External reviews
1,074 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Fast to onboard and integrate for company wide compliance needs
What do you like best about the product?
Range of tools and services that can be integrated from day 1 help the integration and initial compliance control checks show a quick return on investment.
The platform is quite intuitive compared to others in the market and with the in-console support with quick human response was one of the main plus points.
The platform is quite intuitive compared to others in the market and with the in-console support with quick human response was one of the main plus points.
What do you dislike about the product?
While the platform does bring a lot of benefits, the cost for each additional compliance framework is still fairly high.
What problems is the product solving and how is that benefiting you?
In the finance/payments space, there are various regulatory and compliance requirements to address. Consolidating those in to a tool that can map the frameworks together, reducing time in audits and ensuring that we maintain a compliant state across disparate teams is a game changer.
In addition, the additional possibility to add and map requirements from customers and partners to ensure we maintain contractual promises helps to alert us to any degradation in our service quality and alignment with responsibilities.
In addition, the additional possibility to add and map requirements from customers and partners to ensure we maintain contractual promises helps to alert us to any degradation in our service quality and alignment with responsibilities.
Super easy compliance tooling - highly recommended!
What do you like best about the product?
I've had nothing but good experiences with Drata - the support is top notch, and very responsive. As a small security and compliance team, its great to be able to lean on Drata's compliance experts. The onboarding and customer success experience has been seamless as well - we have felt very well supported as we transitioned from another ISMS tool.
The difference from our prior, manual, hard to navigate tooling has been incredible, and the user access review feature has shaved weeks off our access review requirements. Keep up the good work!
The difference from our prior, manual, hard to navigate tooling has been incredible, and the user access review feature has shaved weeks off our access review requirements. Keep up the good work!
What do you dislike about the product?
The integrations are still being fleshed out, and there might not be as much as other products out there, but its coming along nicely. The issues I have had have been sorted out quite quickly.
What problems is the product solving and how is that benefiting you?
Automates a lot of the manual work for compliance, and moves us towards a continuous compliance model which works very well for us.
Drata is supported by the best
What do you like best about the product?
Drata employs a large number of knowledgable professionsals to support you in your security compliance goals
What do you dislike about the product?
I hope that the integrations continue to evolve and grow in numbers
What problems is the product solving and how is that benefiting you?
Drata aides us in reigning in the complex compliance and security alerting requirements for various compliance obligations and security goals
Good product to help you jump-start your compliance journey
What do you like best about the product?
Managing workforce, integrations with our tech stack.
What do you dislike about the product?
Policies editor, look of generated policies, and controls that show "passed" but evidence is missing.
What problems is the product solving and how is that benefiting you?
Helps gather and centralize evidence in one place
Detailed and Organized
What do you like best about the product?
I like the way drata is organized. Seperation of Controls, Policies and personal is perfect.
What do you dislike about the product?
Notifications were not always sent out when policies where updates
What problems is the product solving and how is that benefiting you?
Getting us to SOC2 compliance and then moving to HIPAA
Build a security strategy from scratch
What do you like best about the product?
I use Drata every day. Drata offers a comprehensive list of requirements to meet and controls to be put in place for each certification. They are easily understandable if you have some basic skills in security.
What do you dislike about the product?
There are often issues with the different connections and the support struggles to sort them out.
What problems is the product solving and how is that benefiting you?
It provides me the precise list of requirements I need to meet to pass a security certification.
I get access to templates and it gathers automatically a lot of information from the connections.
I get access to templates and it gathers automatically a lot of information from the connections.
Helpful product for approaching SOC 2 Compliance
What do you like best about the product?
User Friendly
Easy to set up and use
Easy and useful integrations
Fantastic and helpful support
Extensive risk library with helpful visuals
Easy to set up and use
Easy and useful integrations
Fantastic and helpful support
Extensive risk library with helpful visuals
What do you dislike about the product?
Drata agent had some issues with some machines, especially during the install
Further integrations, especially with EDR software, would have been helpful
Further integrations, especially with EDR software, would have been helpful
What problems is the product solving and how is that benefiting you?
We are using Drata to persue SOC2 compliance. Drata is the tool we are using to assist us in meeting all the requirements and provide the auditor with the tools needed to check our compliance.
Great platform for getting compliance certifications quickly
What do you like best about the product?
Provides pre-built templates for all required policies and controls for the common certifications. Comes with pre-built controls that helps track the current status of compliance with each requirement.
It's very simple to use and kept us organized when building the policies, implementing them, gathering evidence, and during the audits themselves.
It's very simple to use and kept us organized when building the policies, implementing them, gathering evidence, and during the audits themselves.
What do you dislike about the product?
Missing some features, specifically better customization in monitored tests and the Drata agent which verifies endpoint compliance.
I would like to have a tighter link between the policies and the controls. After setting up the initial policies, adding new frameworks is a bit more complex. It's hard to keep track of your policy changes compared to the standard template.
I would like to have a tighter link between the policies and the controls. After setting up the initial policies, adding new frameworks is a bit more complex. It's hard to keep track of your policy changes compared to the standard template.
What problems is the product solving and how is that benefiting you?
policy creation (templates), policy impementation, evidence collection including ongoing monitoring
Growing Compliance Platform
What do you like best about the product?
If you're implementing a new compliance program Drata will give you default policies that are impactful for a number of different frameworks and if you link your stack it will help you automate the monitoring of your services.
Compliance support is really good and knowledgeable.
I think on average I get an email a month about some new feature being released. Seems to be in active development.
Any issues I've run into I've dropped a message in the chat box and it gets resolved or followed up with a ticket.
Onboarding users and giving visibility into compliance status was a breeze.
Compliance support is really good and knowledgeable.
I think on average I get an email a month about some new feature being released. Seems to be in active development.
Any issues I've run into I've dropped a message in the chat box and it gets resolved or followed up with a ticket.
Onboarding users and giving visibility into compliance status was a breeze.
What do you dislike about the product?
Their trust page functionality is interesting but has a rather large footer advertising their service. I'm all for attribution but the star of the show should be the data a customer is looking for.
What problems is the product solving and how is that benefiting you?
I just wanted a place to manage my compliance program that isn't a series of spreadsheets. This technically meets that requirement.
Additionally:
- a very simple security training
- automated checks for infrastructure, hrip, and date tracker for when evidence or policies need an update
- centralized policy accepting for all staff, as well as a transparent portal for self-serving themselves to be compliant
- user onboarding/tracking for compliance status
- the notifications when a status changes is really helpful
Additionally:
- a very simple security training
- automated checks for infrastructure, hrip, and date tracker for when evidence or policies need an update
- centralized policy accepting for all staff, as well as a transparent portal for self-serving themselves to be compliant
- user onboarding/tracking for compliance status
- the notifications when a status changes is really helpful
Superb customer support, documentation, and platform
What do you like best about the product?
Drata's customer support and success team has been amazing in helping us achieve compliance across all our efforts. They've been super on top of helping us through both automated and manual outreach efforts. Their documentation and platform have also been AWESOME!
What do you dislike about the product?
Using Drata can be expensive depending on what you are going for (compliance framework wise), so just be mindful of costs! This is true for anything to do with compliance to be honest, goes with the territory.
What problems is the product solving and how is that benefiting you?
SOC2 compliance, GDPR/CCPA compliance
showing 61 - 70