External reviews
1,098 reviews
from
and
External reviews are not included in the AWS star rating for the product.
A lighthouse in the fog of security certifications
What do you like best about the product?
It gives me a clear and comprehensive list of things I need to put in place to achieve any certification. It is easy to use, easy to put in place. I use it every day.
What do you dislike about the product?
The product is still young and there are some bugs on the platform. The customer support seems sometimes overwhelmed.
What problems is the product solving and how is that benefiting you?
Saves time to gather evidences
Gives me a clear of requirements I can tick one by one
Gives me a clear of requirements I can tick one by one
Drata's platform makes compliance easier
What do you like best about the product?
The platform is great -- resources, chat, and just general monitoring of what's happening and needs to happen.
It's a single source of truth and easy to use on a regular basis. Plus the customer support is great!
It's a single source of truth and easy to use on a regular basis. Plus the customer support is great!
What do you dislike about the product?
I think the access to information on what the control means and what is needed could be more detailed. The information is a little hard to know exactly what is needed and working with auditors helps, but it would be more efficient with common examples and needs.
What problems is the product solving and how is that benefiting you?
getting and maintaining our SOC2 compliance
ensuring that we are up to date on the controls and needs throughout the year, so that it's easier when we have to go through the annual attestation process
communicating with our advisors
one place to house all the evidence and docs
ensuring that we are up to date on the controls and needs throughout the year, so that it's easier when we have to go through the annual attestation process
communicating with our advisors
one place to house all the evidence and docs
Detailed and Organized
What do you like best about the product?
I like the way drata is organized. Seperation of Controls, Policies and personal is perfect.
What do you dislike about the product?
Notifications were not always sent out when policies where updates
What problems is the product solving and how is that benefiting you?
Getting us to SOC2 compliance and then moving to HIPAA
Good
What do you like best about the product?
The onboarding calls and the provided support
What do you dislike about the product?
Not sure, probably too long to implement but maybe it's the nature of Soc2
What problems is the product solving and how is that benefiting you?
Soc2 Complience
Great GRC for companies of any size
What do you like best about the product?
I love the most DRATAs approach to security controls, their monitoring and evidence mapping.
It is simple to use and saves lot of time during yearly audits. Thanks to multiple usecases - Policy Center, Vendor management, etc. - it covers most of the areas required by many security standards.
Integrations to multiple systems - HR, Communication, Vulnerability management and others - makes the DRATA super useful in gathering the data at one place and using them efficiently.
It is simple to use and saves lot of time during yearly audits. Thanks to multiple usecases - Policy Center, Vendor management, etc. - it covers most of the areas required by many security standards.
Integrations to multiple systems - HR, Communication, Vulnerability management and others - makes the DRATA super useful in gathering the data at one place and using them efficiently.
What do you dislike about the product?
I dislike the DRATA simplified approach to Risk assessmnt (don´t misread with Enterprise Risk Management). It is too generic and doesn´t help our organisation to evaluate the current risks.
We would love to see imprvements in this area so that it would be more useful.
We would love to see imprvements in this area so that it would be more useful.
What problems is the product solving and how is that benefiting you?
Drata solves:
- continuous security frameworks monitoring (controls, monitoring, evidence etc.)
- vendor management
- governance (policy management)
- internal audit (audit hub)
- sharing security posture (trust center)
- employee compliance and HR processes
- device controls / protectin (drata agent)
- integrations (Slack, AWS, GitHub, Jira)
Whole company can be more efficient while using DRATA since it keeps our security posture well maintained. It reminds us about missing security evidence, upcoming audits and tasks which keeps the information up to date.
I consider drata reasonably cheap for the ammount of service / efficiency it provides to our company.
- continuous security frameworks monitoring (controls, monitoring, evidence etc.)
- vendor management
- governance (policy management)
- internal audit (audit hub)
- sharing security posture (trust center)
- employee compliance and HR processes
- device controls / protectin (drata agent)
- integrations (Slack, AWS, GitHub, Jira)
Whole company can be more efficient while using DRATA since it keeps our security posture well maintained. It reminds us about missing security evidence, upcoming audits and tasks which keeps the information up to date.
I consider drata reasonably cheap for the ammount of service / efficiency it provides to our company.
Good organizational tool for managing IT audits
What do you like best about the product?
I like the built-in tools to help manage the various audit processes we must comply with. It has helped our various team members go to one tool to manage the disparate and various needs of our audit process.
The default integrations matched 90% of the platforms we use today. Enabling Drata to scan our various tools regularly to ensure compliance.
The default integrations matched 90% of the platforms we use today. Enabling Drata to scan our various tools regularly to ensure compliance.
What do you dislike about the product?
The interface can be confusing at times.
What problems is the product solving and how is that benefiting you?
Drata is responsible for our Compliance Management, this has aided us keep our systems secure and transcat with enterprise level customers.
The most automated compliance platform we could find!
What do you like best about the product?
Many automated tests, reminders. Once we familiarized ourselves with the UI, it's really simple to use and it provides everything we need.
What do you dislike about the product?
It took me a while to get familiar with the UI. Also setting up connections was sometimes a bit tricky and we needed to contact Drata support to reset it and try again.
What problems is the product solving and how is that benefiting you?
Drata checks our identity provider, cloud accounts, ticketing system etc. and it all clicks together.
Drata is the best tool to use for Infosec compliance.
What do you like best about the product?
Exceptional Customer Support: In the rare instances where assistance is needed, the Drata team provides exceptional customer support. The support team is responsive, knowledgeable, and dedicated to resolving issues promptly. Seamless Integration: Drata seamlessly integrates with existing tools and software, minimizing disruptions during the implementation phase. This allows for easy monitoring for compliance.
What do you dislike about the product?
Drata can expand the scope of the tools they integrate with so that users can have a wide variety. Drata can implement recurring tasks option to allow easy tracking of tasks.
What problems is the product solving and how is that benefiting you?
compliance
Great experience navigating a challenging process
What do you like best about the product?
Clear instructions on navigating complex compliance needs and stellar customer service to guide you through compliance processes.
What do you dislike about the product?
Automated tests sometimes flag non-existent issues.
What problems is the product solving and how is that benefiting you?
Provides clear instructions on navigating SOC2 and HIPAA compliance procedures. Provides tools to maintain compliance year after year.
Great tool for compliance automation and customer assurance for cloud based applications
What do you like best about the product?
Great support / implementation experience. Modern and effective user experience across the portal. Comprehensive coverage for most major compliance and assurance programs. It is an investment to get fully onboarded by mapping existing controls to monitors for your environment, but the investment pays off in time saved each year during audit periods, and the ability to show real time monitoring status on the Trust Portal, which I recommend. Very good list of integrations for us, including our primary cloud provider, training provider, endpoint protection and policy management.
What do you dislike about the product?
The inherent problem with any compliance automation platform is that it must be opinionated, meaning you must have controls that match assumptions. If you are implementing Drata on top of an exisiting security program, and your controls don't match the "default" implementation expected, then you can't take advantage of automation on those controls. Drata is exceptionally powerful if it's implemented at the same time as your security controls, but has done very well being retrofit on an existing one as well.
What problems is the product solving and how is that benefiting you?
Compliance automation to save time and effort during audit cycles, and securely provide artifacts to customers.
showing 161 - 170