External reviews
1,104 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Drata as been seamless
What do you like best about the product?
Very intuitive UI, it was a fast learning curve to figure out what needed to be done, especially being new to SOC2 compliance.
What do you dislike about the product?
This more so pertains to the designated auditor. There's a lot of repeat work sometimes, depending on the auditor you choose. There could be some workflow efficiencies when navigating from Monitoring, Fixing Controls, Controls, and filtering for Control ownership from the Monitoring section.
What problems is the product solving and how is that benefiting you?
SOC2 compliance was a guided process when using Drata. Financially, it's around the same ballpark when comparing other services. However, Drata's demo was the best and it seemed best in class from a product UX standpoint.
Automated, Helpful Tool for Compliance
What do you like best about the product?
Drata has been very helpful with keeping records of our staff compliance needs and which areas are outstanding for which staff members. I also really like the helpful articles and great customer support offered - thanks Alex!
What do you dislike about the product?
It's a helpful tool if you use it right. We are still learning how to utilize all of the available features so we are making the most of this investment
What problems is the product solving and how is that benefiting you?
SOC2 compliance. We are able to keep our audit evidence in one place and get automated tests run so we can know quickly if something has fallen behind.
Intuitive interface and compliance team to make SOC 2 compliance easy
What do you like best about the product?
Drata greatly increased our speed and knowledge while decreasing the number of hours required from our team to get SOC 2 compliant. We really like the ability to check all of our W2 employee's and contractors' compliance in one simple place as well as the continuous monitoring of our security items. Without the continuous monitoring, it would have taken us a lot of time to ensure our security items are still compliant over time (especially for SOC 2 Type 2 which has a longer monitoring period).
Drata's available compliance team was also super valuable and easy to communicate within the web application. We had many questions on best practices and how to ensure compliance on certain items that the compliance team made easy.
Drata's available compliance team was also super valuable and easy to communicate within the web application. We had many questions on best practices and how to ensure compliance on certain items that the compliance team made easy.
What do you dislike about the product?
There were a few items we had to complete for our SOC 2 compliance with our auditor company that was outside of the Drata platform. However, this was fairly minimal and might be specific to just what the auditor looks at.
What problems is the product solving and how is that benefiting you?
Solving SOC 2 compliance in a short period without sacrificing quality. We received our SOC 2 compliance is a much faster timeline (< 2 months) with a lot less work because of Drata.
Seamless automated compliance monitoring based on systems available to connect
What do you like best about the product?
Automated tests that runs everyday and the detailed Raw test evidence gives us a granular view of non compliant controls. DRATA technical architects are great to work with and gives us regular insights on how to fix the errors to increase our compliance percentage. SOC2 automated evidence gathering and providing results to auditors becomes a frictionless effort for cloud native organizations. The available frameworks keeps growing in DRATA and happy to be part of the product journey.
What do you dislike about the product?
Like to see more connections in DRATA to Cloud native systems that cover key cyber domains. Like to see more IAM capabilities and support for multiple IDP's. More insights into failed results within Raw test evidence and extrapolating that for analysis could be more mature.
What problems is the product solving and how is that benefiting you?
DRATA showed us what infrastructure controls failed, why they failed and how to remediate them. This will help us improve our overall SOC2 compliance posture as well as reduce cyber risk from misconfigured infrastructure
Great Experience with Drata.
What do you like best about the product?
East of use & compliance mapping!!!!!!!!
What do you dislike about the product?
Parent-Child relationship - LOOKING FOR THEM
What problems is the product solving and how is that benefiting you?
Multiple Compliance Initiatives and trying to simplify it with testing once and utilizing many standards.
Recommendations to others considering the product:
LOOKING FOR A TOOL THAT WILL MAKE YOUR COMPLIANCE AUDITS MORE LIKE BUSINESS AS USUAL AND NOT AN ANNUAL EVENT DRATA IS THE WAY TO GO
SOC 2 and HIPAA in 10 Days
What do you like best about the product?
We started on SOC 2 and HIPAA compliance journey when a large customer requested a SOC 2 Report. We had a month to get it done so we turned to Drata to see how fast and effectively we can attain SOC 2 Type 1 and HIPAA compliance.
Within 10 days we were able to achieve 98% compliance posture thanks to their automated system, template policies, and most importantly their excellent audit compliance and customer success teams who were there at every turn to answer questions, help us draft policies and guide us through the maze of regulations, controls, and developer support.
You heard it right! In 10 days we were ready for our auditor to start reviewing the documentation and prepping our drat SOC 2 Type 1 Report
Within 10 days we were able to achieve 98% compliance posture thanks to their automated system, template policies, and most importantly their excellent audit compliance and customer success teams who were there at every turn to answer questions, help us draft policies and guide us through the maze of regulations, controls, and developer support.
You heard it right! In 10 days we were ready for our auditor to start reviewing the documentation and prepping our drat SOC 2 Type 1 Report
What do you dislike about the product?
Need custom controls.
At the time of SOC 2 Type 1 journey, they did not have a way to create custom controls and apply automation. That would be a very helpful feature.
At the time of SOC 2 Type 1 journey, they did not have a way to create custom controls and apply automation. That would be a very helpful feature.
What problems is the product solving and how is that benefiting you?
We use Drata to comply with SOC 2 Type I & II, as well as HIPAA requirements.
Additionally, we use Drata to provide high-level monitoring for continuous compliance.
Additionally, we use Drata to provide high-level monitoring for continuous compliance.
Great new way to manage your compliance initiatives
What do you like best about the product?
I liked that for a compliance novice like me, Drata's system walks you through the various stages to get setup. They also have some great templates for documentation if your organization is starting from ground zero.
What do you dislike about the product?
At the time, it seemed like Drata didn't allow for the administrator to assign different compliance tasks or controls to different control owners. Although it's possible that they have added this feature now.
What problems is the product solving and how is that benefiting you?
Ultimately, Drata is helping to make it easier to ensure that we're staying compliant throughout the year, instead of just madly focusing it around audit-time. The monitoring is a great help.
Drata for YouAttest SOC2 Compliance
What do you like best about the product?
The on-going support. The willingneess to explain the product and contrast feature-to-feature with our environmen w/ our compliance manager.
What do you dislike about the product?
No main complaints at the moment. So good so far.
What problems is the product solving and how is that benefiting you?
Discover where we are in our SOC 2 Type 2 compliance and document what we have and fix what we don't.
Recommendations to others considering the product:
get your team involved .
Drata Feedback!
What do you like best about the product?
What I like most about drata is knowing my data and records are being protected by drata's program.
What do you dislike about the product?
What I dislike about drata, is some times I wonder if drata is looking through my private information
What problems is the product solving and how is that benefiting you?
The problems drata solves are mainly with customers. They believe their data will be protected by Us. Drata helps to confirm that thought.
Review from Taktikal
What do you like best about the product?
Ease of use and accessibility. Clear and easy interface.
What do you dislike about the product?
Nothing so far. Drata is not something our employees need to interact with daily.
What problems is the product solving and how is that benefiting you?
Policy compliance and ensuring we are all up to date and secure.
showing 281 - 290