External reviews
1,156 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Enhancing my security and compliance program
What do you like best about the product?
The organization it gives to my program. Having the policies, controls, and vendor risk profiles all in one place really helps get quick access into our compliance and risk posture, and identify any gaps that require extra attention.
What do you dislike about the product?
Nothing major, but I have a few product improvements that would be helpful. In the Risk Assessment module, would love it if you could customize the risk assessment to meet whatever risk assessment methology you're working towards, whether its a HIPAA risk assessment, or NIST 800-30 risk assessment.
There's a few places where having quicker automation for updating control information would be helpful, which is currently a manual process. However, I think that's likely a unique issue to our situation, so might not make sense to build a whole dedicated feature.
There's a few places where having quicker automation for updating control information would be helpful, which is currently a manual process. However, I think that's likely a unique issue to our situation, so might not make sense to build a whole dedicated feature.
What problems is the product solving and how is that benefiting you?
Organizing all controls and documentation involved with my security and compliance program.
great founding team and has supported our investors
What do you like best about the product?
ease of use. logging in and have a good view of fields that i need.
What do you dislike about the product?
connectivity - api keys. could be better at using outside systems.
What problems is the product solving and how is that benefiting you?
soc 1
Powerful and easy to use
What do you like best about the product?
Great platform for storing and documenting compliance activities and evidence. Online support and chats have been very helpful.
What do you dislike about the product?
It would be good if the platform also provided more guidance on and even a walkthrough on key compliance activities. For example, a guided walkthrough on tabletop exercises or recommendations on pentest services.
What problems is the product solving and how is that benefiting you?
Using the platform to support and maintain SOC-1, SOC-2 and PCI compliance.
Compliance accountability - Drata is a great platform for you!
What do you like best about the product?
This platforms helps us to keep the organization accountable with every complaince cert we require. Not only does it keep everything in one place, but the regular checks means that we don;t lose sight of areas that otherwise would be easy to drift from. Additionally, the ability to connect multiple frameworks, means we need to do the hard work only once!
What do you dislike about the product?
Some frameworks are not mapped fast enough, but the company is quick to respond to requests and address questions.
What problems is the product solving and how is that benefiting you?
Compliance managmeent and auditing
Drata makes staying in compliance fairly easy (at least on the HR side)
What do you like best about the product?
It's been fairly easy to keep up with policy additions and changes, and we have made most use of personnel compliance in our HR / IT departments, to make sure onboarding and offboarding of employees is done in compliance.
What do you dislike about the product?
We had some initial hiccups getting our HRIS to successfully "talk" to Drata but we were able to get that resolved with help from our HRIS programmers who worked with Drata's API. Their customer support has been ok but not amazing.
What problems is the product solving and how is that benefiting you?
For my department, Drata helps make sure that onboarding and offboarding of employees is both smooth and completely compliant.
Well designed platform enables organizations to complete a SOC 2 audit successfully.
What do you like best about the product?
It is fairly straightforward to use and helps organize all of the infomation, enables personnel to accept policies, etc., and makes the audit process much more straightforward. Personalized customer support was excellent.
What do you dislike about the product?
The stock templates are poorly written and require major work to be usable.
Finding out why some monitoring tests fail can be confusing and time-consuming.
Small items that are out of compliance can trigger large 'no ready' swings. For example, one person who is late for a background check causes readiness to drop from 100% to 88%.
Finding out why some monitoring tests fail can be confusing and time-consuming.
Small items that are out of compliance can trigger large 'no ready' swings. For example, one person who is late for a background check causes readiness to drop from 100% to 88%.
What problems is the product solving and how is that benefiting you?
Enabled a company with very little SOC 2 experience to achieve attestation within our schedule. Organizes the information and processes without having to have a bunch of manual folders, etc.
Company security platform
What do you like best about the product?
Whenever there is any new update on company policies it helps us to review and and get updated about it. Easy slack integration.
What do you dislike about the product?
Lots of slack notification keep poping up untill you acknwledge the policies which has been updated in the app.
What problems is the product solving and how is that benefiting you?
Its helping with company policies.
Stable, easy-to-use / learn, fast response times for audit help or app help, trust center is a plus
What do you like best about the product?
I was new leading an organization through SOC 2 start-to-finish when I got started. Drata generally does well at ensuing everything, "make sense." For the parts I required assistance, I either had my account representative I met with on a regular cadence, they could pull in the right person, or their live chat someone always responded in minutes.
What do you dislike about the product?
AI is the new "hotness". They, like all products, are adding it in. I can still get to a human quickly in live chat still but I first have to appease the AI help bot. The human part of the Drata process has been just important, if not more, than the software.
What problems is the product solving and how is that benefiting you?
Completing our SOC 2 Type I & II, NIST 800-171, CMMC
Helps me easily monitor security compliance
What do you like best about the product?
As CISO for our company, Drata helps me easily monitor our controls and compliance without needing to be across every little detail. I have also been very impressed with our CSM Ryan, he has been fantastic helping us get the most out of the product.
What do you dislike about the product?
None, Drata works well for our company's needs.
What problems is the product solving and how is that benefiting you?
Monitoring security compliance, documentation
Excellent product supported by a very professional team
What do you like best about the product?
The automated monitoring is excellent, and the number of connectors keeps growing. We had minimum issues linking Drata to our AWS and Azure resources. We have also been able to link with other types of products, like our HR management system and source control repositories.
In addition to the platform's technical capabilities, I think the best feature is that Drata honestly cares for its customers. We had a Drata staff member dedicated to our account who has been super patient and helpful during the onboarding. Then, their Live support is very quick. Their onboarding and customer support are some of the best I have come across in the software industry.
In addition to the platform's technical capabilities, I think the best feature is that Drata honestly cares for its customers. We had a Drata staff member dedicated to our account who has been super patient and helpful during the onboarding. Then, their Live support is very quick. Their onboarding and customer support are some of the best I have come across in the software industry.
What do you dislike about the product?
I wouldn't say "dislike", but its Policy Centre needs some improvements to make it more efficient and flexible. But it does what it is meant to do.
What problems is the product solving and how is that benefiting you?
We work in the health sector, and therefore we need to be compliant with HIPAA and GDPR in the markets we operate. In addition, our security needs to be tight, so the platform is helping us to be ready for SOC2 and ISO27001 certifications.
showing 171 - 180