External reviews
External reviews are not included in the AWS star rating for the product.
Excellent product and Excellent Customer Service
What do you like best about the product?
Drata not only does what they say it does, it does it well and they regularly add features. The technical support group is highly responsive. The CSMs are knowledgable and responsive. They even turn around bug fixes that you ask for in a timely manner.
What do you dislike about the product?
Where was this 7 years ago when I first needed it???
What problems is the product solving and how is that benefiting you?
InfoSec compliance and now Continuous compliance
- Leave a Comment |
- Mark review as helpful
Drata is incredibly and positively different than any other SaaS provider I have worked with
What do you like best about the product?
Support and expertise - right from first sales call to first on-boarding call and ongoing support
Never having to wait for more than 1 or 2 minutes to connect with the support team - who take like seconds to come up with the right answer - highly knowledgable on audit questions
Ease of use - very intuitive to use - as a CTO doing my 10th night job in the company - I cannot tell you how both of the ease of use and the contantly available support team has made my life liveable !!
We are just getting started but I will definitely come back and add another review once we get our first certification.
But so far - it is just WOW!!! All SaaS providers should aspire to be like them!
Never having to wait for more than 1 or 2 minutes to connect with the support team - who take like seconds to come up with the right answer - highly knowledgable on audit questions
Ease of use - very intuitive to use - as a CTO doing my 10th night job in the company - I cannot tell you how both of the ease of use and the contantly available support team has made my life liveable !!
We are just getting started but I will definitely come back and add another review once we get our first certification.
But so far - it is just WOW!!! All SaaS providers should aspire to be like them!
What do you dislike about the product?
So far haven't found anything. I dont know why there is a minimum length on the dislike ... but that is the only reason I typed so much! :p
What problems is the product solving and how is that benefiting you?
As a SaaS platform provider in the Fintech world with large customers in Healthcare, Consumer and Retail - we need to suit up on compliance certifications. Drata provides us the ideal platform to manage this.
Drata is a required tool for any small business.
What do you like best about the product?
Drata is a very intuitive tool that gave confidence to our organization to get compliant in both GDPR and ISO27001. The tool walks you through steps to achieve compliance. It really makes the process as easy as it can be.
By far the best part of Drata is having real people to ask questions about compliance. The staff are responsive (under 2 minutes the majority of the time) and extremely knowledgable. Most questions are answered so quickly, it's as if they are all very knowledgeable in compliance. It is extremely helpful.
By far the best part of Drata is having real people to ask questions about compliance. The staff are responsive (under 2 minutes the majority of the time) and extremely knowledgable. Most questions are answered so quickly, it's as if they are all very knowledgeable in compliance. It is extremely helpful.
What do you dislike about the product?
There is not alot I can say that is a negative for using Drata as a small business. The main thing would be that some of steps and templates don't have small business in mind, but they typically have a blog post that explains how to modify the template to work for a small business.
Another negative would be that the tool does send alot of email as things are completed. Some of our staff expressed frustration in the process. It might be a nice idea to have a way to schedule a summary email sent to staff daily vs one email as tasks are readied.
Another negative would be that the tool does send alot of email as things are completed. Some of our staff expressed frustration in the process. It might be a nice idea to have a way to schedule a summary email sent to staff daily vs one email as tasks are readied.
What problems is the product solving and how is that benefiting you?
I won't say that Drata makes compliance easy. Compliance isn't an easy process, even for a small business. Drata DOES make compliance as easy as I think is possible with a tool like this. The agents respond very quickly to questions. The tool is intuitive and easy to use. I had no issues getting any of the connections made to allow compliance tests to run. Everything in the tool is easy to understand and use.
Turbo Tax for your SOC 2 + other certifications
What do you like best about the product?
The combination of product + customer service has been world class.
When we met the sale rep, they told us two things that I blew off as just marketing-speak, which turned out to be incredibly true and helpful:
1) they have past auditors on stand-by in their chat module to respond within minutes. I'm abusing their chat feature with questions and I always get an immediate answer back from a past auditor with the correct answer every time. This has probably cut down a week of work alone.
2) Drata is designed to help you reuse the same policies/controls for other certifications. this has made going from SOC 2 to GDPR so much faster and cut a lot of duplication of work.
When we met the sale rep, they told us two things that I blew off as just marketing-speak, which turned out to be incredibly true and helpful:
1) they have past auditors on stand-by in their chat module to respond within minutes. I'm abusing their chat feature with questions and I always get an immediate answer back from a past auditor with the correct answer every time. This has probably cut down a week of work alone.
2) Drata is designed to help you reuse the same policies/controls for other certifications. this has made going from SOC 2 to GDPR so much faster and cut a lot of duplication of work.
What do you dislike about the product?
I want to find something I don't like but I haven't found anything yet.
What problems is the product solving and how is that benefiting you?
It's making it a breeze to get our SOC2 and GDPR compliance done.
Great customer onboarding and overall continues support
What do you like best about the product?
The continous support from technical aspect as well as product level improvements. I am certainly sending a huge shoutout and appreciation to Greta Wagner, THANK YOU!
What do you dislike about the product?
I honesntly don't have any dislikes at the moment. Keeping in mind the duration of existance of the company vs the maturity is highly respectable
What problems is the product solving and how is that benefiting you?
Meeting standard frameworks compliance
Drata makes SOC2 compliance easy to understand and execute
What do you like best about the product?
Drata is great because everything is on their platform. The controls are well organized and easy to understand. Their customer service also responds extremely fast if there are any other questions. Their direct integration with auditors is also a big plus.
What do you dislike about the product?
So far, I have not run into any downsides of using drata
What problems is the product solving and how is that benefiting you?
Drata is helping us achieve SOC2 compliance in a way that is manageable and easy to understand.
Easy compliance management across multiple frameworks
What do you like best about the product?
We are targetting the SOC2, GDPR and CCPA frameworks so it is really nice to have things cross-linked across frameworks and not have to the equivilant work multiple times.
The integrations with the other platforms we use (Google, AWS, Jumpcloud) also just worked out-of-the-box.
The handholding we got from our CSM (Tori) was also exceptional and allowed is to get through our SOC2 with a clean bill of health.
The integrations with the other platforms we use (Google, AWS, Jumpcloud) also just worked out-of-the-box.
The handholding we got from our CSM (Tori) was also exceptional and allowed is to get through our SOC2 with a clean bill of health.
What do you dislike about the product?
We follow the AWS Well Architected Framework which requires you to use AWS Organizations as a way of structuring your infrastructure, but the integration with AWS is at the account level not the Organization level which means you have make sure to periodically check to make sure all accounts are added. There is also no way to say 'this is a non-production account to all high availability items are out of scope' so you have to exclude each RDS instance as it comes online from a lower level accounts.
Maintaining manual evidence when nothing has changed can also be a little clunky. Every time you need to submit against a control it is a new report / doc as compared to a new entry in an existing one. I understand the 'why' of it, but when doing monthly or quarterly reviews of things it becomes a bit of a paper cut.
Maintaining manual evidence when nothing has changed can also be a little clunky. Every time you need to submit against a control it is a new report / doc as compared to a new entry in an existing one. I understand the 'why' of it, but when doing monthly or quarterly reviews of things it becomes a bit of a paper cut.
What problems is the product solving and how is that benefiting you?
We are in the business of helping compainies migrate their contractor compliance management platforms away from Excel and into the cloud. Drata lets us do the same thing around our own internal compliance programs.
Drata is exceptional
What do you like best about the product?
In a world of substitutes, the only real product anyone offers is customer service. We partnered with Drata to help us prepare for a SOC2 compliance audit. The platform is excellent. If you've ever done an initial SOC2 audit prep, you know there are many questions to be answered. Drata's live support team is incredibly responsive and regularly answers my questions with one response. Not only are they really focused on making sure I have the answers I need to proceed, they often provide links to articles that empower DIYers like me. I appreciate a direct answer as much as anyone else, but these articles help me understand why the answer is what it is.
What do you dislike about the product?
If I have to come up with something, I'd have to say that I'd really like a way to search all policies from one location. For example, when we began the process of preparing for our SOC2 audit, there were many questions that arose from our need to better understand what was required in a given policy. We used the notation functionality within the policy editor to document our questions. There isn't however a centralized location to see all of my comments on all policies. Consequently, I have to open and close each of the 20 policies to find the comments and get answers. It's inconvenient but not a deal breaker.
What problems is the product solving and how is that benefiting you?
We need to achieve a passing SOC2 compliance audit. Without Drata, we could not do this on our own. We do not understand the needs well enough to spool up an internal team to make this happen. With Drata, we have the structure and support to launch into this process with a high degree of confidence.
SOC 2 and ISO 27001 compliance platform
What do you like best about the product?
Access to auditors via (mostly) immediate text chat. The frameworks are quite tricky to understand, and while the Drata platform makes many elements more straightforward, it's great to get clarification of my interpretation, just to get some reassurance that I've understood the wording correctly.
What do you dislike about the product?
It's not cheap! Many American SaaS platforms forget that companies outside the USA aren't able to pay USA prices - so I do think Drata needs to tailor to other markets, where it operates in them.
What problems is the product solving and how is that benefiting you?
I was tasked with "getting SOC 2" - which I wasn't too familiar with, beyond the fact it exists. This has been a massive can of worms, involving rewriting every policy, examining every single information system and process, and I have absolutely no idea how I'd have coped without Drata.
Some organisations have the benefit of inhouse auditors, legal, and so on - we're just 70 people, and SOC 2 / ISO 27001 projects are not my main job. If it wasn't for Drata, this process would be taking much longer, and I suspect would involve huge amounts of expense with external consultants.
Some organisations have the benefit of inhouse auditors, legal, and so on - we're just 70 people, and SOC 2 / ISO 27001 projects are not my main job. If it wasn't for Drata, this process would be taking much longer, and I suspect would involve huge amounts of expense with external consultants.
Using Drata as a SOC-2 compliance platform
What do you like best about the product?
We love Drata because it helps us gain visibility over our internal controls and audits in preparation for SOC-2 renewals. The support is top notch and always responds within minutes with accurate and precise information.
What do you dislike about the product?
Our experience has been great so far, although the self-service can use a few improvements. I am thinking in terms of a FAQ section that covers each major item (and sub-sections) in the user dashboard to make it easier for new users to browse the application.
What problems is the product solving and how is that benefiting you?
Please refer to what I said earlier about what we like about Drata.
showing 201 - 210