External reviews
External reviews are not included in the AWS star rating for the product.
From Startup to Enterprise Compliance
What do you like best about the product?
Having worked in many large corporations throughout my career and implemented compliance programs. Absolutely nothing compares to the sheer acceleration you get from using Drata!
What do you dislike about the product?
Drata is a startup on the same rocket ship mode as our company so sometimes you have to wait a while for the next framework. Every integration that has been asked for has been delivered.
What problems is the product solving and how is that benefiting you?
Compliance out of the box without the overhead of a large team to implement and collect evidence during an audit. Truly the perfect integration to bring a new startup into Rock like Compliance.
Recommendations to others considering the product:
Look at the marketplace and truly evaluate what is out of the box versus having to write costly integrations to pull evidence and the decision is clear.
- Leave a Comment |
- Mark review as helpful
SOC 2 in a box
What do you like best about the product?
- Drata is open-minded, flexible, and agile to meet any of your feature requests or additional requirements. It was the only vendor on the market that was ready to support an immutable cloud-native AWS infrastructure as code at the time we evaluated the available options (end of 2021). Having multiple production releases per day and spinning a brand new version of the infrastructure for every feature branch, we would be overwhelmed with noise and false positives without this.
- They nailed SOC 2 framework and automated testing and evidence gathering significantly. It also looks quite good for ISO 27001.
- Their expert team is always ready to help you with your compliance-related concerns and bring some light to unclear controls and requirements.
- Drata recommends a list of auditors familiar with the tool and providing a significant discount for the audit.
- Drata supports a solid list of compliance frameworks.
- New Trust Center is a killer feature.
- They nailed SOC 2 framework and automated testing and evidence gathering significantly. It also looks quite good for ISO 27001.
- Their expert team is always ready to help you with your compliance-related concerns and bring some light to unclear controls and requirements.
- Drata recommends a list of auditors familiar with the tool and providing a significant discount for the audit.
- Drata supports a solid list of compliance frameworks.
- New Trust Center is a killer feature.
What do you dislike about the product?
- 25MB file size limit for any piece of evidence you are uploading into Drata. Anytime you need to upload something bigger you have to ask the Drata support team.
- The support of some frameworks (e.g., NIST CSF, NIST 800 53, GDPR) is pretty basic and has very little or no automation. For these secondary frameworks the cost doesn't seem justified for what they charge for SOC 2 or ISO 27001 - those that they fully support and automated.
- While Drata has a huge list of available integrations, they don't support Atlassian tools hosted on-prem/in your own cloud accounts - only Atlassian SaaS.
- It would be nice to be able to subscribe to an SNS topic with failing test notifications from Drata to stay up-to-date on the recent issues.
- While Trust Center is a great feature, I believe it should be provided for no additional cost as a part of any framework you have with your Drata subscription. It does not seem fair to charge for this additionally.
- The support of some frameworks (e.g., NIST CSF, NIST 800 53, GDPR) is pretty basic and has very little or no automation. For these secondary frameworks the cost doesn't seem justified for what they charge for SOC 2 or ISO 27001 - those that they fully support and automated.
- While Drata has a huge list of available integrations, they don't support Atlassian tools hosted on-prem/in your own cloud accounts - only Atlassian SaaS.
- It would be nice to be able to subscribe to an SNS topic with failing test notifications from Drata to stay up-to-date on the recent issues.
- While Trust Center is a great feature, I believe it should be provided for no additional cost as a part of any framework you have with your Drata subscription. It does not seem fair to charge for this additionally.
What problems is the product solving and how is that benefiting you?
Using modern solutions like Drata helped us significantly save the time (at least a few months of effort per year) and money (tens of thousand dollars) required to achieve SOC 2 compliance. Of course, Drata will not automatically make your product secure and reliable, but it will help you assess the gaps, eliminate them, and continuously monitor the required controls.
Great Compliance Automation Platform
What do you like best about the product?
Easily connect your systems and great customer success support. Very fast and efficient response times for problem resolution or advice.
What do you dislike about the product?
Takes a little getting used to dashboard navigation; however, the learning curve is quick.
What problems is the product solving and how is that benefiting you?
Single pane of glass for multiple compliance frameworks. Makes auditing much more efficient as well.
Recommendations to others considering the product:
Evaluated several competitive solutions and Drata came out on top. Look no further.
Drata Portal for SOC 2
What do you like best about the product?
The portal is very intuitive to store Controls and other documents.
It gives a clear picture of what Controls are passed what requires to fulfill the gap.
It gives easy access to the external auditors.
It gives a clear picture of what Controls are passed what requires to fulfill the gap.
It gives easy access to the external auditors.
What do you dislike about the product?
The product still has some bugs and we needed to report to fix them and were resolved by Drata team very quickly.
What problems is the product solving and how is that benefiting you?
Storing documents in a SaaS based portal makes it easier to share.
My Drata Review
What do you like best about the product?
I like the automation Drata uses to bring the latest info up front for review.
What do you dislike about the product?
The limited frameworks at this time plus adding more increases our cost to use Drata every year.
What problems is the product solving and how is that benefiting you?
We needed to get started with our compliance efforts and have a centralized place to store evidence and manage our records in preparation for future audits.
Reliable, competitive, affordable. Does exactly what it says it will do.
What do you like best about the product?
The software is simple, most controls and features are straightforward, and the team we got to work with from Drata helped us understand the scope and priorities of how to get our SOC2 compliant done in record time.
What do you dislike about the product?
Not a lot of things to dislike honestly, you have to understand that it's a young / fairly new company, and they keep improving their software every month. Example would be filters. Can they be better? Faster? Simpler? And after a month - you see improvements, so really no complaints, we were able to leverage the platform and get our SOC2 compliance without any issues.
What problems is the product solving and how is that benefiting you?
It's not just a tool for tracking compliance, in a way, it's a framework and a guide for what all falls under SOC2 (or GDPR, etc), so it was very helpful to use their templates and premade controls.
Recommendations to others considering the product:
Understand what you are looking for, check for competitors, and choose what is right for you and your organization.
Simplified my process to get it done!
What do you like best about the product?
As someone that never ran the entire SOC2/ISO certification process from end-to-end, but only as a participant in the process previously, Drata helped me simplify the process by both pulling many of the components required automatically, but also by providing us with an easy step-by-step list of action items to quickly fix and meet the regulatory requirements!
What do you dislike about the product?
I think the one comment I would add as something that could be better (I don't think dislike is the right way to put it), is that the platform could definitely benefit for a few additional integrations to make it even easier and automated with testing.
What problems is the product solving and how is that benefiting you?
Easily explain the gaps in our current platform to meet the regulatory requirements, automate data collection from many platforms and give you simple explanations on how to solve the gaps.
Recommendations to others considering the product:
I would definitely recommend to anyone looking to implement a fast way to complete compliance programs.
Very pleased with Data
What do you like best about the product?
The professional support that Drata provides. Their system is usher friendly
What do you dislike about the product?
Not applicable at this time. Overall I have been satisfied with Drata and have no complaints.
What problems is the product solving and how is that benefiting you?
Assisting with the compliance of our start-up company
Reliable support and huge relief
What do you like best about the product?
They help take the guessing work out of our business processes to ensure our team is compliant, and they provide support at each level.
What do you dislike about the product?
I would prefer that Drata incorporate an auditing feature to ensure that the policies/controls we implement are sufficient from an auditing perspective.
What problems is the product solving and how is that benefiting you?
HIPAA compliance for our business operations
Saves time and compliance headaches
What do you like best about the product?
It's easy to stay on top of your compliance requirements. Without using Drata, compliance took up a lot more of our time in a smaller startup. It's worth it for the saved time and improved compliance.
Our experience with Drata customer success has been perfect, our contact is very helpful, knowledgeable, and always available (Ali).
Our experience with Drata customer success has been perfect, our contact is very helpful, knowledgeable, and always available (Ali).
What do you dislike about the product?
The space is expensive, but Drata worked out slightly cheaper than their competitors for us. The company/software is young compared to their competitors, but I think they've managed to make a better product by moving faster.
What problems is the product solving and how is that benefiting you?
You can manage compliance by just using Drata's dashboard, automated checks, and evidence tracking instead of using ten different tools and spreadsheets to try to keep track of everything. Saves a lot of time and improves our compliance.
showing 781 - 790