External reviews
1,130 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Easy to use, powerful functionality
What do you like best about the product?
Rollout was relatively easy compared to other platforms I've used over time. Support is always responsive when issues have come up. Integrations continue to expand to include more IdPs, vulnerability management tools, etc.
What do you dislike about the product?
Policy center can be clunky to navigate especially during policy renewal time. The baked-in awareness training is a little rudimentary by modern standards but it checks the box at least which is good.
What problems is the product solving and how is that benefiting you?
Managing multiple framework controls across similar systems on a small team.
Great Features but Mediocre UX
What do you like best about the product?
Drata has a big range of features and covers a lot of usecases for us. Also, the integrations that exist are relatively easy to integrate.
What do you dislike about the product?
There are two downsides to Drata, in my opinion:
1) User Experience
The UX of the product is okay, but it's not great. There are multiple smaller paper-cuts: The UI is overall a bit slow, frequently presenting loading spinners. Controls/Monitors have individual URLs, but unfortunately when shared they get removed. I.e. even if I send a colleague a link to a specific /control/123 they will get redirected to all controls instead of the specific one.
2) Integration Limitations
The default integrations that come with Drata are a bit limited, e.g. we still haven't been able to connect a vulnerability scanner into Drata, as it comes with 14 different options by default and we use none of them. That's always an issue with these integration platforms, but it's not clear to us yet how we could build a manual API integration for this feature.
1) User Experience
The UX of the product is okay, but it's not great. There are multiple smaller paper-cuts: The UI is overall a bit slow, frequently presenting loading spinners. Controls/Monitors have individual URLs, but unfortunately when shared they get removed. I.e. even if I send a colleague a link to a specific /control/123 they will get redirected to all controls instead of the specific one.
2) Integration Limitations
The default integrations that come with Drata are a bit limited, e.g. we still haven't been able to connect a vulnerability scanner into Drata, as it comes with 14 different options by default and we use none of them. That's always an issue with these integration platforms, but it's not clear to us yet how we could build a manual API integration for this feature.
What problems is the product solving and how is that benefiting you?
Drata helps us track our compliance against a wide range of controls. We are using Drata's automation features to reduce the burden on our employees.
Drata for SOC2
What do you like best about the product?
Great support team who does a great job answering questions about Drata product and compliance-related controls.
Product is easy to use.
Product is easy to use.
What do you dislike about the product?
Missing the feature to acknowledge company policies annually for every personnel. As an alternative, I have to create new policy versions every year and ask everyone to acknowledge the new versions, even if they just acknowledge the old version recently.
It will also be great to have a compliance owner rotation feature instead of just specifying a single owner for each control. Then every week there could be a separate person to receive notifications of compliance tasks.
It will also be great to have a compliance owner rotation feature instead of just specifying a single owner for each control. Then every week there could be a separate person to receive notifications of compliance tasks.
What problems is the product solving and how is that benefiting you?
SOC2 controls and auditing
HIPPA and GDPR controls
HIPPA and GDPR controls
Takes a little time to have a real person assigned but once they are they're quite responsive
What do you like best about the product?
If all relevant info is linked to a control Drata can easily tell you if you're compliant
What do you dislike about the product?
That controls are split out to Drata's DCF controls - these didn't map well our audit schedule and meant increased work to get through an internal audit
What problems is the product solving and how is that benefiting you?
One place of truth for internal audits
The tool makes compliance much easier!
What do you like best about the product?
The chat support takes a bit to get used to - most engineers are quick to want to chat with someone live or read docs.... however, having a human on the other end making a quick turnaround with more nuanced support really helps. The AI chatbot helps as well.
What do you dislike about the product?
Some of the checks aren't always straight forward to determine why something failed and how to fix it. Sometimes/many times this is because of different implementations for the check details and/or exclusions.
What problems is the product solving and how is that benefiting you?
It's providing a way for us to see our estate and status and health - and (working towards) making it so that we can keep this running with minimal effort AND provide critical data to auditors and customers (as needed).
Drata support - quick and efficient
What do you like best about the product?
It makes vendor risk assessments easy from start to finish. Can't wait to see what else it can do.
What do you dislike about the product?
I have not run into any dislikes as of yet.
What problems is the product solving and how is that benefiting you?
Ensuring that our vendor risk assessments get completed and on a review schedule.
Drata review
What do you like best about the product?
Great tool, intuitive to use, works perfectly as expected, integrations are easily configured
What do you dislike about the product?
Drata control framework has a learning curve to it
What problems is the product solving and how is that benefiting you?
GRC overhead, time spent during risk assessments, consolidated risk management, heavy automation & single pane of glass for compliance.
The new updates have been bit rickety but otherwise experience with Drata is good
What do you like best about the product?
Ease of use is the best part about drata
What do you dislike about the product?
At times the customer service has been bit slow but not to the point of concern in my view
What problems is the product solving and how is that benefiting you?
We are using drata to support SOC 2 certification
I was locked out of the system. Dante had me back in business very quickly.
What do you like best about the product?
It allows us to see our current status at a glance
What do you dislike about the product?
I didn't find it intuitive to use at first
What problems is the product solving and how is that benefiting you?
We are seeking our SOC2 certification.
Reliable and Safe
What do you like best about the product?
I apprecaite that everything is consolidated into one place. It makes it easy for our security team to keep everyone in compliance. Easy to enroll new employees in and upkeep.
What do you dislike about the product?
I haven't run into any major issues thus far. Although the audit process seems intense, the extra guidance has been helpful.
What problems is the product solving and how is that benefiting you?
Primarily Drata has streamlined all policies related to security and compliance.
showing 51 - 60