Reviews from AWS Marketplace
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
External reviews are not included in the AWS star rating for the product.
DRATA make mountains a breeze!
What do you like best about the product?
There are quite a few things that I have started to grow quite fond of in DRATA. Its really quite well baked from an interface standpoint, which is nice when you are having to worry about fighting with a UI while trying to get an IT program off the ground and into something a little more professional looking. Hooking things up to DRATA was really easy for the most part, with a single hiccup that their awesome customer support team helped me hunt down. It ended up being just something weird with how my BitBucket user is, due to some unique circumstances.
Also, their default templates are **STELLAR!**. We came from a competitor that I will not mention so that they can't have my review removed, but their templates in comparsion aren't even in the same playing field as DRATA. I think my favorite part is that the templates are marked up with what controls/framworks need those lines in the policy. This really helps speed up getting starting for the first time in a company.
There really is quite a bit to love about this application. They really have done a lot to take something that could be complex, and simplify it to the point that you feel good about getting things done. They haven't gone overboard in trying to gamify it, or pretend that its not as complex as it is, but instead nailed that sweetspot of being incredibly helping at the right time in the right way.
I know some people might bawk a little at the price, but trust me on this, you are getting what you pay for. We tried the cheaper option, and made painstakingly slow progress. Now trying DRATA, I wish I would have just gone with them from the getgo and not wasted the last year with their competitor.
Also, their default templates are **STELLAR!**. We came from a competitor that I will not mention so that they can't have my review removed, but their templates in comparsion aren't even in the same playing field as DRATA. I think my favorite part is that the templates are marked up with what controls/framworks need those lines in the policy. This really helps speed up getting starting for the first time in a company.
There really is quite a bit to love about this application. They really have done a lot to take something that could be complex, and simplify it to the point that you feel good about getting things done. They haven't gone overboard in trying to gamify it, or pretend that its not as complex as it is, but instead nailed that sweetspot of being incredibly helping at the right time in the right way.
I know some people might bawk a little at the price, but trust me on this, you are getting what you pay for. We tried the cheaper option, and made painstakingly slow progress. Now trying DRATA, I wish I would have just gone with them from the getgo and not wasted the last year with their competitor.
What do you dislike about the product?
All is not perfect with DRATA, there is some situations in which their software has its moments. The biggest one is if you do anything... unorthodox. Nothing crazy, but for example my BitBucket user is part of a workspace where I am the owner and one where I am not. This isn't probably very common, but that makes it so that I cannot set up the Version Control integration for BitBucket. This is super overcomable though.
Honestly, that is the worst thing thats happened and I wouldn't even consider that more than a roadbump at best. Its been probably one of the easiest softwares to bring into the organization. They really have thought about and considered a lot!
Honestly, that is the worst thing thats happened and I wouldn't even consider that more than a roadbump at best. Its been probably one of the easiest softwares to bring into the organization. They really have thought about and considered a lot!
What problems is the product solving and how is that benefiting you?
We are preparing the compant to be SOC 2 Type 2 ready. This includes getting all of our base IT policies formally written down in one pane of glass, getting checks and controls in place to _ENSURE_ those policies are being followed, and making sure those policies comply with the famework we are shooting for in their entirety. DRATA makes this super slick by being able to help you get started from the ground up, with an onboarding experience to make sure the transition into being a DRATA customer is smooth. Its interfaces make it very clear the things you need to do, and how to get them done. Even better is that if you don't know, their team always does (outside of legal advise which stays with lawyers for obvious reasons). Logging into their dashboard you will know where your complicance program is at, who/what you need to work on, and how to get to the finish line.
This makes it really easy as a bootstrapped startup like ourselves to make sure we are heading in the proper direction. While some larger companies have a board with years of expertise, you don't always have that luxury in a startup/maturing startup company. So the features in DRATA lend themselves well to making sure you are asking the proper questions internally and finding any gaps in your policies/implimentations.
Is there really anything else I could ask for?
This makes it really easy as a bootstrapped startup like ourselves to make sure we are heading in the proper direction. While some larger companies have a board with years of expertise, you don't always have that luxury in a startup/maturing startup company. So the features in DRATA lend themselves well to making sure you are asking the proper questions internally and finding any gaps in your policies/implimentations.
Is there really anything else I could ask for?
- Leave a Comment |
- Mark review as helpful
They promised extraordinary customer service and they delivered
What do you like best about the product?
During the sales process, I asked what differentiates them from their competitors. I was told it was their customer service and I re-iterated that my expectations were very high due to their promise. They surpassed my expectations. They have a chat interface available to answer most of my simple questions in near real-time, plus our success manager was available weekly to keep us on track.
The software is easy to use. It has many features that could get lost, but the interface makes it easy to find.
The software is easy to use. It has many features that could get lost, but the interface makes it easy to find.
What do you dislike about the product?
They had some bugs in their software, but we were able to work directly with the software engineers to explain the recreate the issue to help get it resolved quickly.
What problems is the product solving and how is that benefiting you?
Drata has help automate our compliance activities to make our SOC2 audits much easier.
Best thing we've done to manage security and compliance
What do you like best about the product?
- Customer Success is flawless. They've been with us on the journey, ensuring we realise the platform's value and connecting us with great audit partners.
- Drata simplifies the security certification process a ton! From managing policies, vendors and evidence, all you need is there. The automation of evidence collection and monitoring of the status of controls is incredible.
- The quickest way to increase your security posture. For a startup like us, it made a huge difference.
- Drata simplifies the security certification process a ton! From managing policies, vendors and evidence, all you need is there. The automation of evidence collection and monitoring of the status of controls is incredible.
- The quickest way to increase your security posture. For a startup like us, it made a huge difference.
What do you dislike about the product?
- There is nothing to dislike. We're very happy with the platform. Probably the best tech decision we made in 2023!
What problems is the product solving and how is that benefiting you?
Helped us get to SOC2 certification (which then helps Sales conversations with enterprise customers) and renew our PCI compliance. We're a small startup, so anything that helps reduce operational overhead is money well spent.
Neat compliance platform and great customer support!
What do you like best about the product?
Easy to use platform, especially when you have multiple compliance frameworks. The controls that are common across them are mapped and you only require to upload the eveidences once. The constant monitoring and ease of use for our clients through the Trust Page gives our clients the flexibility to see our live security postures and download the relevant documents as they wish without the need of emailing huge files. Drata is also very receptive to feedback and the looks to constantly improve the user experience.
What do you dislike about the product?
Flexibility in the customization of the Trust page restricts what we can present and sometimes cost us time when we want the items to be placed in an certain order.
Some minor glitches in the ineggration with other platforms but they get resolved eventually after some investigations which we appreciate can be reduced as much as possible.
Some minor glitches in the ineggration with other platforms but they get resolved eventually after some investigations which we appreciate can be reduced as much as possible.
What problems is the product solving and how is that benefiting you?
Version controls on the evidences allows for us to track and document all evidences that has been used without deleting. It aligns with our internal record retention requirements and we do not need to save the old records somewhere else.
Best Soc2 automation software i have seen yet
What do you like best about the product?
Interface was intuitive and easy to learn and their helpfull staff was with us the entire way to our soc2 certification. We have tried several differant platforms and by far they were the best
What do you dislike about the product?
Would like to be able to assign managers to groups of users so they can help monitor soc2 compliance of their own employees
What problems is the product solving and how is that benefiting you?
Was struggling to wrap our arms around soc2 compliance and drata made it easy
Easy to use and wonderful staff to work with
What do you like best about the product?
The application is very easy to use and efficient given the amount of data that is needed to supply in order to become compliant with a framework
What do you dislike about the product?
I cannot think of any downsides to the platform or capabilities of the system. Updates are made regularly and new integrations are added frequently. I look forward to continuing to see it grow and working within the platform for years to come.
What problems is the product solving and how is that benefiting you?
helping to guide us through the process of compliance with HIPAA and working towards SOC-2 compliance
Drata crucial to ISO audit success
What do you like best about the product?
Drata has made it much simpler to provide complaince evidence in audits - the automated monitoring of our systems and software development tools has been invaluable. Drata has also dramatically rediced the burden of administrating our Information Security Manage System - without this it would be a full-time task for someone in our organisation.
What do you dislike about the product?
No real downsides and they make improvements all the time to improve workflows. A report linking policies to controls would be really helpful as would integration with Notion for ticket generation and management.
What problems is the product solving and how is that benefiting you?
A s asmall tech company, we need ISO27001 accreditation and compliance at all times. Our customers demand it and rightly so. We have to maximise our productivity in managing information security and Drata is a the main factor here.
Our internal GRCS process became Simple, Structured, planned.
What do you like best about the product?
Sinplicity
I have a 365 vew of the complaince posture.
InternalExternal audits are successfull and easy.
I have a 365 vew of the complaince posture.
InternalExternal audits are successfull and easy.
What do you dislike about the product?
I can't think of a metter which I dislike.
It would be great if I can have a more robust risk assesment and risk register tool.
It would be great if I can have a more robust risk assesment and risk register tool.
What problems is the product solving and how is that benefiting you?
I have 365 overview of operatoins.
This is the "one stop" to manage and control complaince and security.
This is the "one stop" to manage and control complaince and security.
Seamless experience and outstanding support
What do you like best about the product?
This was our first SOC II audit and we felt supported throughout the experience with great and caring advice from our customer success manager. Also their policies are well written and easy to tailor and adopt.
What do you dislike about the product?
Honestly- nothing at all. They even added an audit portal that allows us to gather evidence in one central location.
What problems is the product solving and how is that benefiting you?
We neede to get a SOC II report and knew we'd want a vendor to help us through the process
Ongoing successful SOC2/ISO27001 continuous compliance automation journey with Drata
What do you like best about the product?
Drata completely transformed the way we manage our compliance activities, especially in terms of keeping track of the controls and the related evidences. Prior to using Drata, our compliance activities such as policy management, risk assessments and evidence collection were all managed via Google Drive, mainly on spreadsheets which made everything quite manual and scattered around. Now we have everything in one place and in great detail. All our evidences are documented within the platform and it is a huge plus that we have the Audit Hub so there is no need for us or the auditor to waste time anywhere else trying to reach these documents. We manage all employee tasks from Drata and centralize the security training, too. Setting up the integrations is fast and easy, and the related monitors give us additional insight on our tech stack. Our periodic Risk Assessments are now easier because we have one platform to track treatment plans instead of spreadsheets. Vendor compliance management and report review functionality is also really handy. The custom framework capability is really helpful for us to track country-specific frameworks. We made use of the custom framework feature very recently an it worked wonders for us.
Drata team is always very quick to help us assist with any problem or question we might have. Our customer success manager efficiently keeps track of any open items and supports us in the process until they are solved. He also introduces us to new features often. The team behind the live chat, both for platform-specific questions and compliance questions, also approach the issues with the utmost care. We had a change of CSM's a few times, and each time we were accompanied with great attention and care.
We use Drata every day and it definitely helps us automate almost everything compliance related. It is a great tool to track SOC2, ISO controls. It has been over a year of using Drata, and we have not had any doubts since then
Drata team is always very quick to help us assist with any problem or question we might have. Our customer success manager efficiently keeps track of any open items and supports us in the process until they are solved. He also introduces us to new features often. The team behind the live chat, both for platform-specific questions and compliance questions, also approach the issues with the utmost care. We had a change of CSM's a few times, and each time we were accompanied with great attention and care.
We use Drata every day and it definitely helps us automate almost everything compliance related. It is a great tool to track SOC2, ISO controls. It has been over a year of using Drata, and we have not had any doubts since then
What do you dislike about the product?
There isn't anything that I particularly dislike about Drata. Even when there are issues with the platform (and there was nothing major so far at all, just a few issues that you would expect from any such platform of this size), our CSM and the rest of the team are really quick and helpful with their support.
The only con of the platform for us would be the lack of integration with GCPW, and how we cannot connect two IdPs at the same time. However the team is aware of this need of ours and from past experience we are aware of how important it is for them to take client needs and requests into account.
The only con of the platform for us would be the lack of integration with GCPW, and how we cannot connect two IdPs at the same time. However the team is aware of this need of ours and from past experience we are aware of how important it is for them to take client needs and requests into account.
What problems is the product solving and how is that benefiting you?
Ensuring compliance and maintaining it is highly important to us, both to ensure that our security posture is as strongest as possible and of course also to showcase it to our clients. As a SaaS with clients all over the world expecting continuous ISO27001 and SOC2 compliance from us, Drata simplified this process and made it efficient and helped us automate a lot. It helps us identify gaps and requirements clearly and quickly. We spend way less time preparing for the frameworks in scope and to maintain them. After starting to use Drata we got SOC2 Type II certified with ease, making extensive use of the control guidelines, document templates, and the overall automatizations that Drata offers.
showing 241 - 250