17 years helping Canadian businesses
choose better software
Drata
What Is Drata?
Drata is a security & compliance automation platform that continuously monitors & collects evidence of a company's security controls, while streamlining end-to-end compliance workflows to ensure audit readiness. Drata helps customers expedite their compliance efforts through automated control monitoring & evidence collection so they don't have to do so manually. Supported frameworks include: HIPAA, SOC 2, ISO 27001, GDPR, PCI DSS, CCPA, ISO 27701, Microsoft SSPA, NIST CSF, & NIST 800-171.
Who Uses Drata?
Not provided by vendor
Not sure about Drata?
Compare with a popular alternative
Drata
Reviews of Drata
Average score
Reviews by company size (employees)
- <50
- 51-200
- 201-1,000
- >1,001
Find reviews by score
Alternatives Considered:
Drata - Best Compliance Tool for us
Comments: It has been very positive. We receive great support from our account rep and customer support is always helpful.
Pros:
I like that it was easy to set up, is customizable, Drata is always rolling out enhancements and new capabilities and that they are very receptive to feedback. We are able to integrate many applications and services and it gives us real-time monitoring into many of our controls and tests.
Cons:
That they do not offer a HITRUST framework out of the box. You are able to manually upload it and map controls, but it is time consuming. With the way HITRUST works, it was okay in the end.
My Review of Drata
Pros:
I like the policy and risk management features With this software, handling compliance matters is easy more so CPI compliance.
Cons:
With Drata, we have been able to deal with all our compliance and risk management issues.
Function for Soc2 checklist
Pros:
Drata makes it easier to go through the Soc2 checklist of items and ready for the audit period! Standard templates for Policies, daily checks, audit questionnaires!
Cons:
Some things can take a bit to find and figure out, but customer success team is helpful!