External reviews
External reviews are not included in the AWS star rating for the product.
Compliance Guidance Made Easy
What do you like best about the product?
Breaks down the monumental task of SOC 2 compliance into smaller, easily understood pieces. And for what you don't understand, there's a great CS team and a large amount of literature from Drata that explains things for you. Having monitoring support for popular 3rd party applications also makes implementation a breaze across your many platforms.
What do you dislike about the product?
Lack of audit trails in certain parts of the platform. An example being the Risk Assessment hub.
What problems is the product solving and how is that benefiting you?
Monitoring and preparation for a SOC 2 audit.
- Leave a Comment |
- Mark review as helpful
Excellence: Your Comprehensive Partner in SOC 2 Compliance
What do you like best about the product?
Our Customer Success Manager, Craig M. lives up to his title.
He is focused on our success and guides us with every step ensuring we are following best practices, staying focused on the proper elements at the right time, and continually informs us if any changes need to be made along the way.
Drata is a well thought out platform and easy to use. The integrations with other platforms has been well documented makeing the setup flawless.
When I've had questions I've reached out to their support team and without fail they quickly assist and get me exactly what is needed to keep me progressing forward.
I use the platform on a daily basis and truly makes going through this process much better.
He is focused on our success and guides us with every step ensuring we are following best practices, staying focused on the proper elements at the right time, and continually informs us if any changes need to be made along the way.
Drata is a well thought out platform and easy to use. The integrations with other platforms has been well documented makeing the setup flawless.
When I've had questions I've reached out to their support team and without fail they quickly assist and get me exactly what is needed to keep me progressing forward.
I use the platform on a daily basis and truly makes going through this process much better.
What do you dislike about the product?
I've been using the Drata platform for several months and have yet to have find anything that has been a pain point.
What problems is the product solving and how is that benefiting you?
Drata is helping to identify areas we need to address to meet security compliance.
Drata for ISO 27001:2022
What do you like best about the product?
With Drata I was able to update our ISO 27001:2013 to 2022 in just a few months. The policy templates and the ability to import existing policies made this very efficient.
What do you dislike about the product?
Drata is still a new service. They have developed compliance automation and automated data ingestion for a large number of SaaS providers, but still have a long liist of providers to integrate.
What problems is the product solving and how is that benefiting you?
For SaaS native companies certified under ISO 27001 ad SOC2, Drata saves hundreds of hours preparing the Information Management systems. Creation and Editing of Policies are facilitated by the template documents provided. The service provides expert help from systems and compliance experts. Our success manager was exceptional. Elizabeth kept the goals for configuration organized for us like a project manager, she showed us tips and tricks withh the expertise of a systems admin, her recomendations and advice helped us to achive an ISO audit with No Major and No Minor findings meeting the new 2022 standard. The integration with our Auditors (A-Line) allowed Drata to host the audit and for the Auditors to use the Drata tools. This was a great time and cost savings.
Risk management, Vendor management, Asset management and Tust center services that allow us to share our public facing compliance documents with current and potential customers, are all integrated into Drata.
Our Mac fleet is monitored for compliance continuously. Configuration and patching tests run daily. Policy attestations are requested directly to the users when channges are made. Users know about the changes when they are completed and can read and attest directly from the service.
Risk management, Vendor management, Asset management and Tust center services that allow us to share our public facing compliance documents with current and potential customers, are all integrated into Drata.
Our Mac fleet is monitored for compliance continuously. Configuration and patching tests run daily. Policy attestations are requested directly to the users when channges are made. Users know about the changes when they are completed and can read and attest directly from the service.
Vastly different experience!
What do you like best about the product?
Everything works as expected, and the team delivers.
What do you dislike about the product?
I can't think of anything negative to say.
What problems is the product solving and how is that benefiting you?
Drata effectively handles everything we need to run our compliance efforts, it also effectively shines a light on those areas of security that need more attention. Most importantly, our team finds it helpful and we can rely on it working as expected. We also have stellar support from the team to ensure we have all the bits and pieces we need to make our auditor happy.
Amazing Support and Relationship Management
What do you like best about the product?
Comprehensive: Risk register, vendor management, compliance frameworks, stellar support bot and human support, excellent customer success manager (Mike Mechling).
As we onboarded the team from drata were not just saying that they were committed to us, they were actually committed and made sure we onboarded with significant ease.
As we work with our audit team for SOC and ISO, we did encounter a few elements on the controls to help indicate if something or was not complete.vThese were UX elements and our customer success manager spent the time to document and ingrst that feedback.
We also integrated to our various systems for HR, IT and other systems without much difficulty.
As we onboarded the team from drata were not just saying that they were committed to us, they were actually committed and made sure we onboarded with significant ease.
As we work with our audit team for SOC and ISO, we did encounter a few elements on the controls to help indicate if something or was not complete.vThese were UX elements and our customer success manager spent the time to document and ingrst that feedback.
We also integrated to our various systems for HR, IT and other systems without much difficulty.
What do you dislike about the product?
Its a really good GRC platform. There is nothing to highlight as truly deficient.
What problems is the product solving and how is that benefiting you?
compliance management and reporting
Cashrewards feedback on DRATA and the support we receive
What do you like best about the product?
As a compliance automation platform it is a feature-rich business tool that provides a way to automate a variety of manual checkpoints. We are an ISO 27001 organisation and the ability to set up an environment that closely mirrors what we need is fantastic.
From a support persepctive Greta Wagner has exhibited an unshakable ability to suppoort and help us drive our use of DRATA by ensuring our requirements are being met for various areas of specific functionality. We have been able to get uplifted functionality for the rsik register and risk measurement process introducing both Inherent and Residual risk scoring and tracking, risk obver time and being able to allocate Risks by deparnent/function versus framework specific risk arrays.
Vendor management: while DATA is not a CLM platform it does have many aspects of a CLM solution. Vendor security questionnaires functionality was uplifted to suit our needs.
Open for suggestion and work with you to deliver. Listening, followup, and delivery. Vital to our success.
From a support persepctive Greta Wagner has exhibited an unshakable ability to suppoort and help us drive our use of DRATA by ensuring our requirements are being met for various areas of specific functionality. We have been able to get uplifted functionality for the rsik register and risk measurement process introducing both Inherent and Residual risk scoring and tracking, risk obver time and being able to allocate Risks by deparnent/function versus framework specific risk arrays.
Vendor management: while DATA is not a CLM platform it does have many aspects of a CLM solution. Vendor security questionnaires functionality was uplifted to suit our needs.
Open for suggestion and work with you to deliver. Listening, followup, and delivery. Vital to our success.
What do you dislike about the product?
Dislike is too strong: I would love to see DRATA expand and establish a footprint in Australia. From here you could then focus on our surrounding countries such as New Zealand and Asia, (Malaysia, Indonesia, Thailand, Singapore, Philippines, etc).
Australia is a mature market and would be an ideal place to set up an AP presence.
Australia is a mature market and would be an ideal place to set up an AP presence.
What problems is the product solving and how is that benefiting you?
Currently we are working to get the platform fully implemented. Once complete we can start better understanding the inherent benefits.
Great product, and even greater customer support
What do you like best about the product?
Drata has helped streamline audits, keep us compliant through out the year by monitoring key controls, which saves me time from performing a number of internal audits so I can focus on other projects.
What do you dislike about the product?
I wish Drata had the ability to integrate with JIRA or other ticketing systems.
What problems is the product solving and how is that benefiting you?
Continous control monitoring helps ensure that we are meeting our compliance obligations on an ongoing basis.
Great product with great support
What do you like best about the product?
We are new to compliance documentation and this product makes the project seemless, keeping everything in one place. The ease of use and customer support allowed us to implement quickly and efficiently. Our implementation specialist is always available and very knowledgable.
What do you dislike about the product?
i am currently still learning everything about the product, but one thing i dislike is that some features are additional costs
What problems is the product solving and how is that benefiting you?
We have to provide our customers with documentation of compliance requirements. This product keeps all our documentation and evidence in one place as well as giving us a quick glance at any non-conformaties we need to fix. Drata allows us to keep up with our daily tasks as it provides our customers access so we dont have to take time to answer surveys and provide information to satisfy each client individually.
Streamlining compliance & dynamic support
What do you like best about the product?
Quick customer support, both practical and content-wise.
Policy templates as guidance.
I like the new risk assesment features as well.
Linked controll mapping.
Automated evidence gathering, eg. though Drata agent.
All these feastures help us streamline our compliance, log our progress, involve our teammembers, keep everything organised.
Policy templates as guidance.
I like the new risk assesment features as well.
Linked controll mapping.
Automated evidence gathering, eg. though Drata agent.
All these feastures help us streamline our compliance, log our progress, involve our teammembers, keep everything organised.
What do you dislike about the product?
It obviously takes a learning curve to get intpo the depths of compliance, but Drata relieves that as much as possible.
What problems is the product solving and how is that benefiting you?
Generating trust in our cloud and security complaince towards customers
Superb AI and OnLine Customer Support & Service
What do you like best about the product?
Drata makes the process of preparing for the Compliance Certifications straight-forward. The template process is excellent and allows us to easily customize the tempates to our specific business environment. The best part about Drata is the Customer Service which is on-line and always accessible no matter what time of day I'm working. They have 3 components: 1) A.I. Support, which I'd say meets my needs 60% of the time; 2) Product Support (how to use the software); and Compliance Support (how to understand the details / nuances of compliance). Both are highly accessible and I never wait more than 5 minutes for a response from a Human. Product Support is excellent, while I've come to rely on the Compliance Support greatly. Again, always contact via text with a Human and their service is excellent always guiding your compliance questions in the right direction and don't give up until they know you've understood completely, by offering examples and recommendations often.
What do you dislike about the product?
So far, I cannot give any negatives that I've run into. In my opinion, if the support and service is there when I need it, and my answers are getting adequate replies, I am quite happy with the Drata Product & Services.
What problems is the product solving and how is that benefiting you?
Providing us a templated approach to how we organize to gain SOC-2 Type-2 Compliance. Utilizing the tool and support structure Drata Supplies is greatly helpful.
showing 1 - 10