Share your experience using BIC GRC

Our use case involved SOC 2 Type I and Type II, as well as Penetration Testing.

Delve was a great partner for our SOC 2 Type I and Type II journey. Their customer support team was amazing, super patient, responsive, and always happy to help whenever we had questions. We really appreciated how structured and guided the platform was. It made the whole process much less overwhelming and easy to implement. The team made sure we were doing things the right way while helping us resolve small issues along the way. Overall, I had a great experience and it is a service I would absolutely recommend to others to use.

The customer support really stands out. They have been responsive and genuinely helpful whenever we have needed them. The policy templates were also great, especially for getting started, since they make it easy to understand how policies should be structured and what to include. I also really enjoyed the AI tool and how well it understands the policies and controls we already have in place.

Delve has little to no issues. One minor challenge we ran into was occasional confusion around which forms needed to be completed for the audit. That said, their superb customer support team quickly cleared things up every time, so it was never a blocker.

We have been using the solution for 2 months.

I think Delve's pricing is incredibly fair, especially for the quality of service they provide.

We evaluated Drata but decided that Delve perfectly fitted our needs.

I highly recommend Delve to others!

DineU uses Delve primarily to automate SOC 2 compliance across our AWS-based infrastructure. It serves as our system of record for controls, evidence collection, and audit readiness. This replaces manual spreadsheets and ad-hoc evidence gathering.

Delve significantly reduced the time and effort required to prepare for SOC 2 audits. Continuous monitoring gives us real-time visibility into control gaps instead of point-in-time checks. This allows our engineering team to focus on building the product rather than compliance admin.

Automated evidence collection is the most valuable feature for DineU because it eliminates manual screenshots and exports. Continuous control monitoring helps us catch configuration drift early. Auditor-ready reports streamline external audit reviews.

The UI could be more intuitive when navigating between controls and evidence. Deeper native integrations with Jira for remediation tracking would add value.

I have used this solution for less than one year.

We did not use a previous solution.

Delve is a competitive platform in terms of pricing, and their account executives are great to talk with and continue to work with.

We evaluated tools like Drata, Vanta, and native CSPM solutions. Delve stood out for stronger control mapping and evidence automation. It aligned better with our technical SOC 2 needs.

We are very glad we worked with Delve, and their support team has been wonderful to work with.