SAN FRANCISCO, CA — Secureframe, the leading provider of compliance automation software, introduced a new suite of AI features and capabilities to further support the growing needs of business compliance. The platform updates include support for a broader range of frameworks, including the Technology AI Risk Management Framework (NIST AI RMF) and ISO 42001, enabling teams to automate their compliance protocols.
Many organizations face challenges in maintaining a strong security and compliance posture due to the cybersecurity workforce shortage, complex compliance requirements, cross-functional coordination, and evolving tech stacks. Limited resources often exacerbate these issues.
Secureframe remains committed to addressing these challenges by delivering best-in-class, AI-powered solutions that help businesses reduce the effort and costs associated with managing a compliance program while supercharging their existing staff’s capabilities.
“Since the beginning, we’ve provided Secureframe customers with a unified automation platform and unparalleled compliance expertise to help them obtain and maintain compliance with global information security standards,” says Shrav Mehta, Founder & CEO, Secureframe. “We continue to enhance our platform and find new ways to automate manual security, privacy, and compliance tasks so our customers can build trust while unlocking growth.”
In fact, in a survey conducted by UserEvidence, 92% of Secureframe users said they reduced time spent on manual tasks by at least 26% per month.
Secureframe’s latest suite of AI capabilities and platform updates are designed to further revolutionize the way businesses approach security and compliance, and include:
- Generative AI in Questionnaire Automation: Utilizes generative AI to suggest answers, pulling control and test information from Secureframe Comply, policies, and the Knowledge Base. This AI-powered automation saves customers even more time on completing lengthy questionnaires while ensuring accuracy by referencing content directly from Secureframe Comply.
- Comply AI for Vendor Risk Management: Allows organizations to send custom or template-based questionnaires directly from the platform, with vendor responses posting directly in Secureframe for centralized management. Comply AI further enhances efficiency by automatically extracting relevant answers from hosted vendor documents, such as SOC 2 reports, speeding up security assessments and reviews.
- Comply AI for Control Mapping: Intelligently maps controls to streamline the creation of custom frameworks and risk treatments, saving time through automation. This enables customers to instantly benefit from Secureframe’s test automation capabilities, ensuring accuracy and efficiency even for custom controls.
- AI Framework Support: Secureframe now provides support for NIST AI RMF and ISO 42001, two key frameworks that guide organizations in the responsible design, development, and deployment of AI systems.
“Our latest AI capabilities and platform updates are designed to streamline the way security and compliance teams operate,” says Shrav Mehta, founder and CEO, Secureframe. “By leveraging advanced technologies like generative AI and machine learning, we’re automating time-consuming tasks and ensuring the highest levels of accuracy.”
Secureframe has already made significant strides in integrating AI capabilities into its platform over the past two years, helping customers reduce the effort and costs associated with maintaining a strong security compliance posture. These include:
- Comply AI for Remediation: Improves the ease and speed of fixing failing controls in cloud environments. By generating automatic fixes for infrastructure as code, Comply AI for Remediation allows users to effortlessly copy, paste, and deploy fixes to their cloud environment, streamlining the remediation process and enhancing overall security.
- Comply AI for Risk: Automates the risk assessment process, saving organizations valuable time and resources. By analyzing risk descriptions, Comply AI for Risk generates inherent risk scores, treatment plans, and residual risk scores, empowering organizations to improve their risk awareness and response strategies.
- Comply AI for Policies: Leverages generative AI to revolutionize policy creation and refinement. With its AI-powered text editor, Comply AI for Policies enables organizations to create clear, polished, and tonally consistent policies in a fraction of the time, ensuring alignment with their unique voice and values.
- ML-powered Questionnaire Automation: Uses machine learning to automate responses to RFPs and security questionnaires.
“With Comply AI, we’re able to save valuable time remediating cloud misconfigurations. This not only makes preparing for our audits easier — it will also help us achieve optimal security and compliance results that drive our business forward,” says Jay Deustar, CTO, PrizePicks.
Other key milestones:
- Introduced updates and enhancements to Secureframe Trust Center to further remove friction from the end-to-end security review process. Teams can proactively share security, compliance, and privacy information with customers and prospects.
- Added new features to streamline compliance processes, such as global search functionality, tagging on controls, and support for findings and URLs as evidence.
- Earned industry recognitions from G2 and Cybersecurity Excellence Awards for multiple best product awards, along with Forbes, America’s Best Startup Employers for exceptional employee experience.
Visit Secureframe at RSA Booth #6573 in Moscone North Expo to learn more.
To stay updated with Secureframe’s latest developments, check out the company’s blog: secureframe.com/blog.
About Secureframe
Secureframe empowers businesses to build trust with customers by automating information security and compliance. Thousands of fast-growing businesses — such as AngelList, Ramp, Remote, and Coda — trust Secureframe to simplify and expedite their compliance journey for global security and privacy standards such as SOC 2, ISO 9001, ISO 27001, ISO 42001, PCI DSS, HIPAA, GDPR, and more. Backed by top-tier investors and corporations such as Google, Kleiner Perkins, and Accomplice Ventures, the company is amongst the Forbes list of Top 100 Startup Employers for 2024.
