External reviews
External reviews are not included in the AWS star rating for the product.
Best compliance system on the planet
What do you like best about the product?
Drata is the most intuitive compliance evidence and tracking system I have seen. With Drata a small technical and legal and team of a handfull of people can get on top of SOC 2 or ISO27001 in less than a year. All you need is a motivated and backing from management. You learn the skills required along the way.
What do you dislike about the product?
Reports. Drata is all about compliance. It relies heavily on manual upload of evidence such as reports and screen shots. We hope Drata shifts from manual evidence to integrations with third parties for all controls related to evidence on an individual employee level.
What problems is the product solving and how is that benefiting you?
Drata allows us to certify for ISO27001 and provide security reports for customers. This builds trusts in the company.
- Leave a Comment |
- Mark review as helpful
Drata rocks!
What do you like best about the product?
Customer service, automation, ease of use!
What do you dislike about the product?
Some bugs are sometimes present, however the customer support team has been phenomenal in assisting us
What problems is the product solving and how is that benefiting you?
We love the ease of use when it comes to audits and love the idea of not having to upload all the evidence each year.
Took the pain out of SOC2
What do you like best about the product?
Knowledgable staff. Quick to respond online chat. Toolset is easy and intuitive to use. Our customer success manager, Victoria Chervinska is a pleasure to work with. Very friendly, relaxed and knows her stuff.
Working with Drata has made the process of obtaining SOC2 Type 1 (so far) almost pleasurable. Certainly made it more pleasant than I expected.
Working with Drata has made the process of obtaining SOC2 Type 1 (so far) almost pleasurable. Certainly made it more pleasant than I expected.
What do you dislike about the product?
There are a couple of quirks in the interface that I have communicated to Victoria that I think could use some help. I think the document risk assessment/remediation plan process could use more examples. This is a complex part of the compliance process and some of us need all the help we can get.
What problems is the product solving and how is that benefiting you?
SOC2 compliance. Enables us to bid on clients that we might not otherwise be able to
Amazing product, amazing customer success team, amazing experience!
What do you like best about the product?
How on earth do you make becoming SOC2 compliant enjoyable?
Somehow, Drata has found a way with a combination of an amazing product and amazing customer service/support.
A huge shout out to Timeplusers Jove Zhong and Joan Yan who drove the process on our side. But really - this post is going to be a love letter to our SOC2 tech partner, Drata, who have been absolutely amazing every step of the way. If you are looking into becoming SOC2 compliant, we couldn’t be more positive on Drata. Some context:
First, some context:
1. My company Timeplus (www.timeplus.com) is a VC-backed start up that develops a streaming process and analytics solutions.
2. The urgency for Timeplus to get SOC2 Type 1 done quickly was driven by customer requests, so time-to-value was a very important purchasing decision.
3. We looked at multiple SOC2 vendors, and chose Drata based on 1) recommendations from peers 2) intuitive UI/UX 3) Amazingly empathetic client service teams.
HUGE positives on Drata.
1. Drata COMPLETELY delivered on all points.
2. As a young start up, we have limited resources and couldn’t afford to re-allocate lots of folks to exclusively work on SOC2. With Drata’s technology and support team, that wasn’t an issue at all.
3. Onboarding was incredibly easy, and was mostly automated, saving a lot of time.
4. Tech connectivity with external systems was super easy to navigate with Drata.
5. Client success team was just amazing. Every time we finished a call with our lead contact Linn Fritts, Jove and I would both think: how can we replicate this type of service/customer experience at Timeplus? We had regular check ins (every 2 weeks), and Linn was the perfect sherpa guiding us through the process, keeping us on task and solving any problems.
I couldn't be more positive on Drata, and would be happy to provide additional context to companies evaluating data compliance vendors.
Somehow, Drata has found a way with a combination of an amazing product and amazing customer service/support.
A huge shout out to Timeplusers Jove Zhong and Joan Yan who drove the process on our side. But really - this post is going to be a love letter to our SOC2 tech partner, Drata, who have been absolutely amazing every step of the way. If you are looking into becoming SOC2 compliant, we couldn’t be more positive on Drata. Some context:
First, some context:
1. My company Timeplus (www.timeplus.com) is a VC-backed start up that develops a streaming process and analytics solutions.
2. The urgency for Timeplus to get SOC2 Type 1 done quickly was driven by customer requests, so time-to-value was a very important purchasing decision.
3. We looked at multiple SOC2 vendors, and chose Drata based on 1) recommendations from peers 2) intuitive UI/UX 3) Amazingly empathetic client service teams.
HUGE positives on Drata.
1. Drata COMPLETELY delivered on all points.
2. As a young start up, we have limited resources and couldn’t afford to re-allocate lots of folks to exclusively work on SOC2. With Drata’s technology and support team, that wasn’t an issue at all.
3. Onboarding was incredibly easy, and was mostly automated, saving a lot of time.
4. Tech connectivity with external systems was super easy to navigate with Drata.
5. Client success team was just amazing. Every time we finished a call with our lead contact Linn Fritts, Jove and I would both think: how can we replicate this type of service/customer experience at Timeplus? We had regular check ins (every 2 weeks), and Linn was the perfect sherpa guiding us through the process, keeping us on task and solving any problems.
I couldn't be more positive on Drata, and would be happy to provide additional context to companies evaluating data compliance vendors.
What do you dislike about the product?
Honestly, nothing comes to mind. Our entire team really had a super experience.
What problems is the product solving and how is that benefiting you?
Becoming SOC2 Type I (already achieved) and Type II (working on it) compliant
Excellent Utility & Amazing Support
What do you like best about the product?
Drata makes the information management and planning aspects of compliance and security so much easier by providing a centralized, organized framework as well as the means to communicate with various contributors/stakeholders quickly.
The dashboard (new as of June 2023) and general interfaces and integrations are intuitive, informative and helpful. There are clear, useful filters and tracking/searching options, and the breadth of available integrations (and flexibility in coordination with audit partners) is excellent.
Related, the customer support is amazing. I've been working with Ali McCormick, specifically, and she's been invaluable in making sure everything is tailored to my company's needs. The Drata support/expert audit team more broadly is hyper-responsive, knowledgeable, and willing to offer real guidance and assistance. It's not a mere "here's a link to our FAQ" type of customer service, and that personal commitment from Ali and the team removes a lot of headache and stress.
The dashboard (new as of June 2023) and general interfaces and integrations are intuitive, informative and helpful. There are clear, useful filters and tracking/searching options, and the breadth of available integrations (and flexibility in coordination with audit partners) is excellent.
Related, the customer support is amazing. I've been working with Ali McCormick, specifically, and she's been invaluable in making sure everything is tailored to my company's needs. The Drata support/expert audit team more broadly is hyper-responsive, knowledgeable, and willing to offer real guidance and assistance. It's not a mere "here's a link to our FAQ" type of customer service, and that personal commitment from Ali and the team removes a lot of headache and stress.
What do you dislike about the product?
I can't think of any downside about using Drata, and I would recommend anyone looking for this sort of solution to at least get in touch with them to discuss options.
What problems is the product solving and how is that benefiting you?
Drata helps my company solve the problem of time/resource/headache cost in organizing, implementing, tracking, summarizing and auditing our various security and compliance controls with a lean internal team whose primary responsibilities are not solely compliance-related.
Mike Mechling is AWESOME!!!
What do you like best about the product?
I really enjoyed the overall user interface of Drata and how easy it was to navigate around the site, complete tasks, and get updates on our status. I also like the team, Mike Mechling specifically. He really hand-held us through the process of resolving tasks and explaining the ins and outs to get certified.
What do you dislike about the product?
Sometimes it was a tad difficult to update issues that had been resolved, but after talking with Mike, it was resolved quickly with no further issues. Overall experience is great.
What problems is the product solving and how is that benefiting you?
It solved the initial stages of us getting SOC 2 Type II compliant. It set us up for success to ensure we had the correct protocols in place to not only pass, but to stay compliant throughout the auditing phase. It kept us accountable and in line with our policies and procedures
Unparalleled Expertise and Exceptional Service
What do you like best about the product?
In-depth Expertise, Prompt and Efficient Communication, and Simplified Complexity! A 5-star review doesn't adequately express our appreciation for the exceptional support from Nia and the Drata team. They've transformed compliance management for us, and we look forward to continuing our successful partnership.
What do you dislike about the product?
I have had no complaints or issues with Drata throughout this process. The interface and setup have made this process extremely easy.
What problems is the product solving and how is that benefiting you?
They helped us understand and implement the requirements of HIPAA and SOC 2, simplifying a complex and potentially overwhelming process. This allowed us to focus on our core business operations without worrying about compliance issues.
Platform that bring clarity in the chaos of ISO27001 compliance.
What do you like best about the product?
I really enjoy the powerful platform that brings upfront any place where there is a shortcoming. Additionally, I really enjoyed working with Gabriella Roebuck, and her professional approach, she was constantly on top of every conversation, sharing her experience with other customers to make our transition much easier.
What do you dislike about the product?
This is a fairly new platform and new features are being added frequently, it is not easy to know all the details and the learning curve is quite steep but that would be more feature of the ISO27001
What problems is the product solving and how is that benefiting you?
Bringing a company to be fully compliant with ISO27001 is not an easy step. There are many changes that need to be introduced. From policies to unified IT setup to name a few. Drata allows us to keep an eye on the status and clearly know where we should make changes first. What you will see is that becoming compliant is not just a job done but a constant process, today all computers are 100% compliant tomorrow you can get a few that fall short. With Drata it is easy to get to those machines and fix any issues.
The ideal platform for compliance automation
What do you like best about the product?
We've been using Drata for over a year, and I has revolutionized our compliance process. Automating the collection of evidence and monitoring of security controls has had a huge impact on making our SOC 2 journey smooth, predictable and exception-free. Drata has proven to be the ideal platform for automating and streamlining our compliance efforts.
From the initial implementation to beyond, Drata has provided us with step-by-step guidance and pre-built templates, making it easy to navigate through the complex compliance requirements. We were able to save significant time and resources in managing our compliance programs.
Drata seamlessly integrates with our existing identity management, version control and issue tracking systems and infrastructure and automatically monitors and collects compliance data. The continuous monitoring feature ensures that we are always up to date with our compliance status, providing real-time insights and alerts.
The customer support provided by the Drata team is exceptional. They are responsive, knowledgeable, and readily available to address any questions or concerns that arise during the compliance process.
I highly recommend Drata to anyone looking to pursue a SOC 2 report. Its user-friendly interface, powerful automation features, and comprehensive reporting capabilities have transformed our compliance efforts.
From the initial implementation to beyond, Drata has provided us with step-by-step guidance and pre-built templates, making it easy to navigate through the complex compliance requirements. We were able to save significant time and resources in managing our compliance programs.
Drata seamlessly integrates with our existing identity management, version control and issue tracking systems and infrastructure and automatically monitors and collects compliance data. The continuous monitoring feature ensures that we are always up to date with our compliance status, providing real-time insights and alerts.
The customer support provided by the Drata team is exceptional. They are responsive, knowledgeable, and readily available to address any questions or concerns that arise during the compliance process.
I highly recommend Drata to anyone looking to pursue a SOC 2 report. Its user-friendly interface, powerful automation features, and comprehensive reporting capabilities have transformed our compliance efforts.
What do you dislike about the product?
There's nothing I dislike about Drata. In the beginning, the integration points offered in Drata didn't include all the systems we were using, but they're continually adding more functionality and meet all our needs now.
What problems is the product solving and how is that benefiting you?
Drata automates the monitoring and collection of compliance controls across our organization.
Excellent Customer Service
What do you like best about the product?
Easy of connecting Policies and Documents to the need controls. Made for an easy way to follow progress while completing SOC
What do you dislike about the product?
I think it should be easier to understand DNF's in order to get items to pass. Looking those up can be time consuming
What problems is the product solving and how is that benefiting you?
Everything involving SOC-2, i dont think we could have gotten through this process with out it
showing 231 - 240