External reviews
1,085 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Drata Review
What do you like best about the product?
Drata is a good platform that is helpful for getting ISO compliant. My account rep, Laci, is awesome to work with!
What do you dislike about the product?
I would love to see some additional connections added to their platform to further automate testing for ISO.
What problems is the product solving and how is that benefiting you?
Identifying control requirements and gaps for ISO
Great product and great support
What do you like best about the product?
Easiness of the tool and support from Drata
What do you dislike about the product?
The connectors to the technical systems do not always work as promised
What problems is the product solving and how is that benefiting you?
Drata speeds up the ISO data collection and supports me in selecting the right vendors to support us to get the ISO certification
The best to do it!
What do you like best about the product?
Drata has made it simple to monitor most of our compliance needs in one place. The work is no longer just on me because I can set controls to owners and let them be in charge of that task. Compliance made easy.
What do you dislike about the product?
So far, so good. Drata has really helped us that I don't have negative things to say about the company or the team at Drata.
What problems is the product solving and how is that benefiting you?
Continuous monitoring and has helped us prioritize what needs to be done our compliance journey
Quarterly review of Morgan Hickey
What do you like best about the product?
We do use the policies which makes the ISO, SOC, and HIPAA more friendly. Morgan Hickey helps us a lot during the process with every documentation needed for audits and for clients as well
What do you dislike about the product?
I would say that the only part that bother us will be the pricing. We reached out to add ISO27701, but the pricing compared to other products out there was triple, which made us use another service.
What problems is the product solving and how is that benefiting you?
Communication and trust with clients, as well as creating templates for necessary documentation that would have taken precious time from the core team to prepare otherwise.
So far, so great!
What do you like best about the product?
Drata is very forward thinking and tech-savvy I like that the company is constantly integrating with different platforms to ensure the tool is keeping in line with customers's needs.
What do you dislike about the product?
There is a bit of a learning curve and some of the integrations take more manual work than I would like. I know with time the integrations will streamline but right now that would be my main complaint.
What problems is the product solving and how is that benefiting you?
Drata is helping to streamline the SOC II process for us. As a very small team with compliance being pushed to the forefront, the use of Drata is very helpful in achieving our company's goals.
Fantastic Framework for Automating HIPAA and GDPR Compliance
What do you like best about the product?
I like how the Drata application will continuously check for compliance issues with cloud services. I also like the policy and personnel systems for tracking end-user compliance.
What do you dislike about the product?
For me, it is getting through the audit. I spent hours working on policies and compliance. I think the tool could help more with project management and goal setting.
What problems is the product solving and how is that benefiting you?
It is helping guide me along the way to achieve GDPR, NIST and HIPAA Compliance.
Saved a ton of time and effort
What do you like best about the product?
- pre constructed policy templates saved us countless hours
- dedicated customer success manager is extremely helpful
- integrations are very helpful
- built-in training, Drata agent help speed things up
We progressed through the process much faster than when we used a consultancy.
- dedicated customer success manager is extremely helpful
- integrations are very helpful
- built-in training, Drata agent help speed things up
We progressed through the process much faster than when we used a consultancy.
What do you dislike about the product?
We had a couple of challenges with some of the integrations, but Dratas has always been on top of things quickly or prepared with a workaround. Dark mode would be nice to have.
What problems is the product solving and how is that benefiting you?
Guiding us though SOC 2 adoption by helping to complete policies with their templates and providing tooling to provide evidence of compliance. Drata saved us a lot of time compared to the consultancy we previously tried to use.
Easy to use Tool, with Great Service behind it.
What do you like best about the product?
There are two specific things I have enjoyed the most with DRATA, the first being the plethora of monitoring capabilities to keep multiple departments in compliance for easy re-auditing. The second is the excellent customer service that sits behind the platform both on individual technical issues that arise and the support you get for specific compliance questions.
My representative Laci White has been extremely helpful in finding solutions to all issues that have arisen and has been a great guide through the whole SOC2 process.
My representative Laci White has been extremely helpful in finding solutions to all issues that have arisen and has been a great guide through the whole SOC2 process.
What do you dislike about the product?
I don't know if we disliked anything specifically, but it would be helpful to add an integration option for none cloud version control applications like GitHub or GitLab community. The Vendor Management could stand to use an upgrade, so there are preconfigured companies and their risk assessments pre-loaded. Still, neither issue is close enough to stop us from recommending this platform above all others in the same field.
What problems is the product solving and how is that benefiting you?
DRATA is walking us through the SOC2 certification currently, and in the near future ISO 27001. With this tool, I have been able to provide Departments with specific conditions in which they are required to operate and have created a nice streamlined path for the company to understand security.
Drata is streamlining our SOC2 adoptation
What do you like best about the product?
I like that Drata comes with a workstation agent, giving autonomy and responsibility to every employee, cementing security into the organization because people are confronted with the matter every week. It helps me in raising security awareness without impeding anyone. Working with Gabe has been great so far; responsive, fast and has adequate follow-ups, cutting straight to the point.
What do you dislike about the product?
After the onboarding, we encountered a couple of issues requiring additional integration access. In and by itself, that's fine, but some fine-tuning in the onboarding would be desired for future customers. The Risk Assessment was not that; it was more like a control assessment, and the former has since been introduced as s a paid-for add-on.
What problems is the product solving and how is that benefiting you?
We are going for a SOC2 Type 2 audit for our SaaS platform and software development. We are using Drata to understand what we need to get done before kicking off the audit process. Our software product allows our customers to connect systems and transport data that they may consider sensitive. In addition, many customers have asked us for our security procedures and certifications. Although already having a certified ISO27001 ISMS, SOC2 seemed required to continue growing our business. On top of that, it is a great setup to centralize our (chain of) evidence instead of having this spread out all over our "document storage method", even more so because Drata takes away much of the redundancy between ISO27001 and SOC2 (one piece of evidence can be used for both frameworks).
Strong Customer support from Drata
What do you like best about the product?
The support team is always there to help, provide training and make sure integration with your systems and cloud tech is synced for SOC2 compliance.
What do you dislike about the product?
The policy updating structure could be more flexible.
What problems is the product solving and how is that benefiting you?
To prepare our organization to be SOC2 compliance and get approved with integration with our cloud and auditors.
showing 251 - 260