collected by and hosted on G2.com.

One area that could be improved is the speed of certain processes when handling large volumes of evidence. Occasionally, the platform feels a bit slow during bulk uploads or when switching between multiple frameworks. Enhancing performance in these scenarios would make the experience even smoother Review collected by and hosted on G2.com.

I like Scytale a lot because the service supports us throughout the entire journey of obtaining ISO certification. The weekly meetings are extremely helpful, keeping momentum high with clear steps and todos. The team is also direct when we're too slow, which helps us stay focused. The platform itself is very user-friendly, providing a clear overview of where we stand in the process and what the next steps are. The initial setup was easy, and it's well-connected to our complete tech stack. Review collected by and hosted on G2.com.

In the platform there could be more upfront clarity on the expected effort per task, so it's even easier to plan internally. Review collected by and hosted on G2.com.

I have been using Scytale for about 3 months to achieve SOC 2 and HIPAA compliance and conduct penetration tests. I appreciate how Scytale simplifies and streamlines these processes with its intuitive, easy-to-understand interface. The platform provides guidance and automation that accelerates the audit preparation process, enabling my organization to engage with clients more efficiently. The inclusion of automation steps is particularly helpful because it ensures there's nothing outside Scytale’s scope needed for SOC 2 audit preparation. The platform’s capability to monitor audit and pen test progress alleviates concerns about potential unknown factors. Additionally, I was impressed with Celeste Botha’s support throughout our compliance journey; her dedication and understanding of our small organizational size were vital to keeping us on track for our audit deadlines. Furthermore, Scytale’s integration with other tools like GitHub and AWS enhances its utility and makes our workflow seamless. Review collected by and hosted on G2.com.

I find that the automation within Scytale, particularly the feature intended to automatically populate audit controls from AWS infrastructure, is unreliable. It often misses components if our implementation does not strictly align with what Scytale expects. This has led to frustrations and delays in our audit preparation process. Additionally, the support experience has been challenging. Response times are slow, often taking around two days, and if inquiries require escalation to another team such as the automation team, the delay becomes even longer. Responses can sometimes be unhelpful, further hampering our progress in audit readiness. Review collected by and hosted on G2.com.

What I appreciate the most is that it genuinely takes the pressure out of SOC/ISO prep (easy and fast implementation!). The automated evidence collection from our AWS environment has been particularly helpful, it has removed a lot of manual chasing. But honestly, the biggest value for us has been working with Celeste. She’s incredibly knowledgeable and keeps everything moving in a really practical, grounded way. We’ve had a few complex or unusual asks along the way, and she’s been able to guide us through all of it without making things feel heavy or bureaucratic. The whole approach has felt flexible and aligned with how we actually work, rather than forcing us into a rigid template. Review collected by and hosted on G2.com.

There isn’t much to “dislike”, but if I had to point at something, the integrations setup flow could be a bit smoother and quicker. It all works, it just takes a bit of guidance the first time around (however docs are clear, I just was overthinking it). Also, I know Scytale are planning to refresh the Control Center module, as it could use a bit of refinement - but it’s still been perfectly usable for us! Review collected by and hosted on G2.com.

As a devops engineer and as a former IT manger, I was responsible for certifying several companies to SOC2. The hours I spent on data collection, then processing it and filing it correctly, were the most excruciating thing in this process.

I was lucky to start working in a company that was wise enough to use a service provider like Scytale, that helps make this process much easier.

Scytale offers a platform that integrates with the most important systems for the certification (HR tools, AWS, Bitbucket, etc). With Scytale, you are also assigned with a person (in my case - the amazing CJ Bergs who was profession, friendly, informative and was available to any question, both difficult and silly) who guides you through the process, and on the audit day itself.

The kick-off was easy, friendly, and clear. I felt like I was accompanied throughout the process, and felt ready before, during and after the audit. Review collected by and hosted on G2.com.

I really have nothing bad to say about Scytale, they really helped me and I'm very satisfied with their services. I would recommend it to anyone who is planning to go through such a process. Review collected by and hosted on G2.com.

There are two aspects of Scytale that worked well for us: the platform and our customer success manager, Ashleigh Du Preez. It was easy to use, which is especially important since my team and I were in the system on an almost daily basis during our initial audit period. Review collected by and hosted on G2.com.

The need for multiple screenshots, although this is not unique to Scytale but rather is a characteristic of many GRC platforms. Review collected by and hosted on G2.com.

What I like most about Scytale is the truly tailored and professional service we’ve received throughout our entire journey. The team has been exceptionally responsive and always willing to help with any question or challenge along the way. I have to give special credit to Laura Quan, who has consistently gone above and beyond — always available, kind, and incredibly professional. Her guidance and positive attitude made the whole process smooth and enjoyable.

Well recommended 👌 Review collected by and hosted on G2.com.

Internal platform and understanding exactly what are the action items to do. Review collected by and hosted on G2.com.

Scytale makes the entire compliance process far less painful and more structured. The platform provides a clear, step-by-step workflow for achieving SOC 2 and ISO certifications, and the automated evidence collection saves a lot of manual effort. The UI is intuitive, and it’s easy to track progress and assign tasks to team members.

What really stands out, though, is their customer success team — they’re proactive, knowledgeable, and genuinely invested in helping you succeed. Review collected by and hosted on G2.com.

There’s a bit of a learning curve when you first start setting up integrations and mapping controls, but once the system is configured, it runs smoothly. Reporting customization could be a bit more flexible, though it’s improving steadily with new updates. Review collected by and hosted on G2.com.

I like the division of proofs into clearly labeled tasks in Scytale, which helps in managing SOC 2 requirements better. It allows us to break down tasks and allocate them to our team easily. I also appreciate being able to reference proofs from previous audits by task, which is especially helpful when there's uncertainty about what proof is needed, and when different people are filling out proofs over the years. Review collected by and hosted on G2.com.

I don't like that I can only interface with it via the web platform. I use Slack, and I would like to get updates there when a task is assigned to me or a reviewer left a comment on proof I submitted. Review collected by and hosted on G2.com.

I like that the platform works smoothly and the collaboration with a dedicated consultant is now working efficiently. Scytale saves a lot of time by having an external consultant help with compliance. Review collected by and hosted on G2.com.

The platform has some bugs, but nothing major. The instructions could be even more simple. They were a bit hard to understand as a non-compliance expert and I needed to ask for help from our consultant to explain those in a simpler way. Review collected by and hosted on G2.com.