19 Reciprocity Testimonials

“We have had a fantastic experience with onboarding. The team was very skilled in showing the capability of ZenGRC, teaching us features and capabilities that we didn’t even know were possible. We also benefited from a Reciprocity GRC Expert to help us identify specific ways to use the tool to accomplish our GRC goals.”

"ZenGRC allows us to push ourselves as an organization, collectively assessing the most simple, yet strategic, way to assess vendors, We ask fewer risk-related questions but gain more assurances about vendors — best practices we strongly believe in.”

"Before ZenGRC, we used spreadsheets and emails to manage our audits. After using ZenGRC, I'll never go back. Their Customer Success team is amazing."

"We used to spend a ton of time sending emails to manage issue tracking and resolution for audits. ZenGRC makes tracking issues incredibly simple."

“Being able to leverage the risk management piece of ZenGRC elevated our entire security program to a level of maturity we didn’t think was possible so quickly, Our leadership team loves the visibility, able to see how we’re effectively mitigating business exposure."

"ZenGRC has been a great help for managing our assessments. The system is flexible, easy to use and constantly improving with regular updates."

"We’ve achieved all our compliance objectives. We’re in a really good compliance posture going forward."

"We now have a scalable platform that supports our company’s growth, enabling us to home in on priorities based on our existing control maturity and overall compliance and risk posture. The more we use ZenGRC, the more benefit we see."

"For small to mid-sized companies with stretched infosec resources, scaling a compliance program on your own eats up too much time and money. It’s a testament to ZenGRC and the platform’s ability to manage multiple frameworks that we saw value soon after implementation. The solution just makes sense from a cost benefit.”

“During these unusual times caused by COVID-19, we haven’t missed a beat with our audit processes, We are just getting started with ZenGRC, primed to expand our usage to support all facets of our company’s audit, risk and compliance activities.”

"When I started at Bluegreen, we conducted our SOC and SOX audits with spreadsheets and emails, as is the norm at many organizations, We were getting the job done, but it was cumbersome, requiring ongoing exchanges with internal staff and auditors to ensure individuals had what was needed to move the audit towards completion."

“For our first audit, I acted as the middleman between the auditors and our company’s control owners. It was a constant game of requesting information, managing document formats and figuring out how to securely collaborate. We made it work but I said, ‘Never again,’ thus starting our search for a GRC solution."

“Zen was easy to use, it matched our mental model for how things ought to be linked together, it had all the compliance programs we needed to deal with available to us as templates and it was extensible. I didn’t find another solution that even came close.”

"Training sessions with an onboarding expert are crucial for starting your ZenGRC experience on the right foot, as they help organizations understand how the platform will best fit their needs. Professional and patient, experts guide you through core concepts, showcasing ZenGRC’s flexibility and providing handy productivity tips and tricks. After they import the programs you need to work with, you see how the mapping works between programs, controls, risks, and vendors, and it will spur you to populate the platform with as much relevant data as you can.”

“ZenGRC delivered much-needed continuity and value during a time of uncertainty caused by the pandemic. It was a huge weight off our CIOs back that we could maintain our compliance obligations as planned and on schedule. Our program didn’t miss a beat.”