# Secfix Reviews **Vendor:** Secfix **Category:** [Security Compliance Software](https://www.g2.com/categories/security-compliance) **Average Rating:** 4.8/5.0 **Total Reviews:** 82 ## About Secfix Secfix is Europe's security and compliance automation platform made for SMBs and mid-market companies. The platform automates up to 90% of the effort to achieve ISO 27001, SOC 2, GDPR, NIS2 and other compliance frameworks through deep integrations to AWS cloud, SSO, ticketing and HR systems. With direct access to European auditors and multilingual support, Secfix makes the audit experience smooth and stress-free. ## Secfix Pros & Cons **What users like:** - Users appreciate the **intuitive interface** of Secfix, making compliance management smooth and straightforward. (43 reviews) - Users commend the **helpful and responsive customer support** at Secfix, enhancing their overall experience with the platform. (31 reviews) - Users highly value the **deep automation and seamless integrations** of Secfix, streamlining compliance management efficiently. (26 reviews) - Users value the **user-friendly interface** of Secfix, enabling effortless navigation and efficient compliance management. (24 reviews) - Users value the **exceptional guidance** provided by Secfix, making compliance processes smooth and efficient. (24 reviews) - Users value the **intuitive design** of Secfix, making compliance management easy for all team members. (23 reviews) - Users appreciate the **automation of compliance tasks** in Secfix, making certification processes straightforward and efficient. (18 reviews) - Users value the **comprehensive guidance and automation** offered by Secfix during the ISO 27001 certification process. (18 reviews) - Evidence Collection (17 reviews) - Integrations (17 reviews) **What users dislike:** - Users face **integration issues** with custom infrastructures, requiring manual workarounds for non-standard tools and smaller vendors. (11 reviews) - Users face challenges with **limited integration** for custom infrastructure, requiring manual efforts that hinder overall efficiency. (9 reviews) - Users express concerns about **limited integrations** with custom systems, leading to reliance on manual processes for tracking. (8 reviews) - Users note the **missing certifications** for medical standards like TR-03161 or ISO 13485, highlighting a need for improvement. (8 reviews) - Users face **integration challenges** with custom infrastructures and limited support for specific certifications, increasing manual work required. (7 reviews) - Users find the **evidence collection process lacking** , needing improvements like linking to existing QMS documentation. (6 reviews) - Users find the **document management capabilities lacking** , requiring maintenance across multiple systems for comprehensive compliance. (5 reviews) - Improvements Needed (4 reviews) - Limited Customization (4 reviews) - Manual Processes (4 reviews) ## Secfix Reviews ### 1. Expert-Led Compliance Made Simple **Rating:** 5.0/5.0 stars **Reviewed by:** Rich B. | Zookeeper, Small-Business (50 or fewer emp.) **Reviewed Date:** May 08, 2026 **What do you like best about Secfix?** I find the Secfix platform pretty easy to use, making it clear what needs to be done and who needs to do it. The service is excellent; they did a great job migrating us from another provider and continue to support us months later with regular face-to-face meetings to ensure we implement the controls correctly. I also appreciate that Secfix acts as an expert authority on compliance tasks, providing guidance on what needs to be done and how to do it. I especially use the clear dashboards that tell you, at a glance, where your compliance stands. From there, it's a quick click or two to see exactly what needs to be done to raise your compliance percentage. This can be done overall, or only on one compliance framework - whatever scope you want to look at. They have added a couple of nice AI features. First, a chatbot to help navigate the app and answer questions about how to do something. The newer AI, that I've only played with, can answer complex questions about your policies. This is especially helpful for answering security questionnaires from customers. We found the price to be competitive and even a little cheaper than competitors. The clear, easy to use platform and great customer service make this a good investment for us. **What do you dislike about Secfix?** I have had only two complaints about the UX. I suggested fixes for both of these. The first was added as a new minor feature within a week or two. I only suggested the second a few days ago, but my contact at Secfix said it was a great idea and would probably be implemented. **What problems is Secfix solving and how is that benefiting you?** Secfix keeps track of compliance needs, tells us what to do, helps write necessary policies, and tracks relevant info for SOC 2, GDPR, and ISO 27001 work. We were working with another compliance partner previously but never had the one on one support to go beyond the bare minimum. Since moving to Secfix, our security is tighter and I can see the effects moving through the organization. ### 2. A reliable partner on the path to ISO 27001 certification **Rating:** 4.5/5.0 stars **Reviewed by:** Marcus P. | IT Infrastructure and Operations Manager, Mid-Market (51-1000 emp.) **Reviewed Date:** May 04, 2026 **What do you like best about Secfix?** Secfix takes over a large share of the documentation and administrative work, and it guides me in a clear, structured way through the certification process all the way to the certification itself. **What do you dislike about Secfix?** Creating policies still requires a considerable amount of manual effort, and it feels like this process could be automated much more effectively. **What problems is Secfix solving and how is that benefiting you?** Before implementing Secfix, we struggled with the overwhelming complexity of preparing for our ISO 27001 certification. Our documentation was scattered across spreadsheets and shared drives, evidence collection was entirely manual, and we didn’t have a clear roadmap for which controls actually applied to our organization. As a small team without a dedicated information security function, we estimated that achieving certification through traditional consulting would take 9–12 months and would tie up significant internal resources. After implementing Secfix, we now have a centralized platform that automates evidence collection directly from our tech stack (e.g., AWS, Microsoft 365, Jira) and provides audit-ready templates for our ISMS documentation. Our Customer Success Manager guides us through each step, and the platform continuously monitors our compliance status in real time. As a result, we’ve seen clear, measurable improvements. Audit preparation effort has been reduced significantly because evidence is collected and organized continuously, instead of being gathered ad hoc right before the audit. Ongoing surveillance audits are also much simpler thanks to automated reminders and continuous monitoring, which helps ensure compliance is maintained beyond the initial certification. ### 3. ISO 27001 without the headache — multiple cycles in **Rating:** 4.5/5.0 stars **Reviewed by:** Amir E. | Co-Founder, Small-Business (50 or fewer emp.) **Reviewed Date:** May 11, 2026 **What do you like best about Secfix?** We've been using Secfix as our ISMS platform for multiple ISO 27001 cycles now, and it has genuinely become a tool we rely on rather than just tolerate. A few things stand out: The platform itself is intuitive and well-structured. Controls, policies, risks, and assets are all linked in a way that actually reflects how an ISMS should work — not just a checklist tool bolted onto a SharePoint. Onboarding new team members into compliance topics is much easier because the UI guides them through what needs to happen. The automations and integrations save us a significant amount of time. For a SaaS company without a dedicated full-time compliance team, this is the difference between ISO 27001 being a burden and being manageable. Speed to certification was a real highlight. The first cycle moved much faster than we expected going in, and each subsequent surveillance audit has been smoother thanks to the audit-ready state the platform keeps us in year-round. Finally, the customer success deserve a specific mention. Our contact is responsive, knows our setup, and gives pragmatic answers rather than generic compliance theater. When auditor questions come up, we get real guidance, not just "check the documentation." **What do you dislike about Secfix?** Honestly, very little. If I had to name something: as the audit requirements evolve quickly, changes in the platform have to be proven by a number of customers, before they release (naturally). This results in us having to use workarounds, rather than native features for a few weeks. This hasn't been a blocker — and the responsive support more than compensates. **What problems is Secfix solving and how is that benefiting you?** Secfix solves the core problem of running and maintaining an ISO 27001-certified ISMS without needing a dedicated full-time compliance team. As a growing SaaS company, we needed certification to meet customer and enterprise procurement requirements — but we couldn't afford to tie up engineering and leadership capacity in manual evidence collection, policy management, and audit prep every year. The platform centralizes everything an ISMS actually needs — controls, risks, assets, policies, vendors, and employee training — in one place that stays continuously audit-ready. Automated evidence collection through integrations with our cloud and HR stack means we're not scrambling before surveillance audits. New hires get onboarded into security training and policy acknowledgments without manual chasing. The concrete benefits: significantly less internal time spent on compliance overhead, faster and smoother audits each cycle, and a credible security posture we can confidently show to enterprise prospects and partners. ISO 27001 has shifted from being an annual project to a continuous, low-friction process — which is exactly what an ISMS should be. ### 4. Secfix Made Our ISO27001 Audit a Breeze with Excellent Support **Rating:** 5.0/5.0 stars **Reviewed by:** Justin M. | Small-Business (50 or fewer emp.) **Reviewed Date:** April 14, 2026 **What do you like best about Secfix?** Working with Secfix made our ISO27001 audit a breeze. The combination of the platform and their excellent support team assisting us with every step allowed us to avoid many pitfalls and helped us to reach our audit goal with only a handful of minor feedbacks. Easily the smoothest part of the entire audit process was using Secfix for us. **What do you dislike about Secfix?** Although the main cloud providers are automated in the platform in order to keep IT inventory synchronized automatically, the EU alternative providers are currently not available for automated sync. It would be fantastic to see the automation extended to feature EU centered cloud providers too. **What problems is Secfix solving and how is that benefiting you?** Secfix syncs with our personel tooling to keep all our employee auditing requirments up to date, it tracks all our vendor usage, flags which ones require more in depth documentation. The process of uploading IT inventory allows us to easily track our cloud resources. Finally, the support provided to create ISO policies and link them in the platform was invaluable. ### 5. Unlimited Support and a Platform That Keeps Getting Better Every Month **Rating:** 4.5/5.0 stars **Reviewed by:** Julian H. | Office & ISMS Manager, Small-Business (50 or fewer emp.) **Reviewed Date:** February 23, 2026 **What do you like best about Secfix?** It’s a combination of the platform itself and the people behind it. The unlimited support was a huge help when we initially set up our ISMS in accordance with ISO 27001, and the platform continues to improve almost every month. I still see a lot of potential, and it’s great to watch the platform evolve in the right direction. **What do you dislike about Secfix?** Since SecFix and its platform are still relatively young, it can occasionally feel a bit buggy. However, it has improved tremendously over the past two years. Personally, I’d love to see even more focus put on the GDPR framework, although ISO 27001 is clearly their flagship :) **What problems is Secfix solving and how is that benefiting you?** SecFix provides a streamlined and easy-to-access overview of everything relevant to our chosen security and compliance framework, ensuring that everything is centralized in one place. ### 6. Structured tool with excellent support, but room for improvement **Rating:** 4.5/5.0 stars **Reviewed by:** Mirko G. | Small-Business (50 or fewer emp.) **Reviewed Date:** March 26, 2026 **What do you like best about Secfix?** I like that Secfix is a well-structured tool. Inquiries were answered quickly and professionally well to very well by the chat agent and especially by the human experts. Setting up the tool itself was quickly done for us. **What do you dislike about Secfix?** In my opinion, further improvements could be made to the tool itself, particularly the policies in the tool should already be pre-filled with answered questions. Additionally, text adjustments should be able to be made directly in the tool without uploading the policies via PDF. In our case, the "providers" are recorded, but not the products, which means that an assignment of the products to the employees is missing. Furthermore, not everything is (yet) covered in the tool, and a shared Excel as well as access to OneDrive/Google Drive is still needed alongside the tool. **What problems is Secfix solving and how is that benefiting you?** Secfix helped us meet the tight deadline for Soc2 Type 1, which we wouldn't have been able to achieve without the software, experts, and auditor contacts. ### 7. Secfix simplifies ISO 27001 with guided workflows, integrations, and an EU focus. **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Small-Business (50 or fewer emp.) **Reviewed Date:** March 30, 2026 **What do you like best about Secfix?** Secfix has significantly simplified our path to ISO 27001. Particularly helpful are the clearly structured, guided workflows and the automated evidence collection through integrations. This massively reduces the manual effort, and the current compliance status is transparent at all times. Also noteworthy is the strong EU focus – both in the frameworks and in data protection and auditors. The collaboration with the Secfix experts was consistently professional and pragmatic. **What do you dislike about Secfix?** In some areas, one wishes for even more fine-tuning options for very specific, individually developed IT setups. However, this is more of an edge case and is already well managed by support in some cases. **What problems is Secfix solving and how is that benefiting you?** Secfix solves the classic problem of implementing compliance not just once "for the audit," but sustainably and in a structured manner. For us, this means significantly less coordination effort, clearer responsibility within the team, and a much better preparation for audits. Overall, we save time, costs, and nerves – while simultaneously achieving higher quality results. ### 8. Efficient Certification Assistance with Outstanding Support **Rating:** 4.5/5.0 stars **Reviewed by:** Elisabeth F. | Small-Business (50 or fewer emp.) **Reviewed Date:** April 09, 2026 **What do you like best about Secfix?** I find Secfix great because the platform provides a clear presentation of all necessary documents and guidelines, making it easier to work towards ISO 27001 certification without forgetting or overlooking anything. I particularly appreciate the personal support via chat, phone, or email, which is incredibly fast and direct, so you get immediate help without long waiting times. Individual questions are answered competently and quickly until a satisfactory result is achieved. Additionally, the initial setup of Secfix was very easy and understandable. **What do you dislike about Secfix?** The AI agent does provide answers to many general questions, but as soon as it gets a bit more specific, the quality of the answers is rather poor. **What problems is Secfix solving and how is that benefiting you?** Secfix provides a clear overview of all necessary documents and policies, which facilitates ISO 27001 certification and GDPR compliance. We can rely on nothing being forgotten or overlooked. ### 9. Broad Evidence Checks & Time-Saving Pre-Defined Policies for Audits **Rating:** 5.0/5.0 stars **Reviewed by:** David J. | Founding Growth & ISMS Leader, Small-Business (50 or fewer emp.) **Reviewed Date:** February 06, 2026 **What do you like best about Secfix?** Broad selection of manual evidence checks to support the audit. Pre-defined policies that save a lot of time compared with creating them from scratch. Automated checks for the cloud and similar areas as well. You can talk to one of their customer success manager in a defined period how you like (I choose 1x per week) to get help or ask questions. For me, the constant support and feedback loops were really helpful. **What do you dislike about Secfix?** There is nothing to complain about, I was overall really satisfied **What problems is Secfix solving and how is that benefiting you?** We wanted to get the ISO 27001 certificate. Due to the help of the plattform we were able to attain the external audit in just 5 weeks after starting the cooperation. ### 10. For me, currently the best security compliance platform on the way to ISO27001 certification. **Rating:** 5.0/5.0 stars **Reviewed by:** Alex S. | Chief Information Security Officer, Small-Business (50 or fewer emp.) **Reviewed Date:** April 02, 2026 **What do you like best about Secfix?** The onboarding process as well as the initial bi-weekly online meetings are excellent. This, along with the more affordable price, was the main reason for choosing Secfix. Depending on individual pace, the current status is addressed and it is explained how to proceed. **What do you dislike about Secfix?** Currently, I haven't noticed anything bad yet. It's even much better than I initially imagined. **What problems is Secfix solving and how is that benefiting you?** With Secfix, we are creating our information security management system and certifying ourselves according to ISO 27001. This way, we can convince government agencies with a certificate that we are the right partner for them. ### 11. Simple Interface, Excellent Secfix Support, and Time-Saving Policy Templates **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Consulting | Mid-Market (51-1000 emp.) **Reviewed Date:** April 29, 2026 **What do you like best about Secfix?** The interface is simple and user-friendly, and the support from the Secfix team has been excellent. Their experts were always available to help with our TISAX certification questions, and even after hours the dedicated AI did a great job supporting us as well. The existing policy templates saved us countless hours. **What do you dislike about Secfix?** The interface has a few small but annoying bugs. Also, the emails from the AI bot are excessive and can feel overwhelming. **What problems is Secfix solving and how is that benefiting you?** Secfix offers a solid platform and a strong starting point for pursuing ISO 27001 and TISAX certification. It’s particularly helpful if you’re starting these certifications from scratch and want a clear place to begin. ### 12. ISO documentation centrally managed: Clear audit process thanks to cloud integration **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Small-Business (50 or fewer emp.) **Reviewed Date:** January 26, 2026 **What do you like best about Secfix?** The integration of all documentation for ISO certification, the automatic synchronization with cloud systems, and the user-friendly overview create a clear, easily understandable structure. I find the continuous guidance through the entire audit process particularly helpful, as it centralizes all relevant information and makes it easy to track at any time. Additionally, I am impressed by the ease of implementation in practice: many steps are intuitive, require little training, and can be carried out in everyday work without much effort. Customer support responds quickly, competently, and solution-oriented, which further simplifies the entire process. We use the platform regularly, as it has become an integral part of our daily compliance work in the ongoing ISMS operation and in preparation for ISO 27001 certification. **What do you dislike about Secfix?** In some areas, clarity could still be further improved, for example, in displaying which employees have already agreed to a certain policy and who is still missing their agreement. Overall, however, clarity has already been noticeably enhanced in many areas through continuous improvement and development. **What problems is Secfix solving and how is that benefiting you?** Secfix addresses the central problem for us of implementing compliance requirements from ISO-27001 in a structured, complete, and up-to-date manner. The platform helps us consolidate documentation, controls, risk management, and tasks in one place and automates many proof obligations. This reduces manual effort in ISMS operations, increases transparency, and ensures that we are always audit-ready. Particularly valuable for us is that Secfix clearly shows which tasks are still open and which controls have already been fulfilled. ### 13. Clear, Easy-to-Use UI with Helpful Support and Smooth Integrations **Rating:** 4.0/5.0 stars **Reviewed by:** Marcus G. | IT Manager, Small-Business (50 or fewer emp.) **Reviewed Date:** May 06, 2026 **What do you like best about Secfix?** A very nice and competent project manager, with weekly meetings to support us. The UI is very clear and easy to understand and use. There is also nice integration with the tools we already use. The AI agent helps a lot with simple questions. **What do you dislike about Secfix?** The automated review emails from the AI are annoying. Also, some menus are buried and hard to find in the UI, which makes navigation more frustrating than it should be. **What problems is Secfix solving and how is that benefiting you?** A good assistant for structural work across all the tasks I need. It helps keep everything organized, with the information all together in one place. ### 14. Solid, structured platform that makes compliance management much more efficient **Rating:** 5.0/5.0 stars **Reviewed by:** Louis S. | Project Manager, Small-Business (50 or fewer emp.) **Reviewed Date:** November 07, 2025 **What do you like best about Secfix?** Secfix provides a very structured and transparent approach to managing compliance and ISMS requirements. The platform guides you through the necessary steps in a logical way, which makes it easy to keep track of progress and responsibilities. The built-in templates and automations save noticeable time when documenting policies or risks. The customer support team is also responsive and open to feedback, which helps a lot when setting up the system or fine-tuning processes. **What do you dislike about Secfix?** There’s very little to complain about. The examples for manual evidences could be improved to better reflect real-world use cases. But that's a minor point compared to the overall value the platform provides in day-to-day operations. **What problems is Secfix solving and how is that benefiting you?** Secfix helps us structure and manage our entire ISO 27001 implementation and ongoing compliance activities in one place. It replaces manual tracking across spreadsheets and documents with an organized and auditable workflow. The platform makes it easier to assign responsibilities, follow up on tasks, and maintain documentation in a consistent way. Having automated evidence collection and policy templates also reduces preparation time before audits and increases overall transparency across the team. ### 15. Centralized Compliance Made Effortless with Outstanding Support **Rating:** 5.0/5.0 stars **Reviewed by:** Coen d. | Senior Customer Success Manager, Small-Business (50 or fewer emp.) **Reviewed Date:** November 05, 2025 **What do you like best about Secfix?** What we like best about the Secfix Compliance Platform is that it provides a centralized way to manage all our compliance and security activities — from risk management and audits to employee trainings — without having to rely on multiple tools or spreadsheets. The integration with our risk register makes it easy to document and track residual risks, and the intuitive interface gives us a clear overview of our compliance objectives and progress. We especially appreciate the continuous development of the platform and the steadily growing number of connections and integrations with other systems, which make the platform more powerful and efficient over time. Another major plus is the friendly and highly competent support we receive from our Customer Success Manager, who assists us regularly and proactively with detailed questions and best practices. This ongoing partnership makes the overall experience with Secfix both effective and enjoyable. **What do you dislike about Secfix?** If there’s one area that could be improved, it would be the reporting and export functionality. While the platform already provides clear dashboards and structured data views, the ability to create more customized reports and flexible exports — for example, with selectable data fields or tailored templates — would make it even easier to adapt outputs to specific audit or management needs. This is a minor point, but enhanced reporting options would make an already strong platform even more powerful for day-to-day compliance management. **What problems is Secfix solving and how is that benefiting you?** We used Secfix to implement ISO 27001, and without the platform and the excellent support from the Secfix team, the process would have been much longer and more complicated. Secfix provided a clear structure and step-by-step guidance, helping us understand requirements, assign responsibilities, and track progress efficiently. The platform made it easy to manage documentation, controls, and evidence in one place, ensuring that nothing was overlooked. As a result, we were able to achieve compliance faster and with greater confidence, while building a stronger and more sustainable information security management system. ### 16. Effortless Integration and Outstanding Support **Rating:** 5.0/5.0 stars **Reviewed by:** Yll F. | Engineering Manager - Platform, Mid-Market (51-1000 emp.) **Reviewed Date:** November 07, 2025 **What do you like best about Secfix?** We use Secfix to stay on track with SOC 2 and ISO 27001. It’s made the certification process way less painful and much much quicker — everything from risk management and vendor tracking to policy sharing is in one place. The Trust Center feature is a great bonus for showing customers our compliance status. Setup was quick and with seamless integration and support has been responsive whenever we had questions. **What do you dislike about Secfix?** Nothing at this point. We have been using the platform for 6 months now and it has been reactive to our requests ever since. **What problems is Secfix solving and how is that benefiting you?** Secfix automates a lot of the manual work around compliance. The continuous checks on our cloud integrations and managed agents on our devices save us tons of time and make it easy to stay audit-ready. It gives us peace of mind knowing everything is monitored and up to date without needing constant manual reviews. ### 17. Excellent Guidance and Support in a Complex Field **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Small-Business (50 or fewer emp.) **Reviewed Date:** October 30, 2025 **What do you like best about Secfix?** This software is very easy to understand and provides excellent guidance on what can be a rather complex topic. The platform is regularly updated with positive improvements. The team at Secfix is always helpful and competent, offering support and assistance whenever I have questions. **What do you dislike about Secfix?** As they are still a startup, there is room for the tool to grow and improve. However, I appreciate how receptive they are to feedback and how quickly they implement changes. This responsiveness gives me a lot of confidence in their potential. **What problems is Secfix solving and how is that benefiting you?** ISMS can be a challenging and complex field, with many aspects to consider. Relying on external CISOs often comes at a high cost, and even then, it can be difficult to gain a clear understanding of what actions are necessary or which areas are most important. Secfix provides valuable guidance and a well-organized structure for every step required to achieve ISO certification. The platform consistently offers an up-to-date overview, highlighting which areas need attention. It serves as an excellent tool for ongoing monitoring. I can wholeheartedly recommend this tool. Its intuitive structure makes preparing for audits straightforward, allowing you to easily locate everything you need and approach the process with confidence. ### 18. Secfix turns ISO 27001 into a guided checklist **Rating:** 5.0/5.0 stars **Reviewed by:** Catharina I. | Senior Designer, Small-Business (50 or fewer emp.) **Reviewed Date:** October 29, 2025 **What do you like best about Secfix?** Secfix turns ISO 27001 into a guided checklist with clear owners, deadlines, and evidence links. The interface is clean and intuitive, policy templates are practical, and integrations with Google Workspace and Slack make evidence collection effortless. Their support is excellent — responsive, helpful, and genuinely invested in solving issues. **What do you dislike about Secfix?** We ran into a problem integrating one of our team’s computers due to an unknown technical issue. Although Secfix’s support team was very engaged and worked directly with our colleague to investigate and fix it, the resolution process took quite a long time. **What problems is Secfix solving and how is that benefiting you?** Secfix helps us stay on top of ISO 27001 compliance without getting lost in documentation or manual tracking. It centralizes policies, tasks, and audit evidence, so we always know what’s done and what’s pending. Automated reminders, integrations, and structured workflows save us hours each week and reduce the risk of missing important steps — making our compliance process faster, clearer, and more reliable. ### 19. User-Friendly Platform with Responsive Support for Compliance Reporting **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Small-Business (50 or fewer emp.) **Reviewed Date:** April 08, 2026 **What do you like best about Secfix?** The platform is user-friendly and comes with close, responsive support. It’s been helpful in guiding our compliance reporting, and I appreciate the clear structure and the way it connects the framework, policies, and manual evidence. **What do you dislike about Secfix?** The interface is clean and easy to navigate overall, although a bit more guidance for first-time users would make the onboarding experience even smoother. **What problems is Secfix solving and how is that benefiting you?** Before Secfix, a lot of our compliance work was manual and scattered across different tools. Secfix brings everything into one place and automates repetitive tasks like evidence collection and reminders. This has saved us a considerable amount of time and allowed the team to focus on more strategic work. ### 20. Practical, audit-ready ISO 27001—strong guidance with room to polish reporting & RBAC **Rating:** 4.5/5.0 stars **Reviewed by:** Yury E. | R&D Sustainability Manager, Small-Business (50 or fewer emp.) **Reviewed Date:** October 28, 2025 **What do you like best about Secfix?** Secfix turns ISO 27001 from a maze into a guided checklist with clear owners, deadlines, and evidence links. Policy templates are practical (not generic), vendor reviews are structured, and the audit workspace keeps Stage 1/Stage 2 deliverables in one place. Google Workspace and Slack integrations make reminders and evidence collection painless. The public roadmap and responsive support mean issues actually get fixed, and the platform steadily improves rather than sitting still. **What do you dislike about Secfix?** A few rough edges: occasional agent/device-visibility glitches (we had one asset not showing after install), reporting/exports could be more flexible (custom fields, saved report views), and RBAC granularity is limited for larger teams. Some UI elements require too many clicks (e.g., editing vendors and risk fields), and access-review workflows would benefit from deeper integrations and bulk actions. None are blockers, but smoothing these would make the product feel truly “enterprise-ready.” **What problems is Secfix solving and how is that benefiting you?** Secfix gives us a single, audit-ready system of record for ISO 27001. It replaces scattered spreadsheets, email threads, and ad-hoc checklists with clear owners, due dates, and evidence links. We run internal audits, vendor reviews, and access checks in one place; track non-conformities to closure; and prep Stage 1/Stage 2 audits with structured workspaces and templates. The result: faster audit cycles, fewer “where is that PDF?” moments, and higher confidence that our ISMS is living, not shelf-ware. The public roadmap + responsive support suggest the product is evolving in the right ways (reporting, RBAC, integrations), so we can standardize on it long-term without building custom tooling. ### 21. Strong compliance platform with great support and templates **Rating:** 4.5/5.0 stars **Reviewed by:** Pieter N. | Head of Engineering, Small-Business (50 or fewer emp.) **Reviewed Date:** October 27, 2025 **What do you like best about Secfix?** The application is well designed with clear dashboards and intuitive tooling that makes day‑to‑day compliance work straightforward. In‑app support has been excellent—responses were fast and actually resolved the issues we ran into. The knowledge base is comprehensive and easy to navigate, with high‑quality articles that helped us prepare all required documentation. The built‑in policy templates are fantastic and saved us a lot of time getting started. **What do you dislike about Secfix?** Integrations with external platforms could be stronger. For example, label synchronization from Linear is limited and requires manual workarounds. The SecFix Agent generally performs well, but it occasionally failed to recognize our (compliant) password manager. The Risk Assessment process follows an intuitive albeit pretty time-consuming questionnaire wizard with a lot of information input; afterwards, it was a bit panicking to see the direct responses were nowhere to be found in the app anymore as they were automatically being processed by AI and made into Risk Register tickets. I must add to this that they were promptly provided upon request, so this was no big issue after all. **What problems is Secfix solving and how is that benefiting you?** Secfix centralizes our compliance work for ISO 27001 into one place with clear dashboards, tasks, and evidence collection. The policy templates and knowledge base accelerated our documentation and audits, reducing prep time from months to weeks. Automated checks via the SecFix Agent help us monitor controls continuously, and in‑app support quickly resolved issues when we got stuck. Overall, it keeps our program organized, audit‑ready, and saves significant team hours. ### 22. Comprehensive compliance platform with strong practical relevance and top support **Rating:** 5.0/5.0 stars **Reviewed by:** Katja G. | Managing Director, Small-Business (50 or fewer emp.) **Reviewed Date:** October 25, 2025 **What do you like best about Secfix?** What I like most about the Secfix Compliance Platform is the holistic and practical approach. The system is not just a mere tool, but a true partner in implementation. I particularly appreciate: • the clear structure and intuitive user interface, which makes even complex ISO-27001 processes easily understandable, • the automation of recurring tasks (e.g., document versioning, risk and action tracking), • and the direct connection to real audit practice, allowing optimal preparation for certifications. Additionally, the excellent support – fast, competent, and always solution-oriented. You can tell that the team behind Secfix knows how modern information security must work today. **What do you dislike about Secfix?** Honestly, there are only a few points that I don't like about the Secfix Compliance Platform. If I had to name something, it would be more about details that can surely be improved over time with use: • Some displays or filter functions could be designed to be a bit more flexible or clearer, especially with extensive lists of measures. • With very individual setups, one sometimes wishes for a bit more configuration freedom, such as with custom templates or workflows. But these are minor issues. Overall, Secfix is at a very high level – and you can tell that the team continuously takes feedback and implements it. **What problems is Secfix solving and how is that benefiting you?** Secfix solves the central problem for us of implementing information security in a structured, traceable, and efficient manner – without having to become an ISO-27001 expert yourself. In the past, many tasks related to risk analysis, documentation, and action tracking were time-consuming, scattered, and difficult to trace. With Secfix, all of this is now centralized, automated, and audit-compliant. We specifically benefit from: • significantly less manual effort in maintenance and proof management, • clear responsibilities and processes, • and a transparent overview of risks, actions, and compliance status. In short: Secfix turns a complex, often tedious topic into a structured, motivating process that actually creates added value. ### 23. Intuitive and secure platform that delivers **Rating:** 5.0/5.0 stars **Reviewed by:** Cynthia R. | VP Finance & Operations, Small-Business (50 or fewer emp.) **Reviewed Date:** January 14, 2026 **What do you like best about Secfix?** I find the platform to be highly intuitive, making it very easy for me to navigate. **What do you dislike about Secfix?** I did not come across any elements that I would describe as especially negative. **What problems is Secfix solving and how is that benefiting you?** Secfix Compliance Platform addresses the difficulties of handling complex compliance requirements by providing a structured, scalable, and audit-ready solution. It brings together controls, policies, evidence collection, and monitoring in one place, and automates much of the compliance process. For me, this has greatly reduced the amount of manual work involved, improved transparency throughout compliance activities, and maintained ongoing audit readiness. As a result, I can dedicate more attention to security and risk management instead of being burdened by administrative tasks. ### 24. Secfix Made Our ISMS Certification Journey Fast, Smooth, and Successful! **Rating:** 5.0/5.0 stars **Reviewed by:** Srinivas S. | Senior DevOps Engineer and ISMS Lead Implementer, Mid-Market (51-1000 emp.) **Reviewed Date:** October 22, 2025 **What do you like best about Secfix?** Secfix has made our ISMS compliance journey smooth, structured, and efficient. The platform provides excellent visibility into our compliance posture by clearly mapping controls, identifying gaps, and guiding us on how to close them. I especially like how intuitive and automated the workflows are — from policy management to evidence collection and continuous monitoring. The dashboard gives a clear view of our ISMS KPIs and helps us stay audit‑ready at all times. The Trust Center feature is another standout — it showcases our certifications and security posture transparently, which builds stronger trust and confidence with our customers. Overall, Secfix combines expert guidance with a powerful toolset, making compliance less complex and more proactive. **What do you dislike about Secfix?** Expecting to have more features and integrations in TrustCenter. **What problems is Secfix solving and how is that benefiting you?** Secfix helped us bridge the gaps in our information security management system by providing clear guidance, automation, and continuous monitoring. Before using Secfix, tracking compliance tasks, maintaining documentation, and preparing for audits was time-consuming and manual. With Secfix, we now have a centralized platform that automates evidence collection, maps controls to standards, and keeps us on top of our ISMS requirements. The biggest benefit has been the speed and confidence with which we achieved and maintained our ISMS certification. The platform also helps us continuously track key ISMS KPIs, ensuring ongoing compliance even after certification. Additionally, the Secfix Trust Center builds transparency with our customers, strengthening their trust in our security posture. Overall, Secfix saves time, reduces stress during audits, and keeps our organization always audit-ready and aligned with the highest information security standards. ### 25. Excellent Templates and Support Make ISMS Setup Easy **Rating:** 5.0/5.0 stars **Reviewed by:** Olaf D. | Devops, Small-Business (50 or fewer emp.) **Reviewed Date:** November 03, 2025 **What do you like best about Secfix?** The platform provides excellent templates for policy writing, making it an ideal starting point for establishing an ISMS over manual creation of relevant tracking databases and systems. The regular check-in calls are particularly valuable, as they help me stay on track and make it easier to understand complex topics. The platforms seamless integration with cloud service resources makes it incredibly convenient to monitor and manage all external assets in one place. **What do you dislike about Secfix?** I don't really have any significant criticisms of the Secfix platform. While it would be helpful to have integrated forms and tracking database templates for things like access control, their absence isn't a major issue. The platform provides sufficient guidance to set these up externally, so this is more of a suggestion than a drawback. **What problems is Secfix solving and how is that benefiting you?** This tool has been instrumental in helping us achieve ISO 27001 certification efficiently and within our desired timeframe. ### 26. Exceptional Compliance Guidance and Support **Rating:** 5.0/5.0 stars **Reviewed by:** Abdelrahman A. | Senior DevOps Engineer, Mid-Market (51-1000 emp.) **Reviewed Date:** October 21, 2025 **What do you like best about Secfix?** The platform provides comprehensive visibility into all necessary compliance checks, controls, and evidence requirements. It offers clear guidance and practical examples for implementing each control and uploading the right evidence. Additionally, it features easy-to-set-up integrations with tools like AWS, Jira, and Google Workspace, which makes the overall process seamless. Beyond the platform itself, the customer success managers and support team are exceptional. They are highly responsive, knowledgeable, and supportive throughout the compliance journey. Thanks to their guidance, achieving ISO certification became a smooth and confident process in a very short time. **What do you dislike about Secfix?** There are a few documents that still need to be managed outside the platform in separate spreadsheets. However, the Secfix team is actively working on improvements and continuously rolling out detailed updates to bring everything into the platform and streamline the process even further **What problems is Secfix solving and how is that benefiting you?** Secfix helps solve the complexity and time-consuming nature of achieving and maintaining our ISO 27001 compliance. ### 27. Great ISO 27001/SOC 2 platform, best support, very responsive, happy customer 3+ years **Rating:** 5.0/5.0 stars **Reviewed by:** Arne G. | CTO, Small-Business (50 or fewer emp.) **Reviewed Date:** October 21, 2025 **What do you like best about Secfix?** I’m a CTO at a YC startup operating in the US and Germany. Everyone recommended Secfix for ISO 27001, and that matched my experience — they’re absolute ISO experts. We’ve been using Secfix for 3+ years now. We were ready in about two months, working only a few hours each week. They gave me clear guidance on what to do and when for ISO 27001 and, later, SOC 2. After we passed the ISO audit, I upgraded to SOC 2 as an additional framework. They turned it around quickly and even kept improving SOC 2 with my feedback. They ping me proactively when something is off or needs urgent attention to stay compliant, so the workload never becomes intense. I don’t need a consultant; it genuinely feels like having a top-class CISO on the team. Secfix integrates across our stack, from GCP to Google Workspace, and checks evidence for us. When we started, the GCP integration was basic; they consistently fixed issues, and last year they added a history of checks for GCP configurations plus test data, which makes deep dives much easier. Customer success is fast, practical, and reliable. It feels like they really try to make the best of every interaction. **What do you dislike about Secfix?** The UI is not always flexible for every use case. That said, they keep improving it, and when I need something specific, support usually unblocks me quickly. **What problems is Secfix solving and how is that benefiting you?** They give me predictable steps and timing for ISO 27001 and SOC 2, with a light weekly effort in the implementation phase and just a few tasks each month in the maintenance phase. Proactive alerts reduce surprises and keep us on track. Evidence collection runs through integrations, so we avoid spreadsheets and manual checks. Both our German ISO 27001 auditor and our US SOC 2 auditor trust the Secfix process and evidence, which makes audits smoother overall and removes the need for outside consultants. (edited) ### 28. Centralized Compliance Platform That Keeps Us Audit-Ready **Rating:** 4.5/5.0 stars **Reviewed by:** Moritz H. | CTO, Small-Business (50 or fewer emp.) **Reviewed Date:** April 08, 2026 **What do you like best about Secfix?** It's our central platform for everything compliance - it's great how they keep us audit ready any time. **What do you dislike about Secfix?** The platform had some limitations in the past, but they resolved over time. It feels expensive considering our usage frequency, but worth comparing to doing certifications without it. **What problems is Secfix solving and how is that benefiting you?** We have a clear overview of requirements for certifications. It's critical to be compliant and secfix solves this for us. ### 29. Quick competent communication, but room for improvement on the website **Rating:** 4.5/5.0 stars **Reviewed by:** Maik F. | Small-Business (50 or fewer emp.) **Reviewed Date:** April 01, 2026 **What do you like best about Secfix?** What I like most about Secfix is the quick and competent communication with the responsible contacts. It is essential in our certification process. **What do you dislike about Secfix?** The website provided by Secfix still has room for improvement in terms of user-friendliness and functionality. Unfortunately, there are errors in the chat where you cannot see your own messages after sending them. The website occasionally crashes, and you only get a white page without knowing what is happening. Filtering options in certain areas of the site could be improved. The language support for German still has potential for development. The structure and division of the website were not entirely understandable at first. **What problems is Secfix solving and how is that benefiting you?** I use Secfix for ISO27001 and GDPR. ### 30. Master the ISO without expensive consultants **Rating:** 5.0/5.0 stars **Reviewed by:** Michael L. | Member of the Board, Mid-Market (51-1000 emp.) **Reviewed Date:** October 13, 2025 **What do you like best about Secfix?** I found the templates for the guidelines to be especially helpful. The Secfix system organizes and automates the tasks, creating connections to ISO 27001 so that you don't need in-depth knowledge of the standard to use it effectively. **What do you dislike about Secfix?** Automation functions very effectively when working with major cloud providers like Azure or AWS. However, since we store our data in a smaller data center that cannot be integrated with Secfix, we have to manage our inventory and data imports manually. This process, particularly when it comes to updates, is less than ideal because it demands extra effort and ongoing maintenance in a separate system. **What problems is Secfix solving and how is that benefiting you?** As a software development company with a varied product portfolio, we previously had only basic processes and workflows in place, largely due to how our organization evolved over time. Secfix was instrumental in helping us establish structure within our development process and in identifying potential risks. Their support was invaluable as we worked to implement ISO 27001. Additionally, the dashboard made it easy for us to monitor our current status and see which actions were required at any moment. ### 31. A very reliable partner for IT Compliance on our side **Rating:** 5.0/5.0 stars **Reviewed by:** Alexander K. | Senior Manager Strategy & Business Development, Small-Business (50 or fewer emp.) **Reviewed Date:** October 01, 2025 **What do you like best about Secfix?** The customer support is excellent, and the speed at which new features are implemented is impressive. We rely on it daily, particularly for onboarding new employees, which works exceptionally well. Additionally, the platform is quite user-friendly, even for those without an IT background. **What do you dislike about Secfix?** Currently, there is still a small number of offline documents needed to track certain processes and controls, which means there isn't yet a completely centralized single source of truth. However, the team is actively addressing this issue and continues to eliminate more offline documents over time. **What problems is Secfix solving and how is that benefiting you?** Secfix greatly simplifies the implementation and maintenance of ISO 27001 and DORA requirements for us. The platform replaces manual processes and Excel lists with centralized, clear task and policy management. This saves time, reduces errors, and significantly improves our audit readiness. At the same moment, new partners reach out to us as they have internal compliance processes for new partners who have to have implemented the same security standards. ### 32. Makes compliance a breeze. Amazing customer support, too. **Rating:** 5.0/5.0 stars **Reviewed by:** Michael N. | Sr. DevOps Engineer, Small-Business (50 or fewer emp.) **Reviewed Date:** September 18, 2025 **What do you like best about Secfix?** Secfix helped us to get compliant (ISO27001 and TISAX) in very little time. The platform alone provide a comprehensive overview of all the necessary controls and provides guidance on how to implement them and what to provide as evidence. On top of that, templates for policies is provided. This basically takes away most of the legwork needed to get the intial certification. The platform also provides an internal risk management tool and provides tracking of all the necessary approvals and expiries. The implementation was trivial, it's basically self explanatory. In my function as the ISMS lead I use it daily and honestly could not imagine doing my job without it anymore. The platform also integrates very well with all the industry standard tools (Personio, Jira, Google Cloud, AWS etc) so you get lots of information out of these systems easily (e.g. don't have to create employee profiles, cloud assets etc.) On top of that you get weekly calls with your customer rep which not only supports in using the platform but also in all questions regarding compliance. I honestly couldn't be more satisfied. At one point I created a feature request on their website and it actually got implemented and I was updated during the process. How cool is that? **What do you dislike about Secfix?** This field is mandatory but I'm having a hard time thinking of something ... If I really had to pick something I guess it would be that it currently not supports our new ticketing tool "Linear" but even for that they offer: "To add another ticketing integration, please get in touch with your CSM." **What problems is Secfix solving and how is that benefiting you?** getting certified initially and then stay compliant. **Official Response from Jakub Wanat:** > Hi Michael, thank you so much for sharing your experience with Secfix! We’re thrilled to hear that the platform has made your ISO 27001 and TISAX journey smooth and efficient. Regarding your note on Linear: we actually do support the Linear integration. It sounds like this may have been easy to miss, but our team will be happy to walk you through how to set it up. Just reach out to your Customer Success Manager, and we’ll make sure you’re fully connected. ### 33. Streamlined Compliance with Intuitive, Hands-On Support **Rating:** 5.0/5.0 stars **Reviewed by:** Param K. | Small-Business (50 or fewer emp.) **Reviewed Date:** March 26, 2026 **What do you like best about Secfix?** I like Secfix for their hands-on nature and helpfulness. The platform is very intuitive and easy to use, which makes the arduous process of getting compliant easier and quicker. The initial setup was very easy as we were guided through it with their sales agents. **What do you dislike about Secfix?** The process is long and it may be helpful to have some things automated through integrations with our other platforms. **What problems is Secfix solving and how is that benefiting you?** Secfix takes care of the end-to-end compliance process for SOC 2 and ISO 27001, making it easier and quicker. The hands-on nature, helpfulness, and intuitive platform are standout features. ### 34. SecFix: An Effective Platform for ISO 27001 Certification **Rating:** 4.5/5.0 stars **Reviewed by:** Jan W. | Security DevOps Engineer, Small-Business (50 or fewer emp.) **Reviewed Date:** September 15, 2025 **What do you like best about Secfix?** SecFix has been a very helpful tool for our ISO 27001 certification. As a comprehensive ISMS platform, it gives us a clear overview of all the steps we need to manage. The integrations and automated checks have made our work significantly more efficient. We especially value the support and advice from the team; the employees are consistently friendly, respond quickly, and proactively think with us, which has been extremely helpful. It's great to see that our suggestions for improvements are taken seriously and often implemented. The platform is easy to use and well-organized. **What do you dislike about Secfix?** While the platform is very helpful overall, there are a couple of areas that could be improved. Some of the automated checks can occasionally produce false positives, which requires a bit of extra manual work to verify. Additionally, we'd like to see more flexibility in the risk categorization features, as the current options feel somewhat limited for our needs. **What problems is Secfix solving and how is that benefiting you?** SecFix is solving several key problems associated with ISO 27001 compliance. It takes the complexity out of the process by serving as an all-in-one ISMS platform, providing a clear and comprehensive structure. This helps to reduce manual effort by using integrations and automated checks. Finally, it addresses the need for expert support by providing a friendly and proactive team. In return, these solutions directly benefit us by increasing efficiency and saving valuable time. The platform’s clear design makes the certification process feel less daunting, which reduces stress. Ultimately, the combination of a great tool and dedicated support leads to a smoother and more successful certification journey. ### 35. Seamless ISO 27001 & GDPR Compliance with Excellent Support **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Renewables & Environment | Mid-Market (51-1000 emp.) **Reviewed Date:** April 24, 2026 **What do you like best about Secfix?** Secfix made compliance and security processes incredibly straightforward and efficient. Their platform is very intuitive, and the team is highly responsive, knowledgeable, and proactive in guiding us through requirements. What stood out most was how seamlessly they integrated into our workflows and reduced the operational burden on our team **What do you dislike about Secfix?** Nothing major — overall the experience has been very positive and the team has been highly supportive **What problems is Secfix solving and how is that benefiting you?** Secfix helped us streamline and manage our ISO 27001 certification and GDPR compliance processes. They significantly reduced the complexity and manual effort involved, giving us clear structure, guidance, and automation. This allowed us to achieve compliance more efficiently while freeing up internal resources to focus on core business activities ### 36. Bringing clarity to security and compliance management **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Computer Software | Small-Business (50 or fewer emp.) **Reviewed Date:** February 02, 2026 **What do you like best about Secfix?** What I like most about Secfix is the clear structure and transparency it brings to the SOC compliance process. The platform provides a very good overview of requirements, tasks, and progress, making a complex topic much easier to navigate and manage. **What do you dislike about Secfix?** While the platform provides a great overview, it would benefit from more integrated document management. Having the ability to create and manage documents directly in Secfix would further streamline the compliance workflow. **What problems is Secfix solving and how is that benefiting you?** Secfix helps bring structure and transparency to security, compliance, and vendor management processes. By centralizing SOC requirements, third-party reviews, and risk-related tasks in one place, it makes it easier to manage responsibilities, track progress, and reduce compliance and security risks. ### 37. Good support in the implementation of ISO 27001 **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Banking | Small-Business (50 or fewer emp.) **Reviewed Date:** March 31, 2026 **What do you like best about Secfix?** Secfix helps us a lot in better organizing and implementing the requirements of ISO 27001. It is particularly helpful that all security policies, tasks, and evidence can be managed centrally in one place. This allows us to maintain a good overview of our compliance activities and prepare more easily for audits. **What do you dislike about Secfix?** Partially, the platform could be a bit more flexible when it comes to adapting to internal processes. Additionally, it takes some time at the beginning to get used to the structure of the platform. **What problems is Secfix solving and how is that benefiting you?** Secfix helps us better structure our security and compliance processes. Especially with ISO 27001, it is important to manage many proofs and documentations. With Secfix, we can centrally organize this information and thereby maintain a better overview of our current compliance status. ### 38. Quick Summary UI/UX That Makes Reporting Easy **Rating:** 4.0/5.0 stars **Reviewed by:** Shahram G. | Senior IT Administrator, Mid-Market (51-1000 emp.) **Reviewed Date:** April 29, 2026 **What do you like best about Secfix?** UI/UX is designed for getting a quick summary. **What do you dislike about Secfix?** nothing is special. But some templates are not designed perfectly. **What problems is Secfix solving and how is that benefiting you?** Integrations: It brings all related topics together in one place, leading to improved Performance. ### 39. Effortless Certification Support, Superb Usability **Rating:** 5.0/5.0 stars **Reviewed by:** rogier a. | Small-Business (50 or fewer emp.) **Reviewed Date:** April 07, 2026 **What do you like best about Secfix?** I find the platform extremely easy to use. It's very, very clear. We are receiving excellent support throughout the entire process, which makes something quite complex as simple as possible. The initial setup was extremely straightforward. **What do you dislike about Secfix?** Nothing to say **What problems is Secfix solving and how is that benefiting you?** I use Secfix for certification by assisting us in preparing documents, policies, and adapting our organization to become compliant. It's extremely easy to use, very clear, and we receive excellent support, making the process as simple as possible. ### 40. Effortless to Use with Outstanding Support **Rating:** 5.0/5.0 stars **Reviewed by:** Tanja N. | Platform Engineer, Mid-Market (51-1000 emp.) **Reviewed Date:** December 04, 2025 **What do you like best about Secfix?** Easy to use, the features are really useful and the support team is always on the point with helpful tips, and solutions **What do you dislike about Secfix?** It can sometimes get slow, but it it not bad. **What problems is Secfix solving and how is that benefiting you?** Platform help us with compliance. It is easy to see what needs to be done, and how to stay compliant with Certifications. Vendors can be reviewed, and all of their certificates can be stored in the safe space on the platform, and reviewed later. Secfix performs automated checks frequently and is notifying us about issues that occurred. The platform helped us tremendously with the certification process. ### 41. Compliance Automation Done Right: Built for the Modern Cloud Stack **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Computer Software | Small-Business (50 or fewer emp.) **Reviewed Date:** November 03, 2025 **What do you like best about Secfix?** What I appreciate most is the focus on deep, continuous automation and ease of integration. Secfix is clearly built for modern, cloud-native environments. The pre-built integrations with major cloud services (AWS, GCP, Azure), SSO providers, and HRIS platforms are game-changers, automating continuous monitoring checks (public sources mention over 250+ checks for ISO 27001) and evidence collection. This moves compliance from a stressful, quarterly spreadsheet chore to a light, continuous process. The high number of features—especially the automated risk management and centralized, templated policy system—significantly increases the speed and ease of initial implementation. Their customer support and dedicated compliance expert guidance are top-tier, effectively acting as an extension of a small security team. **What do you dislike about Secfix?** The primary downside lies in integrating custom or niche infrastructure. While the automation is excellent for standard major cloud services and widely adopted SaaS tools, organizations with highly bespoke on-prem environments or proprietary, smaller data centers may find that asset inventory tracking and evidence collection for those specific components revert to manual tasks. This isn't a flaw in the platform's core design, but rather a limitation of focusing on the highest-leverage integrations. For a company that relies heavily on non-standard internal tools or smaller vendors, this gap requires a manual workaround, which slightly impacts the overall ease of integration score compared to the flawless experience with major providers. **What problems is Secfix solving and how is that benefiting you?** Secfix primarily solves the critical business problem of achieving and maintaining compliance (e.g., ISO 27001, SOC 2) quickly and cost-effectively without needing a dedicated, large internal security team. As a Senior Software Engineer, the core benefit is time savings: the platform automates 80-90% of the manual evidence collection and continuous monitoring tasks by integrating directly with our cloud infrastructure and tooling. This reduces the compliance burden on the engineering team from weeks of manual effort to a few light monthly tasks. The result is accelerated sales cycles (by easily providing certification evidence to customers) and the ability for our development team to stay focused on shipping product. ### 42. Great audit prep visibility with support from CSM along the way **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Computer Software | Small-Business (50 or fewer emp.) **Reviewed Date:** May 12, 2026 **What do you like best about Secfix?** Gives a great visibility on where we stand in the preparation of an audit. Organize all our security content, and proofs. Trust center is very useful to share with clients/prospects. **What do you dislike about Secfix?** minor: the agent to install on workstations had some reliability issues on our computers at first. **What problems is Secfix solving and how is that benefiting you?** To get organized and ready for an ISO audit ### 43. Great Experience, without an IT Background **Rating:** 5.0/5.0 stars **Reviewed by:** Thibaut D. | QHSE Coordinator, Mid-Market (51-1000 emp.) **Reviewed Date:** October 08, 2025 **What do you like best about Secfix?** Even without an IT background, I found the Secfix Compliance Platform very easy to use. The setup went smoothly, and the clear explanations made it simple to integrate with our IT manager. The Secfix team provides excellent support throughout the process; friendly, transparent, and always responsive. Special thanks to Max for the great guidance and clear communication! With its features, Secfix makes IT compliance structured and user-friendly. **What do you dislike about Secfix?** Project status report is clear, but would be nice if this is also integrated in the platform **What problems is Secfix solving and how is that benefiting you?** Secfix helps us streamline the ISO 27001 compliance process by centralizing everything and guiding us step by step. Without this platform, it would honestly be a bit of a chaos to manage all the requirements. ### 44. Secfix Makes ISO Certification Manageable with Great Support **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Consulting | Small-Business (50 or fewer emp.) **Reviewed Date:** November 04, 2025 **What do you like best about Secfix?** The Secfix platform makes it extremely easy to get an overview of the entire ISO certification process. The regular calls with the Customer Success Manager provide excellent guidance. You have a contact person and don't feel alone when tackling ISO certification, for example. **What do you dislike about Secfix?** At the end of the day, you still have to do it yourself, but there are very few things I don't like about the platform. **What problems is Secfix solving and how is that benefiting you?** With a task such as ISO certification, it is extremely difficult to maintain an overview and see where you stand. For example, progress. The Secfix platform is extremely helpful in maintaining this overview and reducing the workload accordingly. They have templates, they make suggestions and they actively help you achieve this goal quickly and reliably. ### 45. High Automation and Ongoing Support **Rating:** 5.0/5.0 stars **Reviewed by:** Sascha L. | Founder, Small-Business (50 or fewer emp.) **Reviewed Date:** September 04, 2025 **What do you like best about Secfix?** We’d heard great things about Vanta and Drata in the US, but we wanted a European partner with strong ISO 27001 expertise. Many local alternatives started out in data privacy and only recently pivoted to ISO 27001, which wasn’t what we were looking for. Secfix stood out because ISO 27001 is their core focus — they support businesses of all sizes across Europe and provide continuous, hands-on support throughout the entire certification process. We’ve been working with Secfix for more than 3 years now, recently started our second ISO 27001 certification cycle, and their platform and team make everything straightforward and efficient, backed by deep certification experience. We couldn’t find a better alternative in Europe that combines this level of automation with this kind of ongoing support throughout the whole certification cycle. Big thanks to the customer success team! **What do you dislike about Secfix?** After 3 years of collaboration, there’s not much to dislike. The product is still evolving, and we’d welcome more integrations and features over time, but nothing essential has been missing for us. **What problems is Secfix solving and how is that benefiting you?** Secfix streamlines our ISO 27001 certification process through automation while providing continuous expert support, making what could be a complex compliance journey straightforward and efficient throughout multiple certification cycles. ### 46. Exceptional Support and Professional Staff Enhance the Experience **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Oil & Energy | Small-Business (50 or fewer emp.) **Reviewed Date:** November 17, 2025 **What do you like best about Secfix?** The staff is very professional and friendly. We had Max as an advisor and he is super helpfull. The plateform helps to organise the process of iso certification. It's easy to sign up and start getting that certification. We have regular meetings to keep up with the advancements. **What do you dislike about Secfix?** The plateform helps making the process easier but it's a quite complicated process and the plateform is still developping so there are a few functionalities that still need developpement but they are working on it and quite efficiently. **What problems is Secfix solving and how is that benefiting you?** We need to get the certification and we need help for that since it's a complicated process and no one has experience with this in our company ### 47. Hands-on team for an easy start on the compliance journey **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Accounting | Small-Business (50 or fewer emp.) **Reviewed Date:** September 02, 2025 **What do you like best about Secfix?** I really like the smooth and hands-on onboarding. The Secfix team provided clear checklists that made it easy to get started, and the dashboard gives great insights into our compliance journey. Even for small teams, Secfix delivers great value with a lighter version that helps companies begin their compliance process early on. The feature we find most valuable is the trust center, which allows us to share progress and demonstrate compliance efforts directly with customers — a huge benefit in building trust and transparency. **What do you dislike about Secfix?** The biggest challenge is the effort required to get compliant in general, which can be time-consuming and resource-intensive. However, this isn’t really a Secfix issue, but more a reality of compliance itself. **What problems is Secfix solving and how is that benefiting you?** Secfix has helped us speed up compliance preparation and made it easier to prove our efforts to prospects and customers. The trust center has been especially useful in closing deals with larger companies who expect clear visibility into our certification status and compliance journey. ### 48. Streamlined Compliance with Ease of Use **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Consulting | Mid-Market (51-1000 emp.) **Reviewed Date:** September 02, 2025 **What do you like best about Secfix?** The platform makes compliance management straightforward by automating many of the manual tasks that would otherwise take hours. I particularly like the intuitive dashboard, real-time monitoring, and easy integrations with our existing tools. The customer success team is responsive and knowledgeable, which makes onboarding and troubleshooting much easier during the process. Regular catch up meetings help to clarify open points. **What do you dislike about Secfix?** While the platform is overall great, some integrations require additional configuration steps that should be clarified better, especially in terms of what's the priority for the initial audit. These are minor issues compared to the overall value. **What problems is Secfix solving and how is that benefiting you?** Secfix has helped us streamline our compliance processes by centralizing everything in one platform. It significantly reduces the manual workload for audits, ensures we stay on top of vendor risk management, and makes it easier to maintain security compliance across cloud environments. This has saved our team valuable time and given us more confidence going into audits and assessments. ### 49. Clear and Supportive for ISMS **Rating:** 4.0/5.0 stars **Reviewed by:** Kristina B. | Business Operations & Compliance Manager, Small-Business (50 or fewer emp.) **Reviewed Date:** March 31, 2026 **What do you like best about Secfix?** I like the clarity of Secfix and the personal support. **What do you dislike about Secfix?** Mapping of the various requirements from the different standards in a review plan **What problems is Secfix solving and how is that benefiting you?** I use Secfix for the implementation of standards and the overview of review tasks, and I appreciate the clarity and personal support. ### 50. Overall, definitely very useful for our work **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Environmental Services | Small-Business (50 or fewer emp.) **Reviewed Date:** November 10, 2025 **What do you like best about Secfix?** I have used the Secfix Compliance Platform both for the initial setup of our ISMS and for the continuous monitoring of security and data protection requirements. The platform has not only been used once by us, but it is an integral part of our daily work routine. We regularly rely on it to monitor risks, update policies, and document compliance evidence. Getting started with the use was very straightforward and intuitive. The user interface is clearly designed and easy to understand even for users without extensive compliance knowledge. Particularly helpful were the pre-made checklists with over 250 points and the audit-ready templates for policies. The integration into our existing system went largely smoothly thanks to the available integration options. The customer support was also always easily reachable and could quickly and competently assist with questions or uncertainties. **What do you dislike about Secfix?** Although most integrations worked smoothly, connecting to some of our internal tools required more manual configuration than originally expected. The documentation in these cases was not as detailed as with the standard integrations. In addition to the broad range of functions, we would like more depth in certain areas, such as tracking non-conformities or supplier access management. Overall, getting started with the system was manageable, but it did involve some effort. While this is unavoidable to a certain extent, it is helpful to keep this in mind during planning. **What problems is Secfix solving and how is that benefiting you?** I believe there is a problem with the online form for the review. The title of this box says "What is a problem? Secfix Compliance Platform Solving and how do you benefit from it?" and in the box itself, the guidance says "What are business problems? Secfix Compliance Platform helps with the solution?" I suspect this is a translation error, and therefore, I unfortunately cannot understand the questions. In general, in some other parts of this form, the translation into German is either incorrect in the questions or in the answer options (but at least understandable). For example, on the company page, it also says "At which organization did you last Secfix Compliance Platform?*" - [View Secfix pricing details and edition comparison](https://www.g2.com/products/secfix/reviews?section=pricing&secure%5Bexpires_at%5D=2026-05-14+04%3A32%3A51+-0500&secure%5Bsession_id%5D=ed7609eb-809a-430e-8844-b97856c0b399&secure%5Btoken%5D=943b5a342ced921b984e586d7f1e6e8558361deb8b27fb2360b103f0ccdbcda5&format=llm_user) ## Secfix Integrations - [ADP Global Payroll](https://www.g2.com/products/adp-global-payroll/reviews) - [AFAS](https://www.g2.com/products/afas/reviews) - [Aha!](https://www.g2.com/products/aha/reviews) - [AlexisHR](https://www.g2.com/products/alexishr/reviews) - [Amazon AWS Platform](https://www.g2.com/products/amazon-aws-platform/reviews) - [Asana](https://www.g2.com/products/asana/reviews) - [AWS Cloud Development Kit (AWS CDK)](https://www.g2.com/products/aws-cloud-development-kit-aws-cdk/reviews) - [AWS CloudFormation](https://www.g2.com/products/aws-aws-cloudformation/reviews) - [AWS Lambda](https://www.g2.com/products/aws-lambda/reviews) - [Azure Cloud Services](https://www.g2.com/products/azure-cloud-services/reviews) - [Azure DevOps Server](https://www.g2.com/products/azure-devops-server/reviews) - [Azure Portal](https://www.g2.com/products/azure-portal/reviews) - [Azure Virtual Machines](https://www.g2.com/products/azure-virtual-machines/reviews) - [BambooHR](https://www.g2.com/products/bamboohr/reviews) - [CatalystOne](https://www.g2.com/products/catalystone/reviews) - [Cezanne HR](https://www.g2.com/products/cezanne-hr-cezanne-hr/reviews) - [CharlieHR](https://www.g2.com/products/charliehr/reviews) - [ClickUp](https://www.g2.com/products/clickup/reviews) - [Deel Payroll](https://www.g2.com/products/deel-payroll/reviews) - [e!](https://www.g2.com/products/e/reviews) - [Eurecia](https://www.g2.com/products/eurecia/reviews) - [Factorial](https://www.g2.com/products/factorial/reviews) - [Freshdesk](https://www.g2.com/products/freshdesk/reviews) - [GitHub](https://www.g2.com/products/github/reviews) - [GitLab](https://www.g2.com/products/gitlab/reviews) - [Google Cloud Console](https://www.g2.com/products/google-cloud-console/reviews) - [Google Workspace](https://www.g2.com/products/google-workspace/reviews) - [Gorgias](https://www.g2.com/products/gorgias/reviews) - [Hailey HR](https://www.g2.com/products/hailey-hr/reviews) - [HeavenHR](https://www.g2.com/products/heavenhr/reviews) - [Help Scout](https://www.g2.com/products/help-scout/reviews) - [HiBob HRIS](https://www.g2.com/products/hibob-hris/reviews) - [HR Works](https://www.g2.com/products/hr-works/reviews) - [Humaans](https://www.g2.com/products/humaans/reviews) - [Jamf Connect](https://www.g2.com/products/jamf-connect/reviews) - [Jira](https://www.g2.com/products/jira/reviews) - [Jira Service Management](https://www.g2.com/products/jira-service-management/reviews) - [Kallidus Perform](https://www.g2.com/products/kallidus-perform/reviews) - [Kenjo](https://www.g2.com/products/kenjo/reviews) - [Kiwi](https://www.g2.com/products/kiwi/reviews) - [Leapsome](https://www.g2.com/products/leapsome/reviews) - [Linear](https://www.g2.com/products/linear/reviews) - [Loket](https://www.g2.com/products/loket/reviews) - [Lucca](https://www.g2.com/products/lucca/reviews) - [Microsoft 365](https://www.g2.com/products/microsoft365/reviews) - [Microsoft Azure Services](https://www.g2.com/products/microsoft-azure-services/reviews) - [Microsoft Intune Enterprise Application Management](https://www.g2.com/products/microsoft-intune-enterprise-application-management/reviews) - [Microsoft SharePoint](https://www.g2.com/products/microsoft-sharepoint/reviews) - [Namely](https://www.g2.com/products/namely/reviews) - [Nibelis](https://www.g2.com/products/nibelis/reviews) - [Nmbrs](https://www.g2.com/products/nmbrs/reviews) - [Officient](https://www.g2.com/products/officient/reviews) - [Okta](https://www.g2.com/products/okta/reviews) - [Paylocity](https://www.g2.com/products/paylocity/reviews) - [PeopleHR On-Premise](https://www.g2.com/products/peoplehr-on-premise/reviews) - [Personio](https://www.g2.com/products/personio/reviews) - [Planday](https://www.g2.com/products/planday/reviews) - [Re:amaze](https://www.g2.com/products/re-amaze/reviews) - [Remote](https://www.g2.com/products/remote/reviews) - [Rexx Suite](https://www.g2.com/products/rexx-systems-rexx-suite/reviews) - [Rippling](https://www.g2.com/products/rippling/reviews) - [Sage HR](https://www.g2.com/products/sage-hr/reviews) - [Sage People](https://www.g2.com/products/sage-people/reviews) - [SAP SuccessFactors HCM](https://www.g2.com/products/sap-sap-successfactors-hcm/reviews) - [Sesame HR](https://www.g2.com/products/sesame-hr/reviews) - [Shortcut](https://www.g2.com/products/shortcut/reviews) - [Sympa](https://www.g2.com/products/sympa/reviews) - [TeamWork](https://www.g2.com/products/teamwork-2025-01-31/reviews) - [Trello](https://www.g2.com/products/trello/reviews) - [TriNet](https://www.g2.com/products/trinet/reviews) - [UKG Pro](https://www.g2.com/products/ukg-pro/reviews) - [Workday Platform](https://www.g2.com/products/workday-platform/reviews) - [Zelt](https://www.g2.com/products/zelt/reviews) - [Zoho BugTracker](https://www.g2.com/products/zoho-bugtracker/reviews) - [Zoho Desk](https://www.g2.com/products/zoho-desk/reviews) - [Zoho People](https://www.g2.com/products/zoho-people/reviews) ## Secfix Features **Security** - Compliance Monitoring - Anomoly Detection - Data Loss Prevention - Cloud Gap Analytics **Functionality** - Customized Vendor Pages - Centralized Vendor Catalog - Questionnaire Templates - User Access Control **Generative AI** - AI Text Summarization - AI Text Generation **Agentic AI - Vendor Management** - Decision Making **Cloud Visibility** - Data Discovery - Cloud Registry - Cloud Gap Analytics **Revenue Recognition** - Usage Tracking - Deferred Revenue - Revenue Accrual **Compliance** - Governance - Data Governance - Sensitive Data Compliance **Risk assessment** - Risk Scoring - 4th Party Assessments - Monitoring And Alerts - AI Monitoring **Workflows - Audit Management** - Audit Trail - Recommendations - Collaboration Tools - Integrations - Planning & Scheduling **Generative AI - Security Compliance** - Predictive Risk - Automated Documentation **Security** - Data Security - Data loss Prevention - Security Auditing **Administration** - Policy Enforcement - Auditing - Workflow Management **Documentation - Audit Management** - Templates & Forms - Checklists **Generative AI - Vendor Security and Privacy Assessment** - Text Summarization - Text Generation **Identity** - SSO - Governance - User Analytics **Reporting & Analytics - Audit Management** - Dashboard - Audit Performance - Industry Compliance ## Top Secfix Alternatives - [Vanta](https://www.g2.com/products/vanta/reviews) - 4.6/5.0 (2,404 reviews) - [Scytale](https://www.g2.com/products/scytale-g2/reviews) - 4.8/5.0 (595 reviews) - [Drata](https://www.g2.com/products/drata/reviews) - 4.7/5.0 (1,148 reviews)