We performed a comparison between MetricStream and OneTrust GRC based on real PeerSpot user reviews.
Find out what your peers are saying about RSA, BitSight, AuditBoard and others in IT Vendor Risk Management."Key features are usability and ease of configuration. It allows us to have all the information in a single place and provide real-time indicators and information for our executives."
"The interface is mobile-friendly and it is getting a good response from our customers."
"As a solution for IT risks, it is a very good product."
"We receive notifications or cases and prioritize them accordingly, which helps us address issues promptly."
"It does help in the automation of our privacy impact assessments."
"OneTrust GRC is stable."
"Vendors can be assessed and rated out of the tool, and assessments can be scheduled for updates at certain intervals."
"The product helps us streamline audit and incident management processes."
"One of the valuable features of this solution is it has the ability to review fourth and fifth parties to the nth degree."
"I would like to see out-of-the-box integration with more security, it would be helpful."
"We would like to have more dashboards and reports, such as geographical and trend reports in the next version. Also, an improvement in the mobile version would be helpful."
"I haven't seen any return on investment using the solution. If I had the opportunity, I would use a different solution."
"We encounter difficulties creating multiple platforms or interfaces and manual processes for changing certain settings."
"OneTrust GRC's workflows aren't automated and need to be manually driven."
"The product is not that easy to set up."
"The Vendor Risk dashboard is quite basic today and not interactive, but improvements are in coming the next releases."
"There are limitations to customized workflow automation, and they need to increase both the available automation and the customized workflow."
"They could improve by offering free help. A solution, a lot of times, is not just the use of the solution. For example, it is the overall engagement, how well do they support the system, what is their SLA, and how long their response time is to an issue. It would be beneficial if they had some type of professional services where they offer the first five hours of professional services a year for free. That would be a substantial benefit rather than having to buy professional services or professional services packages."
MetricStream is ranked 10th in IT Vendor Risk Management while OneTrust GRC is ranked 4th in IT Vendor Risk Management with 7 reviews. MetricStream is rated 8.6, while OneTrust GRC is rated 7.6. The top reviewer of MetricStream writes "Reasonably priced, stable, with out of the box deployment, and has good local support". On the other hand, the top reviewer of OneTrust GRC writes "Costly solution that may not guarantee ROI, but remains effective in IT risk management ". MetricStream is most compared with RSA Archer, IBM OpenPages and Workiva Wdesk, whereas OneTrust GRC is most compared with RSA Archer, ProcessUnity, AuditBoard, Workiva Wdesk and Panorays.
See our list of best IT Vendor Risk Management vendors and best GRC vendors.
We monitor all IT Vendor Risk Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
