Comparison Buyer's Guide

Executive SummaryUpdated on May 16, 2023
 

Categories and Ranking

Drata
Ranking in Compliance Management
7th
Average Rating
8.6
Number of Reviews
2
Ranking in other categories
No ranking in other categories
Vanta
Ranking in Compliance Management
6th
Average Rating
8.4
Number of Reviews
5
Ranking in other categories
Compliance Consulting (2nd), Data Governance (20th)
 

Mindshare comparison

As of July 2024, in the Compliance Management category, the mindshare of Drata is 8.6%, down from 23.8% compared to the previous year. The mindshare of Vanta is 12.3%, down from 28.6% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Compliance Management
Unique Categories:
No other categories found
Data Governance
1.8%
 

Featured Reviews

reviewer2509113 - PeerSpot reviewer
Jul 9, 2024
Achieves both SOC 2 and ISO 27001 compliance with improved security posture
Drata improved our security posture by ensuring that all our laptops were encrypted and all our production environments were validated with MFA access. We tracked all our Jira tickets to ensure timely remediation. Going through SOC 2 compliance, we still had to perform other tasks like external pen testing, which we achieved, and document it. We also developed tabletop exercises, which were conducted annually, and performed disaster recovery testing on the database. All this was tracked in Drata in real-time, allowing us to quickly identify and address issues, such as TLS encryption problems. Drata helped us publish our ISO and SOC reports, which was essential for the acquisition. The challenge now is whether Drata can scale up to meet the needs of a larger company. Drata is excellent for startups and small—to medium-sized companies but may face challenges in larger organizations with multiple environments.
Stefan Rusu - PeerSpot reviewer
Nov 1, 2023
Helps to achieve ISO 27001 compliance with automated checks
Vanta helps us to achieve ISO 27001 compliance.  The product has provided automated security controls for our cloud provider. It helps to automate security checks. Vanta offers a list of things that can be done to achieve ISO 27001 compliance.  The tool's most valuable feature is automated tests.…

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Drata helped us publish our ISO and SOC reports, which was essential for the acquisition. The challenge now is whether Drata can scale up to meet the needs of a larger company, which already has tools like Intune to enforce laptop encryption. Drata is excellent for startups and small—to medium-sized companies but may face challenges in larger organizations with multiple environments."
"It helps us track the compliance of the components listed in our partner's directory. We can also check if the password manager, XML, and three log policies have been properly implemented on the desktop."
"Task management and vendor assurance are the most valuable features. It is also an easy tool to use."
"The most valuable feature of Vanta would be the time savings from the automation and the continuous compliance monitoring once set up."
"The product has provided automated security controls for our cloud provider. It helps to automate security checks. Vanta offers a list of things that can be done to achieve ISO 27001 compliance."
"The most valuable feature of Vanta is its prebuilt control frameworks."
 

Cons

"The solution is quite costly."
"One of the challenges with Drata is that if you're paying for a subscription to ISO 27001, you must undergo a risk assessment. You should have access to all necessary modules on the platform to achieve your compliance posture and certification."
"There is a delay with customer support and they are unsure of the answers we need."
"The main area for improvement in Vanta is the user interface's refresh rate."
"Some of the tool's automated tests do not work the way it should."
"Currently, Vanta's user access review module is still in development, and we've been giving them continuous feedback to help them improve that."
"Scalability could be improved."
 

Pricing and Cost Advice

Information not available
"Vanta is expensive."
report
Use our free recommendation engine to learn which Compliance Management solutions are best for your needs.
792,098 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
23%
Financial Services Firm
8%
University
7%
Real Estate/Law Firm
6%
Computer Software Company
21%
Financial Services Firm
10%
University
7%
Retailer
5%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
No data available
 

Questions from the Community

What needs improvement with Drata?
The solution has a latency of three to five minutes. Also, the solution is quite costly.
What is your primary use case for Drata?
I was working on a project that required using ROC tools and SOC 2 compliance. To address this, we integrated with the Drata tool to reduce vulnerabilities in the infrastructure and address other l...
What advice do you have for others considering Drata?
It would be helpful if the solution could provide screenshots to illustrate the steps outlined. Additionally, provide a day-by-day breakdown of the tasks, addressing potential loopholes that users ...
What do you like most about Vanta?
The most valuable feature of Vanta is its prebuilt control frameworks.
What needs improvement with Vanta?
The main area for improvement in Vanta is the user interface's refresh rate. Sometimes, after satisfying a control, the dashboard may not immediately update, requiring multiple refreshes for accura...
 

Comparisons

 

Learn More

 

Overview

 

Sample Customers

Information Not Available
Care Directives, Shortcut , Nayya, Heizenrader, Treasury Prime
Find out what your peers are saying about Wiz, Microsoft, Lacework and others in Compliance Management. Updated: June 2024.
792,098 professionals have used our research since 2012.