External reviews
External reviews are not included in the AWS star rating for the product.
Drata User Experience
What do you like best about the product?
The automation and ease of use, implementation and integration
What do you dislike about the product?
Customer support can be very delayed at times depending on the issue. When organizations are tyring to meet audit deadlines it is not a good experience.
What problems is the product solving and how is that benefiting you?
It is a team of one at my organization so having things organized is setting me up for success. The automation is great although not as intuitive. I have to rely on support more than i would like to.
- Leave a Comment |
- Mark review as helpful
Review for Rachel's support
What do you like best about the product?
I like the support i get from Drata agents.
What do you dislike about the product?
connections can be improved, and sometimes policy editing is super slow.
What problems is the product solving and how is that benefiting you?
Having everything in a centralized platform really boosts effective collaboration.
Drata - Monitoring Platform
What do you like best about the product?
Proper Support on time
Easy Implementation
Easy Implementation
What do you dislike about the product?
Suggestion : can add more test cases
can improve documentation
can improve documentation
What problems is the product solving and how is that benefiting you?
Drata is integrated with our Cloud Platform. Help us to maintain Compliance
Compliance Made Easy with Drata
What do you like best about the product?
Drata's platform is incredibly user-friendly, and their customer support is top-notch. Out of our entire tech stack, only one system required manual input—everything else integrated seamlessly. Whenever we’ve had questions or needed assistance, the support team has been impressively fast and helpful. The platform gives us clear visibility into our compliance posture.
What do you dislike about the product?
This isn’t specific to Drata, but more of a general limitation across most compliance management systems. It would be great to see more AI-driven features that could automatically map and configure controls based on our environment, reducing the need for manual setup and rule-by-rule customization. The platform is strong, but as compliance becomes more complex, smarter automation would take it to the next level.
What problems is the product solving and how is that benefiting you?
Before Drata, we were managing our compliance efforts manually in spreadsheets, which was time-consuming and error-prone. Drata centralizes everything, automates evidence collection, and keeps us continuously audit-ready. As a result, we spend far less time on documentation and back-and-forth during audits, allowing us to focus more on actual security improvements and strategy.
Natural, lightweight, intuitive
What do you like best about the product?
Drata is an opinionated, lightweight, easy to understand repository for all our compliance information. It does everything we need (and more) which gives us a growth path with the tool, all-the-while aligning us with requirements and making them clear.
The automated tests are a bonus, on top of the very clear control management system.
Its integration with Slack is fast and efficient, and allows our tech team to keep an eye on control compliance and test status.
The automated tests are a bonus, on top of the very clear control management system.
Its integration with Slack is fast and efficient, and allows our tech team to keep an eye on control compliance and test status.
What do you dislike about the product?
I would wish for more native integrations with third-party vendors, since this really where such a tool shines, and more support for self-hosted versions, since we are big proponents of self-hosting.
What problems is the product solving and how is that benefiting you?
Our previous audits, carried out manually by an external consultancy, lacked a centralised, well-formed and opinionated data collection/repository, which required us (and the external consultant) to hunt for data and required a lot of back-and-forth to come to an agreement as to what is acceptable to be in-scope and not-in-scope without triggering exceptions. There was a lot less upfront clarity, and evidence could not be submitted much in advance, let alone as we go.
My Drata User Experience
What do you like best about the product?
The user interface is very easy to use. The functionality of Drata addressed many of our business needs and processes.
What do you dislike about the product?
So far, I have not encountered any downsides. I just started using the platform.
What problems is the product solving and how is that benefiting you?
The Drata tool is assisting my organization with Cybersecurity Risk Management and audit activities.
Issue Resolved Quickly
What do you like best about the product?
What I love most about Drata is its ease of use, effortless automation of compliance tasks, and user-friendly platform.
What do you dislike about the product?
While the platform is user-friendly, it could provide more guidance to help new users get started more easily
What problems is the product solving and how is that benefiting you?
Drata tackles key compliance and security challenges by automating security control tracking, offering real-time compliance updates, and reducing manual audit prep work.
Still feels newish, but works
What do you like best about the product?
I like being able to review which users have access to which apps. I like the concept behind being able to match controls for different frameworks based on the tests and connections they provide. Being able to match policy acknowledgements to users is also a plus.
What do you dislike about the product?
Their text editor for Policies is awful. Makes me feel like I have to write my own webpage. I was instructed to copy/paste policies in for easy version control, but the editor doesn't recognize table of contents blocks. It also doesn't have a tab system, so if you have to create things in columns, none of the data lines up.
They don't have Active Directory support beyond an agent that you would have to install to all systems. So if your company uses GPOs, it's difficult to get compliance data out of AD without using a third party tool.
It is difficult to see where some data is coming from once a connection is made. Most tests just say "Autopilot", which does not refer to Intune Autopilot. So if there's an issue with a connection or specific test, it's hard to fix.
Lastly, in order to get help with Drata you have to use their Chatbot system. The chatbot isn't bad per se, but the window/drawer that pops out for it, obscures half of the controls/buttons you need to use to allow access to your tenant for help and other actions for fixing issues. You have to actually close out of the window to get what an agent or the bot asks for, and then find a way to navigate back to that specific chat. A minimize button would be all it takes to fix this!
They don't have Active Directory support beyond an agent that you would have to install to all systems. So if your company uses GPOs, it's difficult to get compliance data out of AD without using a third party tool.
It is difficult to see where some data is coming from once a connection is made. Most tests just say "Autopilot", which does not refer to Intune Autopilot. So if there's an issue with a connection or specific test, it's hard to fix.
Lastly, in order to get help with Drata you have to use their Chatbot system. The chatbot isn't bad per se, but the window/drawer that pops out for it, obscures half of the controls/buttons you need to use to allow access to your tenant for help and other actions for fixing issues. You have to actually close out of the window to get what an agent or the bot asks for, and then find a way to navigate back to that specific chat. A minimize button would be all it takes to fix this!
What problems is the product solving and how is that benefiting you?
Having a single pane of glass to identify compliance issues and evidence requests makes auditing much easier.
Easy to use, powerful functionality
What do you like best about the product?
Rollout was relatively easy compared to other platforms I've used over time. Support is always responsive when issues have come up. Integrations continue to expand to include more IdPs, vulnerability management tools, etc.
What do you dislike about the product?
Policy center can be clunky to navigate especially during policy renewal time. The baked-in awareness training is a little rudimentary by modern standards but it checks the box at least which is good.
What problems is the product solving and how is that benefiting you?
Managing multiple framework controls across similar systems on a small team.
A Game-Changer for SOC 2, CCPA, and Third-Party Risk Management
What do you like best about the product?
As the Information Security & IT Director at YCharts, I'm responsible for our SOC 2 and CCPA compliance, along with managing our third-party risk. Drata has been a fantastic partner in automating and streamlining these efforts.
Drata's real-time monitoring, seamless integrations, and intuitive dashboard has made our SOC 2 compliance effortless. Drata continuously tracks our security posture, evidence, and policies.
While the Drata platform and technology is greater, the real differentiator has been our Customer Success Manager, Elizebeth. Her wealth of knowledge and expertise in SOC 2 compliance has been invaluable, wheather we need guidance on compliance updates, or details on current controls.
Drata's real-time monitoring, seamless integrations, and intuitive dashboard has made our SOC 2 compliance effortless. Drata continuously tracks our security posture, evidence, and policies.
While the Drata platform and technology is greater, the real differentiator has been our Customer Success Manager, Elizebeth. Her wealth of knowledge and expertise in SOC 2 compliance has been invaluable, wheather we need guidance on compliance updates, or details on current controls.
What do you dislike about the product?
One area I think Drata could improve is by improving and increasing it's integrations with other Security and IT tools.
What problems is the product solving and how is that benefiting you?
As YCharts grew we knew that becoming SOC 2 and or ISO 27001 compliance was essential for building our customer trust. When we started compliance journey and was in search for a solution that could provide expert guidance to help us navigate compliance, Drata was the answer.
showing 11 - 20