Reviews from AWS Marketplace
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
External reviews are not included in the AWS star rating for the product.
An amazing ISMS solution that meets our needs
What do you like best about the product?
Drata provides a clear dashboard view of the frameworks we work towards, clear connections to controls, the capabilities of ownership and maintenance of out ISMS and risk management.
The supplier management section is also super helpful!
Implementation was easy and using the connections and integrations we were set up and running within two weeks.
The ability to be part of the roadmap and feedback to Drata using customer support really makes you feel part of a family.
When I log on to our system, Drata is one of the first applications I open and it stays with me all day.
The supplier management section is also super helpful!
Implementation was easy and using the connections and integrations we were set up and running within two weeks.
The ability to be part of the roadmap and feedback to Drata using customer support really makes you feel part of a family.
When I log on to our system, Drata is one of the first applications I open and it stays with me all day.
What do you dislike about the product?
The downside of Drata for me personally, is that it is that efficient, the moment any part of ISMS falls out of review I see the percentage score drop and this messes with my OCD!
What problems is the product solving and how is that benefiting you?
Single source of truth for our ISMS - this means all evidence is streamlined into one excellent platform.
This is making meetings easier and managment of our ISMS and risk mangagement much more time-efficient.
This is making meetings easier and managment of our ISMS and risk mangagement much more time-efficient.
- Leave a Comment |
- Mark review as helpful
Experience with drata
What do you like best about the product?
Drata gets the job done when it comes to compliance monitoring and audits. It was easy to implement and we use it daily. Support has always been top tier.
What do you dislike about the product?
It is a growing piece of software. Their software is still maturing.
What problems is the product solving and how is that benefiting you?
SOC 2 compliance was our primary use.
A helpful and reliable security management platform
What do you like best about the product?
I would say the structure of the platform is excellent, providing clear guidance for a company to manage its security issues comprehensively. Initially, we were not familiar with the security area, especially regarding how to periodically address security issues under the SOC2 and GDPR frameworks. Our customer success manager, Elizabeth John, is very nice and gentle. She has provided me with a wealth of instructions patiently and efficiently. I would recommend Drata to anyone needing to address security regulations.
What do you dislike about the product?
Drata is well-suited for those who really need to meet security regulations. Startups should carefully evaluate whether they have sufficient resources to commit, as once you begin implementing security regulations, it's not easy to stop and you should also expect a long-term commitment. Therefore, if you have a significant number of customers requiring this, it's advisable to proceed. Otherwise, carefully consider your starting point.
What problems is the product solving and how is that benefiting you?
Drata helps us meet the regulations of SOC2 and GDPR.
Great Product
What do you like best about the product?
Integrations and everything is in one place
Makes it easier to map frameworks
Makes it easier to map frameworks
What do you dislike about the product?
More flexibilty in connecting different sources for same things, e.g. policies can be stored in Google Drive, BambooHR, and another place.
What problems is the product solving and how is that benefiting you?
Helps us to prepare for the SOC2 audit and make it an easier & smoother process
Great GRC-automation platform
What do you like best about the product?
Drata's automation simplifies the lives of startup founders. We're using their platform to get certified by 3 different frameworks. It's very convenient that evidence uploaded to the platform is automatically mapped to controls across different frameworks. Their integrations are great and this is a huge time saver.
What do you dislike about the product?
Their onboarding could have been better. We were assigned a third-party firm to work with for 30 days and it didn't feel like their program was very basic and catered to companies that weren't already familiar with compliance.
What problems is the product solving and how is that benefiting you?
Helping us become SOC2 Type2, ISO27001, and GDPR compliant. We use their automated-GRC process to become compliant instead of working directly with auditors and going through a manual evidence collection process.
Straightforward tool - organize everything needed
What do you like best about the product?
Drata successfully automates internal control verification for audit initially and ongoing. It nearly does the job of a full time junior level GRC focused employee. Certainly makes my life easier - I use it at least every week. Also, you can re-scan on demand after you fix something, which is more than other tools I've used in the past can say. It's simple to implement on your cloud resources. Customer support is responsive and helpful from the initial engagement onward.
What do you dislike about the product?
Sometimes the error messages on why a given control is failing could be more explanatory. The platform takes about a week to learn to navigate but works well once you know how. It doesn't integrate with the most common ADP implementation but hopefully that will change soon.
What problems is the product solving and how is that benefiting you?
Gain initial SOC 2 compliance. We wouldn't be able to even come close this year were it not for Drata.
Great Platform for Enabling Constant Compliance
What do you like best about the product?
Drata enables "continuous compliance." This has shown itself to be very helpful in practice. When working on SOC2 at prior companies we would often find issues and gaps during the Audit or as we generated populations for the audit. Drata's constant checks for compliance allows us to show auditors a track record of continual work on our compliance journey and allows us to find and fix gaps and deviations without being already in the room in front of an auditor.
I also have had great experience with their customer support and their AI chatbot. The chatbot is able to understand our internal policies and procedures and generate adhoc answers to audit questions that pull from our actual policies. Customer support has also been able to go the extra mile to diagnose indepth issues with how their platform was interpreting our cloud setup and provide pointers on how to adjust our Azure settings to make them more secure.
I also have had great experience with their customer support and their AI chatbot. The chatbot is able to understand our internal policies and procedures and generate adhoc answers to audit questions that pull from our actual policies. Customer support has also been able to go the extra mile to diagnose indepth issues with how their platform was interpreting our cloud setup and provide pointers on how to adjust our Azure settings to make them more secure.
What do you dislike about the product?
Drata sometimes can feel like a game of "whack-a-mole." The graphs show a track record overtime per control and as a company grows it will get harder and harder to show "constant" compliance. Invariably some user is always going to be late on their training or an engineer will create an improper resource in the cloud and cause a permanant blemish on the record over time. I'm not sure how to make it work but being able to show constant forward progress would be more advantatageous versus showing all the red marks where we failed for a day.
What problems is the product solving and how is that benefiting you?
Drata gives us a single pane of glass view of our security posture across all the tooling that we use accross the enterprise. Without Drata it would be impossible to go through the dozen pieces of our environment and ensure that our teams are following the policies and procedures that the company requires. Drata removes the embarrassment of having to find those defecits with the auditors in the room.
Drata Recommendation As Our Risk and Compliance Tool
What do you like best about the product?
It just makes our Risk and Complaince journey smooth and seamless. Ease of integration also with the staff. Lastly, the customer support is top notch.
What do you dislike about the product?
Honestly, nothing, just few observations around how some features can be added to it, but overall, it does what I expect it to do.
What problems is the product solving and how is that benefiting you?
Helping with the burden of compliance.
Pleasant experience so far
What do you like best about the product?
Ease of use, Good User experience, Detailed controls and reference guides, online support, ease of integration
What do you dislike about the product?
technical drata Issues are not resolved on time
What problems is the product solving and how is that benefiting you?
Ease of compliance processes and trcaking of controls and evidences
Solid compliance platform
What do you like best about the product?
The support is responsive and very helpful.
What do you dislike about the product?
The UI can be a little overwhelming and there's a bit of a learning curve.
What problems is the product solving and how is that benefiting you?
Before Drata, our evidence collection was manual and time-consuming. Drata integrates directly with many of our key systems and offers a centralized place to upload and update evidence. They also provide a network of inexpensive but good auditors.
showing 131 - 140