External reviews
1,098 reviews
from
and
External reviews are not included in the AWS star rating for the product.
The best compliance tool
What do you like best about the product?
You can see and manage the whole picture about all GRC issues. You can easily manage all the requirements and control deficiencies in your IT environment.
What do you dislike about the product?
Honestly to say, nothing much to dislike about Drata.
What problems is the product solving and how is that benefiting you?
Drata enables us to see the whole picture about all of our IT environment. We can mitigate risks resulting from vulnerabilities and threats in our IT ecosystem. We can also use frameworks and we are able to see our compliance to relevant frameworks.
Drata is working great for VITALITY
What do you like best about the product?
Their already built policies were fantastic. They make my life easier to understand and fill out.
What do you dislike about the product?
They don't have every policy or standard that we need.
What problems is the product solving and how is that benefiting you?
We are going for SOC2 and ISO27001 Compliance. We are looking at using the custom templates for FedRamp
EVP of Risk & Compliance
What do you like best about the product?
Awesome Team behind Chat, Tracking of Employees for status and Templates for various Policies.
What do you dislike about the product?
Ease of seeing the Controls Criteria matching up against our policies, evidence or monitoring tools.
What problems is the product solving and how is that benefiting you?
Much easier to provide the Auditors required evidence via the Drata SaaS app.
Great, easy, painless experience
What do you like best about the product?
Ease of use. Without a doubt, we had no issues in following through the platform and getting out systems onboarded quickly.
What do you dislike about the product?
I think that some of the pricing and negotiation was a little confusing, but our process was rushed.
What problems is the product solving and how is that benefiting you?
They helped us achieve our certifications.
Drata is a great platform for third-party compliance management
What do you like best about the product?
Drata gives real-time compliance metrics for maintaining a proper posture for SOC 2 and ISO27001 reporting.
What do you dislike about the product?
Drata is working to improve its functionality whenever any errors or limitations are identified.
What problems is the product solving and how is that benefiting you?
Maintaining transparency for any deficiencies that need to be remediated for SOC 2 and ISO27001 compliance.
Great tool and a great team to fast-track your compliance
What do you like best about the product?
The Drata tool is intuitive and easy to use, and packed with all of the controls you need for SOC2 or ISO27001 out of the box including template policies and control mappings. Their Customer Success team (Elise specifically) does a great job at understanding your goals and time frames and helping your team execute.
What do you dislike about the product?
We came from another compliance platform which I won't mention, but Drata is reasonably full-fledged with a jam packed roadmpa - their vulnerability management could be improved if you're using something like AWS Inspector which doesn't provide a robust capability.
What problems is the product solving and how is that benefiting you?
Drata is helping us to automate and organize our companies Compliance efforts, it has helped us achieve and maintain SOC2 Type II and we're on our way to ISO27001 certification shortly
Very good price and product
What do you like best about the product?
I think they do a great job on the automation of most controls and the tracking of seeing if people is in compliance. They also have the tracking and vendor section that is very helpful
What do you dislike about the product?
I think I would like more things automated, specially some reports like the Statement of Applicability or get more option when working on the vendor section, still pretty manual work, but easy to have one source of truth
What problems is the product solving and how is that benefiting you?
Automating most of the compliance process, but it is tricky with some of the cloud compliance since not all of the automations work so some work still had to be done manually. But the other ones, specially the team in compliance works and is extremely helpful
Drata is big enough to handle our compliance requirements, and small enough to care.
What do you like best about the product?
Highly responsive customer service and support team. Drata is big enough to cover a broad section of compliance requirements and small enough to understand our novel use cases and find ways for us to customise their product for our needs.
What do you dislike about the product?
We'd love to see better handling for multi-product companies (such as ours) with varying compliance requirements in different business units. It would also be great if Drata offered a broader range of expertise in some of the more obscure regulatory standards.
We've been pleased with how the Drata team responded to this feedback, ensuring they make feature requests visible in their roadmap and keeping us in the loop for new features that may be useful to us.
We've been pleased with how the Drata team responded to this feedback, ensuring they make feature requests visible in their roadmap and keeping us in the loop for new features that may be useful to us.
What problems is the product solving and how is that benefiting you?
We initially looked at Drata for ISO 27001 compliance, but have also found a number of practical uses in monitoring and user management. We'll plan to look at Drata's custom compliance frameworks to centralise all our compliance resources.
Comprehensive security audit platform is a force multiplier
What do you like best about the product?
Drata makes it easy to know what is necessary for your audit, continuously monitor it, as well as make it easy to understand the non-monitored controls. It also makes policy creation and management easy.
What do you dislike about the product?
Learning the interface takes some time. There are unmonitored controls that could be monitored. Their notifications are missing some key features and not very robust or configurable.
What problems is the product solving and how is that benefiting you?
Drata gives us a single pane of glass and metric for knowing our audit readiness. It provides a platform for consolidation of security audit monitoring across multiple vendors.
Excellent Platform!
What do you like best about the product?
User Interface, ability to integrate with the tech stack and service
What do you dislike about the product?
Nothing major, some UI enhancement when tracking the progress
What problems is the product solving and how is that benefiting you?
Taking on SOC2 certification is not an easy task, Drata made it easy for us to pursue this certification with their platform and service. SOC compliance will help us to grow our business
showing 231 - 240