External reviews
1,074 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Simple and effective for people new to compliance
What do you like best about the product?
Drata presents all the tasks and requirements you need to do for your chosen compliance framework in a very clear way, with detailed descriptions to help you understand what the auditor will need from you. The support and advice from the team has also been high quality and responsive. The integrations also automate a huge amount of the evidence collection and monitoring.
What do you dislike about the product?
As a first time user of a fully fledged GRC platform, there is very little to dislike. The suggest controls and evidence do focus on what will suffice for the majority but there could be more built-in options for alternatives - however the support teams and chatbot are quick to suggest these when asked.
What problems is the product solving and how is that benefiting you?
Drata has helped centralise the compliance tasks and reporting as well as helped with employee onboarding. The interface it provides for the auditors makes the audit's much easier.
Drata - Monitoring Platform
What do you like best about the product?
Proper Support on time
Easy Implementation
Easy Implementation
What do you dislike about the product?
Suggestion : can add more test cases
can improve documentation
can improve documentation
What problems is the product solving and how is that benefiting you?
Drata is integrated with our Cloud Platform. Help us to maintain Compliance
Compliance Made Easy with Drata
What do you like best about the product?
Drata's platform is incredibly user-friendly, and their customer support is top-notch. Out of our entire tech stack, only one system required manual input—everything else integrated seamlessly. Whenever we’ve had questions or needed assistance, the support team has been impressively fast and helpful. The platform gives us clear visibility into our compliance posture.
What do you dislike about the product?
This isn’t specific to Drata, but more of a general limitation across most compliance management systems. It would be great to see more AI-driven features that could automatically map and configure controls based on our environment, reducing the need for manual setup and rule-by-rule customization. The platform is strong, but as compliance becomes more complex, smarter automation would take it to the next level.
What problems is the product solving and how is that benefiting you?
Before Drata, we were managing our compliance efforts manually in spreadsheets, which was time-consuming and error-prone. Drata centralizes everything, automates evidence collection, and keeps us continuously audit-ready. As a result, we spend far less time on documentation and back-and-forth during audits, allowing us to focus more on actual security improvements and strategy.
Natural, lightweight, intuitive
What do you like best about the product?
Drata is an opinionated, lightweight, easy to understand repository for all our compliance information. It does everything we need (and more) which gives us a growth path with the tool, all-the-while aligning us with requirements and making them clear.
The automated tests are a bonus, on top of the very clear control management system.
Its integration with Slack is fast and efficient, and allows our tech team to keep an eye on control compliance and test status.
The automated tests are a bonus, on top of the very clear control management system.
Its integration with Slack is fast and efficient, and allows our tech team to keep an eye on control compliance and test status.
What do you dislike about the product?
I would wish for more native integrations with third-party vendors, since this really where such a tool shines, and more support for self-hosted versions, since we are big proponents of self-hosting.
What problems is the product solving and how is that benefiting you?
Our previous audits, carried out manually by an external consultancy, lacked a centralised, well-formed and opinionated data collection/repository, which required us (and the external consultant) to hunt for data and required a lot of back-and-forth to come to an agreement as to what is acceptable to be in-scope and not-in-scope without triggering exceptions. There was a lot less upfront clarity, and evidence could not be submitted much in advance, let alone as we go.
My Drata User Experience
What do you like best about the product?
The user interface is very easy to use. The functionality of Drata addressed many of our business needs and processes.
What do you dislike about the product?
So far, I have not encountered any downsides. I just started using the platform.
What problems is the product solving and how is that benefiting you?
The Drata tool is assisting my organization with Cybersecurity Risk Management and audit activities.
A Game-Changer for SOC 2, CCPA, and Third-Party Risk Management
What do you like best about the product?
As the Information Security & IT Director at YCharts, I'm responsible for our SOC 2 and CCPA compliance, along with managing our third-party risk. Drata has been a fantastic partner in automating and streamlining these efforts.
Drata's real-time monitoring, seamless integrations, and intuitive dashboard has made our SOC 2 compliance effortless. Drata continuously tracks our security posture, evidence, and policies.
While the Drata platform and technology is greater, the real differentiator has been our Customer Success Manager, Elizebeth. Her wealth of knowledge and expertise in SOC 2 compliance has been invaluable, wheather we need guidance on compliance updates, or details on current controls.
Drata's real-time monitoring, seamless integrations, and intuitive dashboard has made our SOC 2 compliance effortless. Drata continuously tracks our security posture, evidence, and policies.
While the Drata platform and technology is greater, the real differentiator has been our Customer Success Manager, Elizebeth. Her wealth of knowledge and expertise in SOC 2 compliance has been invaluable, wheather we need guidance on compliance updates, or details on current controls.
What do you dislike about the product?
One area I think Drata could improve is by improving and increasing it's integrations with other Security and IT tools.
What problems is the product solving and how is that benefiting you?
As YCharts grew we knew that becoming SOC 2 and or ISO 27001 compliance was essential for building our customer trust. When we started compliance journey and was in search for a solution that could provide expert guidance to help us navigate compliance, Drata was the answer.
Drata makes evidence management straight-forward in a central management interface
What do you like best about the product?
Drata is the best tool my team and I have found for gathering and managing evidence in a central location. We have to gather and herd tons of information, so having one simple, central place to do it is crucial for us. Customer support is also well-executed at Drata. They're very helpful and responsive.
What do you dislike about the product?
It doesn't support all the connections I would like it to have, but despite that, it's still the best option for us.
What problems is the product solving and how is that benefiting you?
Drata is giving us a place to track and manage our efforts to become compliant, and it's making it easier for us to collaborate and maintain a huge amount of information.
Great platform to manage compliance to multiple framework.
What do you like best about the product?
Consolidation of controls aligned to various frameworks make audit easy and efficient. It really helps in building efficient and accurate process for monitoring controls. Continuous monitoring through integration is very helpful to identify & mitigate vulnerabilities. CSM support was great throughout the onboarding and transition process. @Elizabeth John
What do you dislike about the product?
There is still scope of improvement on Risk Management component.
What problems is the product solving and how is that benefiting you?
It helps in reducing repetitive work for multiple frameworks and various controls are mapped together.
Drata makes compliance easy
What do you like best about the product?
We use Drata for SOC2 and GDPR compliance. It tells you everything you need to do and monitors it continuously. I don't have to think about it on an ongoing basis. They are also very responsive in the chat if you have any questions. It also makes our audits easier, most of the information is available to the auditors so we don't need to produce much documentation.
What do you dislike about the product?
For GDPR, it was a little unclear how to get started, but we chatted with them and that helped a lot. Now that we are set up, it's easy.
What problems is the product solving and how is that benefiting you?
Solves SOC2 and GDPR compliance
Awesome and quick work
What do you like best about the product?
How fast support will jump on an issue when it's brought to their attention.
What do you dislike about the product?
Sometimes it can take a bit of time and constant communication to resolve more complex issues.
What problems is the product solving and how is that benefiting you?
Drata helps us stay in compliance.
showing 41 - 50