External reviews
1,074 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Great Features and Extraordinary Customer Support
What do you like best about the product?
I really appreciated the video tutorials – even with a strong tech background, I found them helpful in understanding various Drata functions. https://help.drata.com/en/collections/9595024-welcome-to-drata .
So the documentation is great and I really care about it.
Also, Drata taught almost everything. this is really great. For example, there is an available sercurity awareness trainings and we can just enable it. The content is rich and enough
So the documentation is great and I really care about it.
Also, Drata taught almost everything. this is really great. For example, there is an available sercurity awareness trainings and we can just enable it. The content is rich and enough
What do you dislike about the product?
as far as I understand and read, one of Drata’s main goals is to automate controls, but unfortunately, our Background Check and MDM solutions are not currently supported or listed among the available integrations. I would have expected broader vendor support. Yes, Drata offers Drata agent. this is good and we can also provide
That said, I’ve already submitted requests to enable integrations for our existing solutions.
That said, I’ve already submitted requests to enable integrations for our existing solutions.
What problems is the product solving and how is that benefiting you?
There are many requirements for passing audits, and Drata helps consolidate everything into one centralized platform. You can manage users, assign and track security training, configure automated controls, and monitor compliance—all in one place.
Without Drata, these processes become fragmented and difficult to manage.
Additionally, we benefit from free customer support, which allows us to ask questions and get timely assistance when needed.
Without Drata, these processes become fragmented and difficult to manage.
Additionally, we benefit from free customer support, which allows us to ask questions and get timely assistance when needed.
Drata has completely transformed how we manage our SOC 2 and security compliance tracking.
What do you like best about the product?
Drata has made our audits effortless by significantly reducing the time we spend gathering SOC 2 evidence for auditors. It has helped us centralize compliance documents, streamline RFP responses, and greatly simplified our Security Manager’s workload.
Additionally, Drata paid for itself within the first year by significantly lowering our SOC 2 audit expenses.
Additionally, Drata paid for itself within the first year by significantly lowering our SOC 2 audit expenses.
What do you dislike about the product?
The only thing I wish Drata had offered was the option to purchase our subscription through the AWS Marketplace.
What problems is the product solving and how is that benefiting you?
Drata eliminated the need for back-and-forth emails with our SOC 2 auditors, reduced the time they spent searching for compliance evidence, and helped us focus on key areas before each audit thanks to its excellent reporting capabilities.
Drata Review
What do you like best about the product?
viewing compliance and governance controls eaisly
What do you dislike about the product?
Endpoint agent can not be deployed easily to multiple computers without user interaction.
What problems is the product solving and how is that benefiting you?
Single pane of glass for all of our security and compliance controls.
Drata over here making my life easier :)
What do you like best about the product?
1 stop shop Dasboard showing me at an immediate glance where tests are failing. I use the portal on a daily basis.
Failing tests show exactly what you need to do to remediate.
Everything is linked very nicely to next steps. Once I learned the layout it is very intuitive.
Setup was fairly easy and integrated well into our environment.
Failing tests show exactly what you need to do to remediate.
Everything is linked very nicely to next steps. Once I learned the layout it is very intuitive.
Setup was fairly easy and integrated well into our environment.
What do you dislike about the product?
I have not found anything to dislike yet, even the support is quick and friendly.
What problems is the product solving and how is that benefiting you?
Drata quickly tells me where we are failing or falling behind in compliance. From Infrastructure to Observability to version control to patching...
Streamlined SOC 2 Compliance for Startup
What do you like best about the product?
Drata has accelerated and simplified our SOC 2 Type I & II and HIPAA compliance efforts.
Onboarding & Policy Management: Drata comes equipped with a library of ready-to-use policy templates that are aligned with major industry standards. This gave us a tremendous head start—eliminating the need to draft policies from scratch or hire external consultants. Drata also automatically maps these policies to the relevant controls across frameworks like SOC 2, ISO 27001, and HIPAA, giving us instant visibility into how our documentation supports our compliance posture.
Automation: Drata integrates seamlessly with our Microsoft 365 environment and cloud infrastructure, automatically pulling in the evidence we need. Drata continuously collects and organizes compliance artifacts behind the scenes, saving all the manual effort.
Real-Time Monitoring & Intuitive Dashboards: The dashboard is clean, intuitive, and provides actionable insights. If something falls out of compliance—like an unencrypted storage bucket or an employee missing a required security training, Drata will flag this immediately. This constant visibility allows us to stay ahead of issues and maintain a strong compliance posture year-round, rather than scrambling just before an audit.
Bottom Line: Drata has saved us weeks of manual work and allowed us to stay compliant without having to grow our compliance team. It’s been a true enabler for our security and compliance operations—and we highly recommend it to any organization looking to scale securely and efficiently.
Onboarding & Policy Management: Drata comes equipped with a library of ready-to-use policy templates that are aligned with major industry standards. This gave us a tremendous head start—eliminating the need to draft policies from scratch or hire external consultants. Drata also automatically maps these policies to the relevant controls across frameworks like SOC 2, ISO 27001, and HIPAA, giving us instant visibility into how our documentation supports our compliance posture.
Automation: Drata integrates seamlessly with our Microsoft 365 environment and cloud infrastructure, automatically pulling in the evidence we need. Drata continuously collects and organizes compliance artifacts behind the scenes, saving all the manual effort.
Real-Time Monitoring & Intuitive Dashboards: The dashboard is clean, intuitive, and provides actionable insights. If something falls out of compliance—like an unencrypted storage bucket or an employee missing a required security training, Drata will flag this immediately. This constant visibility allows us to stay ahead of issues and maintain a strong compliance posture year-round, rather than scrambling just before an audit.
Bottom Line: Drata has saved us weeks of manual work and allowed us to stay compliant without having to grow our compliance team. It’s been a true enabler for our security and compliance operations—and we highly recommend it to any organization looking to scale securely and efficiently.
What do you dislike about the product?
While our overall experience with Drata has been very positive, we did encounter a bit of back-and-forth during renewals which could have been better managed.
What problems is the product solving and how is that benefiting you?
SOC 2 and HIPAA compliance
Streamlined Compliance, Thanks to Drata’s Automation
What do you like best about the product?
Drata’s automated compliance platform. From implementation to ongoing monitoring, easy to use.
What do you dislike about the product?
No downside so far, and we hope for none.
What problems is the product solving and how is that benefiting you?
My company, Resolut Business Solutions Ltd., has significantly benefited from Drata’s automated compliance platform. From implementation to ongoing monitoring, the experience has been impressively smooth and efficient. Drata’s automation tools have helped us reduce manual overhead and confidently maintain compliance standards with minimal disruption to our operations. Thanks to Drata, we’ve been able to focus more on our core business while staying audit-ready. Seamless implementation and real value—highly recommended.
Drata has streamlined our compliance process with great support and onboarding.
What do you like best about the product?
Drata has been a valuable tool in simplifying our compliance and security processes. The onboarding experience was smooth, and their customer support has been consistently responsive and helpful.
The overall experience has been positive, and I would definitely recommend Drata to others looking to streamline their compliance efforts.
The overall experience has been positive, and I would definitely recommend Drata to others looking to streamline their compliance efforts.
What do you dislike about the product?
While most integrations work well, a few didn’t fully meet our expectations.
What problems is the product solving and how is that benefiting you?
Drata is helping me automate and manage our security compliance processes, which used to be really manual and time-consuming. It's made it much easier to stay audit-ready, track controls, and collect evidence without constantly chasing down documentation. The continuous monitoring gives me peace of mind, and it's definitely saved our team a lot of time and effort. It’s also helped us build credibility with customers by showing we take security seriously
This app is straightforward and excellent to use
What do you like best about the product?
It is a very intuitive and direct piece of software. I am enjoying filling everything out with it.
What do you dislike about the product?
It is not Drata's fault that SOC II is a pain in the butt.
What problems is the product solving and how is that benefiting you?
We need to be compliant with applicable regulations to do enterprise deals. Drata helps us get our ducks in a row and facilitates an audit.
Great support, improving fast—helps us punch above our weight on compliance
What do you like best about the product?
The customer support is top-notch—responsive, human, and genuinely helpful. They’ve also been rolling out thoughtful product updates regularly, which makes a big difference. For a small team managing SOC 2 and HIPAA, Drata gives us structure while still enabling us to move fast. The integrations (especially with Rippling and Google Workspace) save us a lot of manual work.
What do you dislike about the product?
The UI around controls and policies can be a little confusing at first—it takes a minute to figure out where things live or how to map them to your real workflows. That said, it's been getting better steadily, and the support team always helps us through.
What problems is the product solving and how is that benefiting you?
Drata helps us maintain ongoing compliance with industry standards while operating as a lean, agile team. It streamlines evidence collection, simplifies policy management, and provides clear visibility into our security posture—making it easier to stay organized and prepared as we scale.
Good for business compliance
What do you like best about the product?
Everything is automated and no need to develop policies manually
What do you dislike about the product?
Bit costly and sometimes I get confused regarding UI, there are so many navigation options
What problems is the product solving and how is that benefiting you?
Drata is helping to solve HIPAA compliance for me, saving lot of time and automating the process
showing 31 - 40