External reviews
External reviews are not included in the AWS star rating for the product.
Easy SOC2 Preparation and Monitoring
What do you like best about the product?
Great support and easy to use interface which is perfect for beginners. Drata is the easiest solution to go from zero to being ready for SOC2 for a small startup.
What do you dislike about the product?
Only SOC2 compliance for now and no support for other compliance frameworks. The security program that Drata recommends is harder to customize for existing security programs or more complex use cases.
What problems is the product solving and how is that benefiting you?
As a startup that is new to SOC2 compliance, we found the individual tests provided by Drata and explanations to address them very easy to follow and setup. Furthermore, the recommendations provided by Drata to achieve SOC2 compliance are sensible to adopt and didn't require our organization make large changes to existing procedures. Without an extensive background in security, we were able to figure out what we needed to do from the generated SOC2 policies, support resources, and automated tests. Finally, we have high confidence that we are staying in compliance over the course of the year for our SOC2 Type 2 audit since Drata is continuously evaluating our configuration every night.
- Leave a Comment |
- Mark review as helpful
Making compliance less daunting with tooling and amazing customer support
What do you like best about the product?
Really like how they're productizing compliance and security, which makes it easier for startups like ours to focus on what matters to our business.
The whole team is hands on and have been super helpful and supportive. They've even helped out with marketing collateral so we can communicate our SOC 2 compliance accurately to our customers.
I've recommended Drata often to other startups and companies in general looking to streamline compliance and security.
The whole team is hands on and have been super helpful and supportive. They've even helped out with marketing collateral so we can communicate our SOC 2 compliance accurately to our customers.
I've recommended Drata often to other startups and companies in general looking to streamline compliance and security.
What do you dislike about the product?
There's nothing I can think of here, they're doing all the right things!
What problems is the product solving and how is that benefiting you?
We wanted help:
*Automating the security control monitoring and evidence collection
*Guiding us through the SOC 2 preparation and maintenance process
We've seen a lot of time saved and we've really streamlined our processes around SOC 2. It's been super easy to onboard the whole team with minimal interruption in our day-to-day.
*Automating the security control monitoring and evidence collection
*Guiding us through the SOC 2 preparation and maintenance process
We've seen a lot of time saved and we've really streamlined our processes around SOC 2. It's been super easy to onboard the whole team with minimal interruption in our day-to-day.
Drata - the leader in SOC2 compliance
What do you like best about the product?
I had been a customer of another compliance automation platform for a couple of years. When I first heard about Drata, I was hesitant to switch, but heard great things and knew there had to be a better solution out there than what we were using. From the initial demo, I thought “Wow, this is what I’ve been looking for.” With the other platform, I’d wake up to so many failed control tests that weren’t actually real failures - the false negatives gave me fatigue and I never received much help from their support email. With Drata, the tests are so well designed that I trust when it says we have a gap and then we use their recommendations to take action and be more secure and compliant. Drata’s Customer Success team is world-class, I can see why other companies I talked to recommended them so much. If I had to quantify it, I'm noticing 85%+ automation using Drata while going through our SOC 2 journey, far more than what we’ve seen out there, and according to our auditor more than they’ve seen anywhere else. Drata really went deep with their native integrations, which made me realize not all integrations are equal.
What do you dislike about the product?
Really nothing as it has been a rock solid experience on all fronts.
What problems is the product solving and how is that benefiting you?
solving our SOC2 compliance issues. Drata has saved us significantly more time to stay compliant than other software we've used in the past
Recommendations to others considering the product:
If you are looking to get SOC2 compliant, I highly recommend checking out Drata
No headache solution to SOC2 compliance
What do you like best about the product?
I can't sum up what I like best to just one thing. I have to mention two.
1) I love the ease of use that Drata offers. Their interface puts all the information you in one place with actionable items to fix issues
2) The team is great at helping when you need. Even before you need it :) They're always willing to help. And they do so quickly (Usually within minutes)
1) I love the ease of use that Drata offers. Their interface puts all the information you in one place with actionable items to fix issues
2) The team is great at helping when you need. Even before you need it :) They're always willing to help. And they do so quickly (Usually within minutes)
What do you dislike about the product?
I can't think of anything I dislike specific to Drata. My dislikes are about SOC2 and how much of a headache it can be. But now I can say, "I have people for that"
What problems is the product solving and how is that benefiting you?
Becoming compliant to be able to partner with companies without dedicating a ton of dev time each month to keep up compliancy.
Great SOC 2 readiness experience with best-in-class customer service
What do you like best about the product?
I’m a Drata customer and have prepped for SOC 2 Type 2 with other readiness platforms in the past.
Drata is more automated than its competitors with a much more intuitive UX. They've really thought through what it means to meaningfully advise on security for their customers, rather than simply prepare for audits or adhere to compliance frameworks. With Drata I feel like I have a trusted partner to help me navigate security and compliance.
They also have best-in-class customer success, including access to an auditor to ensure you're doing everything you can to prepare for a successful audit. 10/10 recommend!
Drata is more automated than its competitors with a much more intuitive UX. They've really thought through what it means to meaningfully advise on security for their customers, rather than simply prepare for audits or adhere to compliance frameworks. With Drata I feel like I have a trusted partner to help me navigate security and compliance.
They also have best-in-class customer success, including access to an auditor to ensure you're doing everything you can to prepare for a successful audit. 10/10 recommend!
What do you dislike about the product?
Nothing, honestly working with them is a pleasure - which is the first time I've ever used the word "pleasure" to describe anything compliance-related.
What problems is the product solving and how is that benefiting you?
We are using Drata for SOC 2 Type 2 audit readiness. Drata has helped us prepare for an audit quickly, find an auditor, and develop policies internally that strengthen our overall security posture.
Recommendations to others considering the product:
If you're thinking about using a compliance readiness platform, don't discount the importance of customer success and trusted partnership. Drata really cares about their customers' business outcomes.
Gamechanger for security compliance
What do you like best about the product?
- Value from Day 1
- Helps create a plan and path for SOC 2 compliance
- Many tests are super-easy to set up and continue to run
- Hub for an overview of security protocols (that we can even share with prospect and customers)
- Helps create a plan and path for SOC 2 compliance
- Many tests are super-easy to set up and continue to run
- Hub for an overview of security protocols (that we can even share with prospect and customers)
What do you dislike about the product?
- Tests are still being built so not full coverage of SOC 2 audits yet (but will be soon I believe)
What problems is the product solving and how is that benefiting you?
- Getting started sooner than expected with SOC 2 audit
- Better visibility and transparency (even internally) around our compliance requirements and status
- Credibility when engaging prospects around our security protocols and practices
- Better visibility and transparency (even internally) around our compliance requirements and status
- Credibility when engaging prospects around our security protocols and practices
showing 831 - 836