App comparison

Add up to 4 apps below to see how they compare. You can also use the "Compare" buttons while browsing.

ZenGRC Logo

ZenGRC

4.4
(25)

Write a review

Web-based governance, risk, and compliance solution

see alternatives

(11)

ZenGRC Pricing, Features, Reviews and Alternatives

ZenGRC FAQs

Q. Who are the typical users of ZenGRC?

ZenGRC has the following typical customers:
Large Enterprises, Mid Size Business, Non Profit, Public Administrations, Small Business

These products have better value for money

See free alternatives

Q. What languages does ZenGRC support?

ZenGRC supports the following languages:
English

See alternatives

Q. Does ZenGRC offer an API?

Yes, ZenGRC has an API available for use.

See alternatives

Q. What other apps does ZenGRC integrate with?

ZenGRC integrates with the following applications:
Microsoft SharePoint, Amazon S3, Jira, OneDrive, Google Drive, Box, Tenable.io, OneLogin, Okta, Slack, Tableau, ServiceNow

See alternatives

Q. What level of support does ZenGRC offer?

ZenGRC offers the following support options:
FAQs/Forum, Email/Help Desk, Phone Support, Chat, Knowledge Base

See alternatives

ZenGRC product overview

What is ZenGRC?

ZenGRC by Reciprocity helps businesses of all sizes build a scalable compliance program and monitor assessment activities from a single interface. The application enables audit and compliance managers to reduce compliance failure and brand risks. The solution is used by various industries including retail, consumer goods, technology, utilities, finance, and healthcare.

Key benefits of using ZenGRC

• ZenGRC provides an intuitive user interface to help businesses manage compliance programs themselves without using the services of third-party professional consultants.

• ZenGRC offers a customizable dashboard that enables risk and compliance managers to view risk heat maps, 360-degree audit reports, and evidence collection reports.

• The solution has a risk registry feature that lets users view information related to previously identified risk controls such as risk scoring, mitigating controls, ownerships, and mitigation efforts.

• ZenGRC enables users to design risk assessment surveys to collect relevant information points from various stakeholders during the assessment process.

• The application offers reporting capabilities that help users to download reports and view data from different angles by using slicing and dicing tools.

Typical customers

Freelancers
Small businesses
Mid size businesses
Large enterprises

Platforms supported

Web
Android
iPhone/iPad

Support options

FAQs/Forum
Email/Help Desk
Phone Support
Chat
Knowledge Base

Training options

Webinars
In Person
Live Online
Videos
Documentation

Not sure about ZenGRC? Compare it with a popular alternative

Starting from

ic-pricetag

No pricing info

Free plan
Free trial
Pricing range

Starting from

1500

Per month

Other

Free plan
Free trial
Pricing range
Ease of use
Value for money
Customer support
Ease of use
Value for money
Customer support

Why am I seeing this?

ZenGRC features

Functionality

4.4

/5

25

Total features

43

9 categories

Most valued features by users

Alerts/Notifications
Activity Dashboard
Third Party Integrations
API
Customizable Reports
Data Import/Export
Workflow Management
Access Controls/Permissions

Functionality contenders

ZenGRC users reviews

Overall Rating

4.4

/5

25

Positive reviews

Rating breakdown
  • Value for money
  • Ease of use
  • Features
  • Customer support
  • Likelihood to recommend8.85/10
Rating distribution

5

4

3

2

1

13

10

2

0

0

Pros
The software helps me track issues that need to be resolved. The support staff is excellent and helped me work some issues I was having understanding the product and getting tasks accomplished.
ZenGRC is a great tool for managing different audits. I love the workflow from starting multiple requests to collecting and accepting evidences.
Powerful, extensible, and easy to use software. Excellent support and product roadmap.
Cons
It needs more reporting and visual features as my target audience need more graphs and items to show different risk profiles, risk appetite, thresholds etc.
We use different terminology from the software and is confusing for some of the users.
Before ZenGRC, we used spreadsheets and emails to manage our audits. After using ZenGRC, I'll never go back.

Overall rating contenders

AvatarImg
AvatarImg

Andrew W.

Verified reviewer

Computer Software, 1,001-5,000 employees

Used daily for less than 6 months

Review source

Overall Rating
  • Value for money
  • Ease of use
  • Features
  • Customer support
  • Likelihood to recommend10/10

Share this review:

Logical and minimal approach to GRC saves time!

Reviewed 5 years ago

One of the biggest benefits that has made a huge impact is the time savings we've achieved in our IT Security group by using ZenGRC. Our old email/spreadsheet process would be a multi-week process, cause confusion every audit and often get us lost in the weeds of details when we needed to be focusing on the auditors. The first audit we ran through ZenGRC saved us literally a full week of time that would have been dedicated to reviewing evidence submission via email and spreadsheets. Having ZenGRC in place allowed us to put multiple review points in place BEFORE the evidence came to our group for review practically eliminating the requirement of follow-up request corrections.

Pros

ZenGRC brings all the tools you need to run a successful GRC program to the table in a clear, concise and minimalist package that's nimble and efficient. Our company had been utilizing the old method of email/spreadsheets and was getting lost in the weeds even on the smallest of audits and struggling to keep up each year to stay ahead. Our evaluations with other tools fell flat, didn't meet our requirements...

Cons

As with any SaaS from a small company that is new to market (less than 5 years), there are aspects of the tool that require some creative thinking and clever workarounds. This is not necessarily a dislike in my opinion, however less technical individuals may find this aspect difficult or troublesome. ZenGRC staff do redeem themselves on this front as they're quick to respond to feature requests and have already implemented several suggestions our team has submitted. Since starting to use the product, they have continually updated the product with new features, fixes and updates to existing functionality.

PM
AvatarImg

Paul M.

Telecommunications, 1,001-5,000 employees

Used daily for 2+ years

Review source

Overall Rating
  • Value for money
  • Ease of use
  • Features
  • Customer support
  • Likelihood to recommend9/10

Share this review:

Practical and straightforward approach to GRC Management

Reviewed 3 years ago

PCI Assessments became more efficient with Objects, Controls, Requests, and Evidence migrated from spreadsheets and disparate file repositories to one system with relational mapping. Mapping Risks to our Vendors and Vulnerability management programs provides a holistic view of our security posture.

Pros

The ease of use and administration is well balanced with the functionality needed in a GRC tool. ZenGRC gets the job done without being overly complicated.

Cons

To meet our Privacy and Data Governance requirements, we initially deployed on-premises. However, soon after that, we found that software upgrades required significant IT involvement. Also, the technical specifications to continue to host on-premises did not align with our internal standards. We had to re-assessing our risk in storing sensitive information off-site. After performing more stringent due diligence of ZenGRC as a vendor, we migrated to ZenGRC cloud-hosted. Our preference would have been to remain on-premises with better upgrade automation that ZenGRC Administrators could perform within the user interface.

PA
AvatarImg

Pramod A.

Financial Services, 1,001-5,000 employees

Used daily for 6-12 months

Review source

Overall Rating
  • Value for money
  • Ease of use
  • Features
  • Customer support
  • Likelihood to recommend7/10

Share this review:

ZenGRC is a great workflow tool from starting a request to collect evidences and close out request.

Reviewed 5 years ago

ZenGRC is a great tool for managing different audits. I love the workflow from starting multiple requests to collecting and accepting evidences. It is reducing the manual effort of tracking requests in excel file. The audit report matrix gives a solid picture for management to track and find the status of the active audit.

Pros

No pros were added to this review

Cons

The tool needs some enhancements and bug fix to add value to the customers and be user friendly. We are actively using the tool to manage our PCI audit. There are some features that needs to be added to save time during evidence collection and verifying process. I do not think the ZenGRC has met their SLA for customer support. I hope they work on redefining their SLA for their customer.

SB
AvatarImg

Steven B.

Insurance, 5,001-10,000 employees

Used daily for 1-2 years

Review source

Overall Rating
  • Value for money
  • Ease of use
  • Features
  • Customer support
  • Likelihood to recommend10/10

Share this review:

Powerful, extensible, and easy to use software. Excellent support and product roadmap.

Reviewed 3 years ago

We're facilitating internal audits with ZenGRC, and the software does a great job of it.

Pros

The ZenGRC solution streamlines conducting internal audits. Auditors can easily set up control frameworks (tons of templates are provided, which is very helpful), evidence requests, assign them to auditees, and review the evidence submitted. Auditees can easily provide feedback, ask questions, and submit evidence for review. The workflows ZenGRC supports are both incredibly accessible and very powerful. ZenGRC actively listens to customers and has actually incorporated a number of suggestions I (and other customers) have made. I'm excited to see what they'll develop in the future.

Cons

The ZenGRC solution is fantastic, and all the complaints I had 1.5 years ago have been resolved, and my expectations exceeded. I wish the vendor/third party management module was receiving more attention, sooner, but the roadmap for its development has been conveyed to me, and I understand the timing. I wish there was a licensing model which was not tied to user counts, which would enable us to do even more with the product.

DA
AvatarImg

Dave A.

Computer Software, 201-500 employees

Used daily for 2+ years

Review source

Overall Rating
  • Value for money
  • Ease of use
  • Features
  • Customer support
  • Likelihood to recommend10/10

Share this review:

ZenGRC is a major part of our successful compliance programs

Reviewed 5 years ago

Because it's so well organized we've managed to keep the required staff to manage compliance at a minimum.

Pros

I have been using ZenGRC for over two years now and it has been an essential tool helping us get and stay organized when we embarked on gaining a SOC 2 attestation. We have since been through two SOC 2 audits and are using ZenGRC to help us assess and remediate our gaps against ISO 27001.

Cons

There's still a some things you have to edit by exporting to CSV, editing in your favorite spreadsheet app, then re-importing, so it would be nice if some of that functionality was built into the UI. That being said, that workflow is actually ideal for some tasks. Our last audit firm wasn't able to use the app directly for requesting and managing audit evidence so there was a bit of duplication of effort. The ZenGRC team is making some changes to make that better though.

Common ZenGRC comparisons

ZenGRC logo
Risk Cloud logo
ZenGRCvsRisk Cloud
ZenGRC logo
StandardFusion logo
ZenGRCvsStandardFusion
ZenGRC logo
6clicks logo
ZenGRCvs6clicks
ZenGRC logo
AuditBoard logo
ZenGRCvsAuditBoard

Related categories