External reviews
1,094 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Excellent Customer Support
What do you like best about the product?
Drata's customer support & how it can help customers have a better picture of their compliance
What do you dislike about the product?
At the moment, nothing. Their customer support is top notch.
What problems is the product solving and how is that benefiting you?
It is allowing me to manage my customer's Drata instances and help them achieve compliance.
Smooth Setup, Essential for Compliance
What do you like best about the product?
I appreciate Drata’s setup process, which was quick and clear, with any issues resolved swiftly. I find the integration features particularly beneficial, as it automates many compliance checks. The compliance advisors chatbot is also a great help, providing quick answers when I have questions.
What do you dislike about the product?
Initially, I found it challenging to fully understand how the control framework and evidences were connected, which was confusing. Additionally, there seems to be inconsistency with the compliance adviser's chatbot responses. Sometimes it answers 'yes' to a question, and other times it says 'no' to the same question, which shakes my confidence in its reliability. I would like this function to be updated regularly to ensure it meets my needs accurately.
What problems is the product solving and how is that benefiting you?
Drata helps us understand compliance requirements and makes information upload easy, proving our legitimacy to clients and ensuring data security.
Beginning your Compliance journey
What do you like best about the product?
Drata gives you a great way to begin a Compliance journey if you don't have people to guide you.
What do you dislike about the product?
Not much, would be nice to see a Wizer integration.
What problems is the product solving and how is that benefiting you?
It pulls data from all sorts of sources and gives you a central view/alerting structure.
Drata and SOC2
What do you like best about the product?
I found the platform straightforward to use, with a high level of integration that made my experience smooth. The support teams were outstanding, always ready to help. Additionally, the AI provided valuable assistance with policy matters.
What do you dislike about the product?
A few of the policy templates lacked clarity regarding versioning, and the process of importing policies felt awkward and cumbersome.
What problems is the product solving and how is that benefiting you?
We first engaged a consultant to determine the cost of having an external firm provide us with SOC2 compliance. However, the proposals we received were too expensive for our company. Fortunately, we found that working with Drata allowed us to achieve our goals at a much lower cost.
Drata makes SOC2 easy
What do you like best about the product?
Our auditor is able to collect evidence directly from Drata and can also create new evidence requests within the platform. This workflow is a significant improvement over my previous experiences, where auditors and I had to use a shared ticketing system and all evidence had to be uploaded manually.
What do you dislike about the product?
The configuration options for monitors could be more detailed. For instance, I would like the ability to include or exclude specific resources from my AWS scans using regex, but currently, there is no way to achieve this.
What problems is the product solving and how is that benefiting you?
Streamlining our audit process
A seamless and reliable compliance automation platform, supported with an incredible CSM.
What do you like best about the product?
As a relatively small organisation, Drata has truly been a game-changer for us. Without a large compliance team, we have still been able to make steady progress toward our compliance goals, thanks to the platform. Working alongside a responsive auditing partner, we found the initial implementation straightforward and easy to get started with. The automation features for evidence collection and continuous monitoring have saved us countless hours of manual effort. We rely on Drata daily to ensure that any issues are promptly reported to the appropriate team and resolved quickly. We also value how smoothly it integrates with our core tools, such as AWS, Microsoft 365, and Intune, and how it offers clear dashboards and guided workflows that make preparing for audits much less stressful.
What do you dislike about the product?
The only real negative we’ve experienced is that support can sometimes be slower than we would like to respond. However, this has been more than mitigated by our highly responsive Customer Success Manager, who has consistently gone above and beyond to keep us moving forward. Overall, this balance has meant issues never become blockers. I wouldn't hesitate to recommend Drata to any organization.
What problems is the product solving and how is that benefiting you?
Drata is helping us overcome the challenges of managing compliance as a relatively small organisation without a large dedicated compliance team. It automates evidence collection, tracks controls continuously, and integrates directly with our core systems, which removes the need for endless spreadsheets and manual checklists. This saves us significant time, reduces human error, and gives us real-time visibility into our compliance posture. The biggest benefit is confidence—we can focus on growing the business while knowing we’re always audit-ready and aligned with frameworks like SOC 2 and ISO 27001.
Great
What do you like best about the product?
Rachel responded quickly to my ticket and helped me resolve my login issue.
What do you dislike about the product?
Everything is great. I have no issues with Drata.
What problems is the product solving and how is that benefiting you?
Login issue with my account.
Great CSM and platform experience
What do you like best about the product?
Responsiveness of customer success manager.
What do you dislike about the product?
Some things can only be configured by contacting the CSM.
Switching from another compliance platform to Drata is far less seamless than the marketing suggests.
* Drata has more (or different) automatic tests than our old compliance platform and therefore infrastructure changes had to be done.
* Some stuff like log retention is hard coded in automated tests and cannot be changed. Currently this value is 356 days. We have everything setup with 90 days for SOC 2 compliance and this now makes our transition harder.
Switching from another compliance platform to Drata is far less seamless than the marketing suggests.
* Drata has more (or different) automatic tests than our old compliance platform and therefore infrastructure changes had to be done.
* Some stuff like log retention is hard coded in automated tests and cannot be changed. Currently this value is 356 days. We have everything setup with 90 days for SOC 2 compliance and this now makes our transition harder.
What problems is the product solving and how is that benefiting you?
Where possible we centralize our security insights in Drata, this gives us a nearly 100% insight in one place. We also use it for compliance monitoring and SOC 2 audits. Drata also bought safe base which we are also using right now for trust center + security questionnaire filling support.
Best in the industry
What do you like best about the product?
Easy to use dashboard system, Support team (particularly Hunter) was very responsive and provided helpful materials when needed.
What do you dislike about the product?
None that i can think of. Everything has been easy to setup. It'd be nice to see more in-depth errors of why it something may not be working (i.e `hasMFA` would return null but not tell us *why* it would return null (i.e due to wrong permissions))
What problems is the product solving and how is that benefiting you?
Achieving SOC 2 compliance demonstrates our commitment to the highest standards of security and data protection. It establishes a strong foundation of trust with our current clients and sets the stage for building lasting confidence with future partners.
Drata - Our Compliance Partner
What do you like best about the product?
Drata is proactive, timely, and professional — whenever there’s a problem, help is never far away; the team is friendly and professional, the AI and human help options save valuable time, the well-structured management software is easy to implement and easy to use, I use it daily multiple times, and Drata is the best solution we’ve ever tried.
What do you dislike about the product?
I honestly can’t think of a single thing to dislike about Drata.
What problems is the product solving and how is that benefiting you?
Drata automates the entire compliance process, making audits far less time-consuming and reducing management overhead. Its pre-mapped controls and tests are perfect for inexperienced users and teams just starting out, while its vendor management and review features orchestrate the whole process seamlessly. It keeps us on track with all audit-related tasks, ensuring nothing falls through the cracks.
showing 1 - 10