External reviews
External reviews are not included in the AWS star rating for the product.
Used to achieve SOC 2 compliance and enable visibility on controls
What do you like best about the product?
Three things stand out for us. 1) Drata is a product that is aligned with our compliance needs. 2) It is still delivering a strong ROI for us, saving time and making life easier with automation. 3) We used Drata to collect and demonstate evidence for the SOC 2 Type 1 and 2 audit. This contributed to a smooth process with our auditor.
Three key product highlights: integrations are compatible with our tech stack, visibility of controls for continous monitoring, mapping controls to frameworks (SOC 2 Type 1 and 2 + GDPR).
Our experience with Customer Success is excellent. We have been supported by Sara M and Victoria C who has seen our journey with SOC 2 as a start up without any security expertise in the early days. Throughout the past year, I have learned a lot more about maximising Drata's features. They have done this by proactively sharing help center guides, answering questions specific to our challenges and escalating to their Product/Engineering teams (when required). It is evident that they evaluate their processes with intent and are serious about what great looks like for us and themselves.
Three key product highlights: integrations are compatible with our tech stack, visibility of controls for continous monitoring, mapping controls to frameworks (SOC 2 Type 1 and 2 + GDPR).
Our experience with Customer Success is excellent. We have been supported by Sara M and Victoria C who has seen our journey with SOC 2 as a start up without any security expertise in the early days. Throughout the past year, I have learned a lot more about maximising Drata's features. They have done this by proactively sharing help center guides, answering questions specific to our challenges and escalating to their Product/Engineering teams (when required). It is evident that they evaluate their processes with intent and are serious about what great looks like for us and themselves.
What do you dislike about the product?
From my experience, there is no dislike because it has been doing what we need it to do. To nitpick, for us the GDPR framework has require more manual evidence uploads compared to SOC 2. We try to maximise the control mapping feature by ensuring any security controls are also mapped to GDPR (particularly useful for demonstarting compliance with Article 5 and 32).
What problems is the product solving and how is that benefiting you?
Problems: huge task of organising SOC 2 tasks and evidence collection, ongoing monitoring of control effectiveness, poor visibility of controls across the teck stack. Drata is benefiting us by: providing a meaningful view of controls that is mapped against industry frameworks (SOC 2 and GDPR), flagging issues that need our attention, visibility that facilitates conversations with key stakeholders in the company. Time saved and stress reduced.
- Leave a Comment |
- Mark review as helpful
Powerful Automation and Clean Design
What do you like best about the product?
I like how the software provides continuous automation monitoring and helps you build policies. I also like how it helps you onboard and off-board employees. Their real-time customer support gives me quick access to answers, and my dedicated Account Manager is always there when I need her. Finally, I love how they continue adding and updating existing frameworks.
What do you dislike about the product?
Completing compliance can take a long time. I don't think this is a Drata thing, but more to do with the amount of work required for completing an audit-ready compliance.
What problems is the product solving and how is that benefiting you?
It is helping us become HIPAA, GDPR and NIST compliant. It guides us along the steps needed and prevents us from missing anything important along the way. The monitoring of our AWS services has helped us find unused infrastructure and also tighten down IAM polices.
Exceptional Customer Service and Highly Innovative Features
What do you like best about the product?
Drata has provided our company with invaluable support that has led to improving our security posture. They have consistently proved that are very reliable. Specifically, our customer success manager, Sam, is exceptionally responsive and has deep knowledge of the platform. Their customer service should be an example for all companies to mirror.
What do you dislike about the product?
So far, we have not experienced any issues with Drata. We are looking forward to continuing our partnership with them!
What problems is the product solving and how is that benefiting you?
Based on our experience with Drata so far, I am confident that we have vastly improved our privacy and security practices. They provide a variety of easy-to-use features to improve our security posture. For example, security training for our team, policy templates mapped to controls, integration with AWS, and frequent updates to add new frameworks and features to meet regulations. Overall, it provides a one-stop solution for managing all the pieces for compliance, with new frameworks being added frequently.
An indispensable tool in our SOC2 compliance journey
What do you like best about the product?
Drata took the guesswork out of our compliance gaps by clearly presenting which aspects of our system needed attention. As a result, we formulated a clear strategy of action items to make us audit-ready. Not only that, but their system provides a streamlined and central evidence-collection process, helping us to stay organized. Lastly, their client support is second to none. I can't count how many times we messaged their live support with compliance and other questions. Each time, they provided clear guidance. I highly recommend Drata to anyone looking to bring their company into compliance with industry standards.
What do you dislike about the product?
N/A. I can't think of any issues that we had with Drata.
What problems is the product solving and how is that benefiting you?
Improving our security posture and meeting SOC2 certification requirements.
This is an essential tool for us in starting off our Audit process!
What do you like best about the product?
Honestly the service itself is great, there are some integrations we'd like to add, but our environment is very unique so we don't count that against Drata. All along the way we have made extensive use of the "Help" system which connects us to the live help team. They have all been very friendly and helpful. Quite refreshing!
What do you dislike about the product?
We wish there was a more extensive API for us to write our own customizations against. They are working on this
What problems is the product solving and how is that benefiting you?
The biggest thing for me is giving us a roadmap of sorts to fulfilling our compliance. We have a fairly robust development team, so the automations we could have eventually created on our own. The thing we lack, that Drata gives us, is that institutional knowledges of the SOC 2 requirements and what data we need to provide to fulfill them
Senior Manager
What do you like best about the product?
Drata is an excellent tool for all our compliance needs; simple to set up and easy to use for our staff and auditors. I’ve also been really impressed by their Customer Success Manager, who’s been extremely knowledgeable, very supportive through our transition to Drata, accomodating to our needs and genuinely open to suggestions for improvement, one of which is on their roadmap for this quarter!
What do you dislike about the product?
On the whole of it, there’s nothing that I dislike, only things that I like! Being a relatively young company and product, it’s continuously evolving and with new features delivered it's inevitable that minor defects are introduced but the Drata support team are quick to respond and fix the issues.
What problems is the product solving and how is that benefiting you?
Drata is helping us realise our Continuous Compliance Strategy that compliance is not a set and forget, point-in-time, re-active activity but an always-on pro-active program of work that integrates in real-time to our business with instant feedback.
Our Customer success manager, Laci, meets us weekly to discuss progress and help drive our migration to Drata. As a subject matter expert, she offers us tips, suggestions and solutions on how best to leverage the tool. This is invaluable help for us in achieving our goal of Continuous Compliance.
Our Customer success manager, Laci, meets us weekly to discuss progress and help drive our migration to Drata. As a subject matter expert, she offers us tips, suggestions and solutions on how best to leverage the tool. This is invaluable help for us in achieving our goal of Continuous Compliance.
Drata Has Us Off to a Great Start!
What do you like best about the product?
I love Drata's supportive approach to automated compliance management and monitoring. The tool is comprehensive and easy to use. Our Customer Success Manager, Tayler Gase, on-boarded us quickly and helped us start on our compliance journey in advance of a planned SOC 2 audit.
What do you dislike about the product?
We use some atypical or lesser-known systems for specific business processes that don't integrate with Drata for automated evidence collection, but their API for evidence submission is allowing us to build some custom integrations.
What problems is the product solving and how is that benefiting you?
Drata is helping us keep our compliance efforts on track by providing clear, concise information about our controls and their performance.
Intuitive Solution - Best in Class Account Support
What do you like best about the product?
To be brief and direct, I had no experience in tech. compliance when I first engaged with Drata. My team members had experience, and Drata came from their network as a strong, economical recommendation to get us going on compliance certifications. From that perspective, I found Drata's UI incredibly intuitive. The structure and attention to simplifying the complexity of compliance accelerated my learning curve and allowed me to quickly and effectively contribute to our company's goals.
What do you dislike about the product?
There isn't something that jumps to mind. We are still in the early stages and for my needs, Drata met those.
What problems is the product solving and how is that benefiting you?
Integrations and risk reporting is a value add for greater team visibility. Centralizing a majority of the needs of an auditor helps our team prioritize and assess gaps around the same information/data. Policy support is the most significant benefit. Pre-populated policies that reference relevant section(s) within compliance requirements allowed me to align subject matter experts quickly, focus resources on standing up the processes and procedures to support the policy, and they are easy to edit/upload in place of/adjust.
Excellent cloud compliance platform with amazing customer support!
What do you like best about the product?
The customer service is excellent, and Drata always enhances the product with value add features. Ali McCormick, our customer service rep, is very knowledgeable, always responsive, and knows how to stay in touch and be helpful without it being too much.
What do you dislike about the product?
A couple of the integrations could be a bit more seamless, but the breadth of integrations is impressive.
What problems is the product solving and how is that benefiting you?
Evidence gathering for SOC2 compliance. Very helpful in getting organized and gathering the majority of information needed for SOC2 audit reviews.
Amazing Compliance Automation
What do you like best about the product?
We couldn't be happier with Drata. The tool and the team (including our CSM Craig!) have been amazingly helpful as we begin our SOC2 & HIPAA compliance process. Drata has jumpstarted all our policy creation and acceptance with their templates, including references to relevant controls and distinctions between nice and need-to-haves. The Drata endpoint agent has been a live saver to ensure device compliance for a remote distributed team. The automated monitoring helps us keep an active eye on anything that falls out of compliance with constructive tips and direct-how-to correction instructions on how to get back into compliance. The team has also been incredibly responsive and generous with their time, providing insight into getting the most out of Drata and providing more strategic compliance program guidance.
What do you dislike about the product?
Overall we have no complaints. We encounter minor lag issues when in the product, and sometimes the automated integrations will time out or not refresh on demand, but every time we get a minor bug, the Drata support team is quick to respond and correct it.
What problems is the product solving and how is that benefiting you?
Drata is helping us achieve SOC2 (Type I and Type II) and HIPAA compliance. This is critical for us to shorten deal cycles and win customers who need to see our security posture.
showing 311 - 320