Secureframe launches new tool to streamline compliance

Secureframe has unveiled a new platform designed to unify enterprise compliance efforts across various business units, aimed at reducing audit time and avoiding duplicate work.

The new tool, Secureframe Workspaces, has been launched to tackle issues faced by enterprises that need to manage compliance across multiple divisions or product lines. Traditional compliance processes have been deemed inefficient and often result in duplicated efforts and siloed audits, whereas Secureframe Workspaces aims to centralise controls and streamline compliance management in a single control layer.

"As companies expand their operations, the scope of compliance grows exponentially," stated Shrav Mehta, Chief Executive Officer of Secureframe. "Organisations face mounting pressure to meet various regulations and industry standards. Workspaces addresses this challenge by eliminating the fragmentation of traditional compliance management, offering organisations a clear, real-time view of security and compliance across all business units."

Secureframe Workspaces facilitates compliance by allowing organisations to define distinct business units and products, connect relevant resources, and apply compliance frameworks globally. This is intended to ensure a unified and efficient compliance strategy.

Several features of the platform have been highlighted, such as Centralised Compliance Management, Automated Scoping, Elimination of Redundant Work, Role-Based Visibility, Real-Time Updates, and Audit Efficiency.

Workspaces enables tracking of compliance on both an organisational and business unit level from a single account. Automated Scoping sets or adjusts the scope for cloud resources and devices automatically, ensuring that only pertinent assets are included in audits.

The platform also promises to eliminate redundant compliance efforts across business units by sharing controls rather than managing separate audits, which is aimed at reducing duplicated work.

CISOs and compliance leaders can benefit from role-based visibility, providing them with a broad view of company-wide compliance, while allowing governance, risk, and compliance teams to concentrate on specific audits or frameworks.

Additionally, real-time updates allow attributes of assets to automatically re-trigger scoping rules should they change, maintaining compliance accuracy.

The efficiency in audit processes is further enhanced by enabling the segmentation and customisation of compliance workflows per business unit, reducing the time spent on assessments.

The release of Workspaces builds on previous strategic advances by Secureframe, such as the introduction of Custom Automated Tests and a partnership with the PCI Security Standards Council. These efforts have contributed to Secureframe's recognition on Inc.'s 2024 Power Partners List in the Privacy and Security category.

Enterprise customers with complex compliance needs are already seeing the benefits of Secureframe's approach. Tommaso Barbugli, Co-Founder and Chief Technology Officer of Stream, noted, "Secureframe easily saved us hundreds of hours on evidence collection, implementing new HR policies, and polishing up our security infrastructure. I could focus on my core work and not worry about the compliance process."

Damian Brooks, Chief Technology Officer of Arbor Education, added, "Without Secureframe, you will be spending an awful lot of time doing manual work, literally screenshotting evidence, and chasing people down to get approvals. It means you don't have a high-level view of how the system is working because you're so focused on gathering the evidence. Secureframe takes that burden away and allows you to focus your time and effort on what you should be focused on, like areas for improvement."