Secfix Reviews (101)

Reviews

Secfix Reviews (101)

4.7
101 reviews

What do users say?

Generated using AI from real user reviews
Users consistently praise the intuitive interface and responsive support provided by Secfix, which simplifies the complex process of achieving ISO 27001 compliance. The platform's clear structure and automated features help streamline compliance tasks, making it easier for teams to stay organized and audit-ready. However, some users note that customization options could be improved to better fit specific organizational needs.

Pros & Cons

Generated from real user reviews
View All Pros and Cons
Search reviews
Filter Reviews
Clear Results
G2 reviews are authentic and verified.
Ruween I.
RI
Ruween I.
Associate Technical Lead, DevSecOps
Mid-Market (51-1000 emp.)
"Great Platfrom and Outstanding SecFix CSM Support That Goes Above and Beyond"
5/5
What do you like best about Secfix?

More than the SecFix application—although it’s fantastic—it’s the support you get from their CSMs that really stands out. I’ve worked with multiple CSMs from SecFix, and they’ve been extremely helpful, consistently going above and beyond to assist us whenever we need them. Coming from someone who works in the customer success space, that’s high praise. Review collected by and hosted on G2.com.

What do you dislike about Secfix?

There’s really nothing to dislike. My experience with SecFix has been consistently positive, and I’ve had no complaints so far. Review collected by and hosted on G2.com.

LS
Leonardo S.
ISMS Lead
Small-Business (50 or fewer emp.)
"Interactive SOA and easy device integration – Guidelines quickly at your fingertips at any time"
4.5/5
What do you like best about Secfix?

Particularly noteworthy is the interactive SOA, where all relevant guidelines and evidence are directly linked and can be found at any time. Added to this is the easy integration of end devices via the Secfix agent and the practical function that allows employees to directly read and confirm company policies. Review collected by and hosted on G2.com.

What do you dislike about Secfix?

The search function within the evidence and guidelines currently only considers English terms – even if the interface is set to German. For example, instead of "Zugriffsanfrage," the English term "Access Request" must be entered, which can be impractical for consistently German-language documents. Additionally, it would be desirable to be able to assign more than three classifications to information assets and link them directly to the risk register – in order to differentiate individual risk levels for different resources. Review collected by and hosted on G2.com.

Gorka A.
GA
Gorka A.
CISO
Small-Business (50 or fewer emp.)
"Secfix Makes Audits Easy with Clear Guidance, Fast Evidence Collection, and Great Support"
5/5
What do you like best about Secfix?

The day-to-day operation of the ISMS (reviews, evidence collection, control monitoring) is genuinely manageable, even for a small team where security isn't anyone's full-time job.

Integrations with the tools we already use pull evidence automatically, which dramatically reduces the manual work around audits.

The platform has evolved a lot over the years — new controls, better UX, more automation — and it has kept pace with how our company and our compliance needs have grown.

Audit time is no longer a fire drill. Everything the auditor needs is already in the system, organised and up to date.

Support and the customer success team are responsive, pragmatic and clearly know the standard inside out. They behave like a partner, not a vendor.

Price could look high for small companies but the it pays off fast on effort reduction. Review collected by and hosted on G2.com.

What do you dislike about Secfix?

One thing I’d flag is that the policy templates are a great starting point, but you still need to sit down and adapt them to your company’s specific needs. Even though the Secfix team is very supportive throughout the process, it does take some effort on your side to tailor everything properly and make sure it fits how your business actually operates. Review collected by and hosted on G2.com.

Response from Jakub Wanat of Secfix

Hi Gorka, thanks for the feedback; it's great to hear that day-to-day ISMS operations feel manageable and that audit time is no longer a fire drill. That's exactly what we're aiming for :)

On the policy templates: fair point, and one we're actively working on. Our product team is building out improvements to make policy creation faster and with less effort on your side. Stay tuned!

Tiran P.
TP
Tiran P.
DevOps
Computer Software
Mid-Market (51-1000 emp.)
"Clearly Organized ISO/SOC2 Verification with an Intuitive UI"
5/5
What do you like best about Secfix?

I like how it clearly organizes everything we need for ISO/SOC2 verifications into separate sections, which makes it easier know the requirements and avoid overlooking any of the required documents. The support they offer is pretty good and the secfix UI is very user-intuitive Review collected by and hosted on G2.com.

What do you dislike about Secfix?

no real cons to talk about, does everything needed as a compliance platform. Review collected by and hosted on G2.com.

Rich B.
RB
Rich B.
Zookeeper
Small-Business (50 or fewer emp.)
"Expert-Led Compliance Made Simple"
5/5
What do you like best about Secfix?

I find the Secfix platform pretty easy to use, making it clear what needs to be done and who needs to do it. The service is excellent; they did a great job migrating us from another provider and continue to support us months later with regular face-to-face meetings to ensure we implement the controls correctly. I also appreciate that Secfix acts as an expert authority on compliance tasks, providing guidance on what needs to be done and how to do it.

I especially use the clear dashboards that tell you, at a glance, where your compliance stands. From there, it's a quick click or two to see exactly what needs to be done to raise your compliance percentage. This can be done overall, or only on one compliance framework - whatever scope you want to look at.

They have added a couple of nice AI features. First, a chatbot to help navigate the app and answer questions about how to do something. The newer AI, that I've only played with, can answer complex questions about your policies. This is especially helpful for answering security questionnaires from customers.

We found the price to be competitive and even a little cheaper than competitors. The clear, easy to use platform and great customer service make this a good investment for us. Review collected by and hosted on G2.com.

What do you dislike about Secfix?

I have had only two complaints about the UX. I suggested fixes for both of these. The first was added as a new minor feature within a week or two. I only suggested the second a few days ago, but my contact at Secfix said it was a great idea and would probably be implemented. Review collected by and hosted on G2.com.

Marcus P.
MP
Marcus P.
IT Infrastructure and Operations Manager
Mid-Market (51-1000 emp.)
"A reliable partner on the path to ISO 27001 certification"
4.5/5
What do you like best about Secfix?

Secfix takes over a large share of the documentation and administrative work, and it guides me in a clear, structured way through the certification process all the way to the certification itself. Review collected by and hosted on G2.com.

What do you dislike about Secfix?

Creating policies still requires a considerable amount of manual effort, and it feels like this process could be automated much more effectively. Review collected by and hosted on G2.com.

Verified User in Computer Software
AC
Verified User in Computer Software
Small-Business (50 or fewer emp.)
"Intuitive user guidance and a strong Secfix team make getting started easy"
4.5/5
What do you like best about Secfix?

Secfix impresses primarily with its intuitive user guidance: Even without prior knowledge, you are guided step by step through the entire process, making it very easy to get started. The weekly meeting with the Secfix team allows you to quickly and easily resolve any few questions that arise. Particularly helpful is the project status report, which provides an accurate overview at any time of how much has already been completed. Within the frameworks section, you can also see at a glance which measures need to be specifically implemented for each point. Review collected by and hosted on G2.com.

What do you dislike about Secfix?

The dashboard still has some minor teething problems, which, however, hardly matter in practice. Specifically, it has been noticed that the search function in the German interface only recognizes English terms, which occasionally makes operation a bit more difficult. On a positive note, it should be highlighted that such issues have always been addressed and earmarked for resolution by the Secfix team – the communication and responsiveness have been consistently good. Review collected by and hosted on G2.com.

Roland K.
RK
Roland K.
Technischer Geschäftsführer
Small-Business (50 or fewer emp.)
"Intuitive ISO 27001 to-dos, central overview, and fast support at Secfix"
5/5
What do you like best about Secfix?

What I like best about Secfix is the clear, intuitive interface with specific to-dos and templates that we can follow step by step for ISO 27001. This saves us a lot of time compared to our own Excel lists and keeps all requirements centrally in view. Also particularly positive is the fast, competent support during onboarding and for questions in between. Review collected by and hosted on G2.com.

What do you dislike about Secfix?

In the meantime, we have mapped all the points in the tool, but we would like to connect our own automation workflows. Currently, a suitable API endpoint is still missing for this. Review collected by and hosted on G2.com.

Verified User in Computer Software
UC
Verified User in Computer Software
Mid-Market (51-1000 emp.)
"Clear ISMS Overview with Guided ISO 27001 Workflows and Automated Evidence Collection"
4.5/5
What do you like best about Secfix?

What I like best about Secfix is that it gives us a very clear and structured overview of our ISMS implementation status I especially like the guided workflows for ISO 27001 readiness, the automated evidence collection, and the ability to track what is still missing or needs review. This has made our work much more transparent and has helped us prioritize open tasks instead of constantly trying to figure out where we stand. Another major benefit is the support for security questionnaires. Being able to answer parts of customer questionnaires based on the information already maintained in Secfix saves a lot of manual effort. Review collected by and hosted on G2.com.

What do you dislike about Secfix?

There is not much I actively dislike, but some parts of the platform could be more flexible. Secfix works very well when you follow its predefined structure and policies, but if you already have an existing ISMS setup, it can sometimes be challenging to adapt the tool to your internal way of working. Review collected by and hosted on G2.com.

Verified User in Computer Software
AC
Verified User in Computer Software
Small-Business (50 or fewer emp.)
"Confident, Practical CISO-as-a-Service That Made Our ISO 27001 Audit Smooth"
5/5
What do you like best about Secfix?

We've been working with Secfix's CISO-as-a-Service for half a year and it's been a really positive experience.

What stands out most is the confidence it gives us day to day. Anyone who's been through an ISMS knows it's not something one person can carry alone, and it's not something you can fully outsource either. What we needed was a knowledgeable partner we could lean on for guidance, sanity checks, and the harder client-facing work. That's exactly what we got. Responses come back quickly, and our CISO has stepped in directly with clients when it made sense.

We've tried other setups for this kind of role before, and the difference is big. Our ISO 27001 audit ended up going smoothly even though preparation time was tight, which says a lot about the service, it's practical and not over-complicated.

On top of that, the cost is genuinely reasonable. We'd looked at a few options before deciding, and Secfix came in competitively without cutting corners on what we actually need.

Would happily recommend it. Review collected by and hosted on G2.com.

What do you dislike about Secfix?

Currently nothing, the application and the team help and deliver where promised. Review collected by and hosted on G2.com.