Compliance Manager GRC 2026: Benefits, Features & Pricing

Software Advice offers objective insights based on verified user reviews and independent product and market research. When our advisors match you to a software provider, we may earn a referral fee.

How Software Advice ensures transparency

Software Advice lists all providers across its website—not just those that pay us—so that users can make informed purchase decisions. Users can talk to our advisors for free to receive software recommendations matching their needs. Software providers pay us for sponsored profiles to reach users interested in their products.

How Software Advice verifies reviews

Software Advice carefully verified over 2 million reviews to bring you authentic software experiences from real users. Our human moderators verify that reviewers are real people and that reviews are authentic. They use leading tech to analyze text quality and to detect plagiarism and generative AI.

Independent research methodology

Researchers at Software Advice use a mix of verified reviews, independent research, and objective methodologies to bring you selection and ranking information you can trust. While we may earn a referral fee when you visit a provider through our links or talk to an advisor, this has no influence on our research or methodology.

Wondering if Compliance Manager GRC is right for your organization?

Our Compliance Software selection experts can help you in 15 minutes or less.

On this page

Overview
Pricing and Plans
Features
Integrations
User Reviews

Overview

Compliance Manager GRC

3.8

(13)

Pricing

Pricing available upon request

About Compliance Manager GRC

Compliance Manager GRC enables businesses to reduce risks and meet regulatory security requirements without adding staff or stretching their already thin budget. It gives you greater confidence that the information security programs you’ve put into place are actually working and generate the documentation to prove it.

Compliance Manager GRC is a comprehensive software solution that helps organizations meet their information security needs by providing comprehensive dashboards and reports on compliance, risk management and governance best practices.

Compliance Manager GRC covers all aspects of information security including:

Information Security Program Management
Risk Management
Security Awareness Training
Incident Response Plan (IRP)
IT Asset Management (ITAM)
Change Control Processes & Documentation
Business Continuity Planning (BCP)

Compliance Manager GRC Screenshots

Compliance Manager GRC Pricing and Plans

Starting price: Connect with an advisor for pricing

Free Trial

Free Version

Compliance Manager GRC

Pricing available upon request

No plan information available

Confused about pricing? We've got you covered.

Get a personalized pricing breakdown tailored to your specific needs—no guesswork, no generic estimates.

Compliance Manager GRC Features

Popular features found in Compliance
Access Controls/Permissions
Archiving & Retention
Audit Trail
Corrective and Preventive Actions (CAPA)
Document Management
Incident Management
Monitoring
Regulatory Reporting
Risk Management
Training Management
Version Control
More features of Compliance Manager GRC
Activity Dashboard
Activity Tracking
Assessment Management
Audit Management
Compliance Management
Compliance Tracking
Consent Management
Customizable Reports
Customizable Templates
Data Mapping
Environmental Compliance
HIPAA Compliant
Internal Controls Management
ISO Compliance
IT Risk Management
Operational Risk Management
PIA/DPIA
Policy Management
Reporting & Statistics
Risk Assessment
Role-Based Permissions
Security Auditing
Sensitive Data Identification
Task Management
Template Management
Third-Party Integrations
Workflow Management

Compliance Manager GRC Integrations

Kaseya BMS

BullPhish ID

IT Glue

Kaseya VSA

Unitrends Backup

Compliance Manager GRC User Reviews

Overall Rating

3.8

Ratings Breakdown

23%

46%

23%

Secondary Ratings

Ease of Use

3.7

Value for money

3.4

Customer support

3.8

Functionality

3.6

Have you used Compliance Manager GRC and would like to share your experience with others?

Ravi B.

Verified reviewer

Computer & Network Security

2-10 employees

Used weekly for less than 2 years

Review source

Reviewed September 2023

Yet another exceptionally adequate kaseya product

Ratings Breakdown

Ease of use

Value for money

Customer support

Functionality

Pros:

This product has some decent integrations and a few significant time saving items. It's pretty easy to use.

Cons:

It's really expensive for what it is. The lack of ISO standards and lack of SOC make this really an MSP direct to client (and US only).

Joel P.

Verified reviewer

Information Technology and Services

11-50 employees

Used weekly for less than 6 months

Review source

Reviewed February 2023

A huge step forward for v2.0, excited to see more to come for GRC

I was glad to staff with RFT because of the improvements of GRC, coupled with Vulscan and NDPro. It is learning a new product, but extends the value of our services to our hybrid work with local devices, networks and cloud SaaS, PaaS, IaaS.

Ratings Breakdown

Ease of use

Value for money

Customer support

Functionality

Pros:

The ability to craw from multiple data collections and against multiple standards. E.G. Our HIPAA clients also need to be PCI SAQ-C complaint but I never conducted a PCI assessment before because it required a whole new effort. Now we can blend them and charge for the effort appropriately.

Cons:

The departure from a question-driven interface requires more time to review the standard to identify what would be considered compliant. It has always been helpful to have the standard immediately accessible if a question required clarification. This takes longer...

Reasons for choosing Compliance Manager GRC

The ability to assess distributed devices using VulScan as one of the sources for the client facing reports, along with the ability to assess MS cloud SaaS/PaaS with NDPro - I just mish that we did not have to manually pull in those risk, customizing the client facing reports.

Gordon G.

Verified reviewer

Information Technology and Services

51-200 employees

Used daily for less than 2 years

Review source

Reviewed February 2023

Kaseya does not properly support its existing customers

My overall experience with Compliance Manager GRC has been disappointing. Not because of the product, because when it does work it does the job, but the development team is regularly pushing out new features and things which breaks other things, so their quality control leaves a lot to be desired, and as this is a critical toolset for delivering compliance assessments, having it be so unreliable is unacceptable. When we first started working with RapidFire Tools it was the Network Detective product. That worked well so we then purchased Compliance Manager when it first came out, shortly after RFT was acquired by Kaseya. Unfortunately, the quality assurance for new releases and support has gone way down since they became part of Kaseya. I won't even consider another Kaseya product at this time.

Ratings Breakdown

Ease of use

Value for money

Customer support

Functionality

Pros:

I like the ability to customize the assessment and controls for the specific engagement. I also like the ability to "assign" some tasks to subject matter experts involved in the assessment. Right now, the product doesn't make it easy for the subject matter experts to see the guidance for the specific standard for which I'm asking them to upload relevent control evidence, but that is a feature which, I hope, gets implemented and when it does will make it much easier to step customers through the gathering of the evidence rather than having to continue to rely on spreadsheets back and forth (which we still have to do even with Compliance Manager GRC).

Cons:

The things which I like the least about the software is the customer support for when things are broken. There have been numerous issues with both Compliance Manager and Compliance Manager GRC which have broken in the two years we've been using it and while I've requested a root cause analysis no less than three times, even from [sensitive content hidden] of the Compliance Manager product himself, I've received nothing. I've had to cancel compliance final deliverable meetings with customers because the software performed so poorly and even after escalating this as a "Sev-1" to the front-line, still got no response or fix for days.If the question is a simple one that can be solved by the front-line engineers, the support is pretty good, but anything that has to get escalated to the development team for investigation rarely, if ever, gets a proactive response back. In the last case, they clearly did something that broke one of the ways that the modal worked for the Requirements Analysis portion, it was working one day, was broken the next, and I noted that there was an update on that day. It's been two weeks and they STILL haven't identified what the underlying problem is! I run development shops, and step 1 is always, "what did we just push out and how did it impact things," but apparently that's too much process for Kaseya's development team. It's still broken, 2 weeks later.

Reasons for choosing Compliance Manager GRC

Didn't purchase Compliance Manager GRC, originally purchased Compliance Manager but started using GRC for new clients. I purchased Compliance Manager because of it's scheduled re-scans of the environment and automatic creation of "Risk Update" reports, which took the most recent scans compared with the scan during the full assessment and highlighted the changes. They removed that feature when they created GRC. I also liked the ability to do the deep HIPAA scanning to identify PII and PHI on systems for a full quantitative analysis. They removed that feature when they created GRC too.

Zackary W.

Verified reviewer

Information Technology and Services

11-50 employees

Used weekly for less than 2 years

Review source

Reviewed February 2023

An Essential Part of Our Compliance Portfolio

We have clients that require maintenance of their compliance status for both DoD work and HIPAA.Compliance manager helps us maintain these clients in a state of continued compliance via a variety of means and tools!

Ratings Breakdown

Ease of use

Value for money

Customer support

Functionality

Pros:

Compliance manager is easy to setup and use.It functions as a vital tool in our toolkit to ensure compliance for our client base.We have utilized other solutions in the past. However, the ability to integrate direct client interaction with scanning and reviewing makes it the perfect fit for our customers and us.The interface is intuitive, the scanning and integration is seamless and the centralized storage location of compliance documentation makes coordination and implementation much less painful.

Cons:

The interface for auditing Active Directory could use a little fine-tuning. It would be nice to be more granular with OU filtering.I think that integration would be the only change I could recommend.

Sunny L.

Verified reviewer

Information Technology and Services

501-1000 employees

Used weekly for less than 12 months

Review source

Reviewed February 2023

Not ready for CMMC or 800-171 compliance

We tried to get out of it when we realized how much it lacked in the CMMC realm, but the company ties you to a three year agreement, which we desperatly tried to get out of. The one saving grace they have is, they will let you give up the licenses and use a different product of theirs (like ITGlue) instead, which should let us recapture the cost.

Ratings Breakdown

Ease of use

Value for money

Customer support

Functionality

Pros:

This software does a really good job on collecting data off your network which will be useful in an audit. Additionally it gives you really good ways of tracking certain data for the cleint.

Cons:

The software is not geared toward helping you meet the requirements for an audit like CMMC. Compare this to a program like FutureFeed.co (specifically for doing CMMC Audits) and it falls down in letting you know where you are in the process, building your SSP and POA&M, doing your SAC and more. It is much more an extension of their Network Detective data gathering program, and much less a CMMC compliance walk through program.

Reasons for choosing Compliance Manager GRC

Not applicable

Wes R.

Verified reviewer

Information Technology and Services

51-200 employees

Used monthly for more than 2 years

Review source

Reviewed January 2023

Compliance Manager

I have been able to use Compliance Manager to replace our use of Network Detective when doing PCI and HIPAA risk assessments.

Ratings Breakdown

Ease of use

Value for money

Customer support

Functionality

Pros:

It used to be THE software to use. The thing I like the most is the comprehensive set of reports. Very nice integration of HIPAA interview (On-Site Survey), walkthrough notes, network scan, secondary data collection worksheets, etc. Nothing like it on the market.

Cons:

I am having MAJOR problems setting up a new HIPAA risk assessment. I'm trying to set up an assessment for the Center for Advanced Orthopedics, and it's not at all intuitive and not easily navigable. I never had this problem in the past. Been working on it all morning, I'll send a note to Support shortly but saw this survey in my email

Reasons for switching to Compliance Manager GRC

No choice. RFT started making the compliance modules I used available only in Compliance Manager.

George M.

Verified reviewer

Information Technology and Services

1001-5000 employees

Used monthly for more than 2 years

Review source

Reviewed February 2023

Compliance Burden Automation and Standardization

Compliance Manager provided three keys improvements:1) Automation for what had been a manual discovery process 2) Standardizing processes and deliverables across multiple compliance domains 3) Foundation for perpetual service offerings and deliverables

Ratings Breakdown

Ease of use

Value for money

Customer support

Functionality

Pros:

Using Compliance Manager as a compliance tool for multiple domains - HIPAA, NIST CSF, Cyber Insurance, and GDPR.

Cons:

The scanning installation is fine for on-premises Windows environments; however, cumbersome for non-Windows devices. Cloud support for scanning is limited and a big minus. Matches well with smaller to medium size scope, but the logistics of installing a scanner is challenging for large environments. A request is to provide mapping of control areas between compliance domains, and integrated evidence cataloging and pointers.

Reasons for choosing Compliance Manager GRC

Ready to go, price and scope.

gloria b.

Verified reviewer

Marketing and Advertising

51-200 employees

Used monthly for more than 2 years

Review source

Reviewed February 2023

Compliance Manager GRC

We have really been able to get our Compliance in order

Ratings Breakdown

Ease of use

Value for money

Customer support

Functionality

Pros:

Doesn't make you an expert but really helps move the process along.

Cons:

You have to remind yourself that the software does not automatically make you an expert.

Moss J.

Verified reviewer

Information Technology and Services

11-50 employees

Used monthly for less than 2 years

Review source

Reviewed January 2023

Great Tool for 'Basic' Compliance Audits and Management

Ratings Breakdown

Ease of use

Value for money

Customer support

Functionality

Pros:

The product is generally easy to use, even to the point it can be used by sales for discovery process. The reporting is complete and provides good framework for talking points with customers and prospects.

Cons:

There are compliance frameworks not available, (yet).

John S.

Verified reviewer

Computer & Network Security

2-10 employees

Used monthly for more than 2 years

Review source

Reviewed February 2023

Basic tool, needs update