External reviews
External reviews are not included in the AWS star rating for the product.
Great service
What do you like best about the product?
Our service representative has been so patient and informative during the process of setup.
What do you dislike about the product?
The process is complicated, but I don't believe that's a Drata issue. It's just the world of cybersecurity and compliance. I feel like Drata has the tools required.
What problems is the product solving and how is that benefiting you?
Organizing our policies and controls.
- Leave a Comment |
- Mark review as helpful
Compliance automation made easy.
What do you like best about the product?
The implementation service offered was great. 30 days handheld through the process with experienced users. Support is always fast and incredibly helpful. SSO worked really well and it integrated with the majority of our tech stack. Most of my team are able to navigate their way around it easily. For me, its easy to use and has become an unconscious standard practice to use it every day.
What do you dislike about the product?
Quite a bit of the products newer useful features don't support our versioning control i.e. 'compliance as code' and gitlab.
A lot of newer features released, i.e., risk management and trust centre pro are rather costly addons and during the procurement process, we weren't made aware of this.
A lot of newer features released, i.e., risk management and trust centre pro are rather costly addons and during the procurement process, we weren't made aware of this.
What problems is the product solving and how is that benefiting you?
Evidence gathering is largely automated with helpful reminders for the less automated bits. It is a single pain of glass for our various standards and their controls.
great support
What do you like best about the product?
Drata is highly regarded for its compliance automation, seamless integrations, and user-friendly interface. It streamlines processes by automating evidence collection, monitoring controls continuously, and integrating with popular tools, making compliance management more efficient and transparent.
What do you dislike about the product?
too many controls without careful configuration.
What problems is the product solving and how is that benefiting you?
accompanying us through the certification process
A great product and exceptional support to boot
What do you like best about the product?
Drata is a true time saver. We have a small team, so becoming compliant with any framework seemed a daunting task, but Drata's automated tests, policy templates, and system integrations made it incredibly fast and easy to not only organize evidence for an audit but ramp up the maturity of our security program. You can't review the platform without mentioning the exceptional customer support that comes with it. The support we've received from their team (especially Craig) has been nothing but professional and attentive. They not only want us to use the platform at its full potential, but they are a close partner in helping us plan for and achieve compliance with our desired frameworks.
What do you dislike about the product?
While Drata has satisfied all of our needs for reaching compliance, I believe some of their features (like risk assessment) should be more widely accessible perhaps in an open-source format since compliance and security is something that is important for all organizations, not just the ones who can pay for it.
What problems is the product solving and how is that benefiting you?
We have a lot of resources but not an easy way to map their configurations to frameworks. We solved this by integrating our AWS environment so Drata's automated tests tell us immediately if something is not compliant.
We don't have an easy way to do vendor inventory or risk management. We solved this by using these features in Drata and now have a central place to not only track vendors/risk, but assign tasks to executives/employees who need to review them.
We needed a central repository to draft and update policies and have employees acknowledge them. We used Drata's templates to create policies and use it to push them out to employees for acknowledgement.
We don't have an easy way to do vendor inventory or risk management. We solved this by using these features in Drata and now have a central place to not only track vendors/risk, but assign tasks to executives/employees who need to review them.
We needed a central repository to draft and update policies and have employees acknowledge them. We used Drata's templates to create policies and use it to push them out to employees for acknowledgement.
Great for companies negotiating the hazards of SOC 2
What do you like best about the product?
Their tooling is very good and easy to understand. It's also very flexible for not just SOC 2 but also to be able to set a specific set of SOC 2 policies desired, so it's not just one size fits all.
What I really like is the trust portal one can create -- this has been a game changer for me as the defacto CISO having to answer and endless stream of security questionairres. I now point them to our trust portal and viola!
We also had great customer support throughout our experience with knowledgable people helping when needed.
We also liked how easy it is to integrate some of our 3rd party evidence providers right into the platform! Easy!
Finally -- the support staff is very good and quick and knowledable! They are a pleasure to deal with if one happens to need help.
What I really like is the trust portal one can create -- this has been a game changer for me as the defacto CISO having to answer and endless stream of security questionairres. I now point them to our trust portal and viola!
We also had great customer support throughout our experience with knowledgable people helping when needed.
We also liked how easy it is to integrate some of our 3rd party evidence providers right into the platform! Easy!
Finally -- the support staff is very good and quick and knowledable! They are a pleasure to deal with if one happens to need help.
What do you dislike about the product?
If one isn't used to SOC 2 (or other types of similar certifications / requirements) its a bit of a learning curve finding which area in the software to navigate to to perform a task, but its not too bad once you get the hang of it.
What problems is the product solving and how is that benefiting you?
It maintains one location for all our SOC 2 complince information and an easy place to update / maintain policies and evidence so that the auditors have an easy time at audit time.
Support from Drata
What do you like best about the product?
Straightforward communications with their support team.
What do you dislike about the product?
Haven't experienced any yet. I've just started using the system, but so far it is easy to use.
What problems is the product solving and how is that benefiting you?
Becoming SOC2 compliant
No question left unanswered - Very Helpful!
What do you like best about the product?
Ease of use
Friendly and prompt customer support
Dealing with real people not endless recordings
Tie ins to frameworks and best practices
Friendly and prompt customer support
Dealing with real people not endless recordings
Tie ins to frameworks and best practices
What do you dislike about the product?
Nothing material
This box will not let me continue without adding these characters :)
This box will not let me continue without adding these characters :)
What problems is the product solving and how is that benefiting you?
Automation of required control execution and evidence which ensures compliance with all applicable frameworks in our industry.
Drata: Exceptional Support
What do you like best about the product?
The Drata team provides excellent support during the onboarding process and beyond.
What do you dislike about the product?
I have had a positive experience with Drata. In its current form, I have nothing to complain about.
What problems is the product solving and how is that benefiting you?
Drata provides automated discovery, monitoring, and management of the framework compliance process. This frees us from the majority of the manual evidence acquisition tasks we have had in the past.
Fast support
What do you like best about the product?
Fast support: we raised a request for help and were answered with a solution within the day.
What do you dislike about the product?
Page load and login speeds could be improved.
What problems is the product solving and how is that benefiting you?
ISO and SOC2 compliance.
Pretty good platform with a few kinks and problems
What do you like best about the product?
A lot of automated checks. Many draft policies. Access to former auditors
What do you dislike about the product?
They often push you to do more than what is minimumly required to complete the compliance which leads to a lot more time to get to completion. The automation they have is brittle in some areas making it show false negatives in some areas or hard to implement in some ways.
What problems is the product solving and how is that benefiting you?
Certification in SOC 2 and HIPAA
showing 201 - 210