Trusted, the Drata Blog

Your hub for the latest security and compliance resources, updates, and expert insights. A simplified journey to compliance starts here.

SOC 2 policies

12 Commonly Recommended Security Policies for SOC 2

When it comes to SOC 2, implementing clear policies can improve internal processes, streamline your audits, and build trust with your customers.

Most Recent
Drata + AssuranceLab

Why AssuranceLab Joined Drata’s Auditor Alliance

Asset - Compliance Uncomplicated - Nemean Services

Compliance Uncomplicated Episode 5: An InfoSec Perspective to Digital Security Success With Nemean Services

Orchestration vs. automation

IT Automation vs. Orchestration: What's the Difference?


SOC 2 Guide List Image

SOC 2 Compliance: A Beginner's Guide

What Is Continuous Compliance

What Is Continuous Compliance? + How To Achieve It

What is fintech compliance

What is Fintech Compliance? + Its Major Risks

SOC 1 vs SOC 2

SOC 1 vs. SOC 2: What Are the Differences Between These Reports?



How to Build a Cybersecurity Incident Response Plan


Risk Management Framework (RMF): Overview + Best Practices

Creating + Maintaining a Vendor Management Policy

Creating + Maintaining a Vendor Management Policy


What is an Information Security Management System? + How to Implement

Product Updates

Media - Drata Workspaces

Introducing Drata Workspaces for Complex Compliance Needs


Managing Compliance and Risk in One Location with Drata

Media - Drata Translation and Localization

Compliance Automation in French, Spanish, and German

Custom-Frameworks-Map-Controls-to-AP-tests-Graphics Customer-Frameworks-Map-Controls-to-AP-tests-Graphics-1200-x-628-Blog-Header-Alt-2048x1073

Introducing Custom Frameworks + Mapping Automated Tests to Any Control

News and Events

George Bonser Drata Update@3x

Going Global: Drata Welcomes George Bonser as the VP of Sales in EMEA

Media - G2 Winter 2023

Drata Grabs Top Spots in Winter 2023 G2 Reports

Drata Series C Blog Hero Image

Announcing Drata’s Series C

Drata + AWS Thumbnail

Drata Amplifies AWS Partnership With ISV Accelerate Program and Foundational Technical Review

Brand Refresh Announcement (1)

The Next Phase of Drata

The Latest Resources


SOC 2 Guide List Image

SOC 2 Compliance: A Beginner's Guide

SOC 2 compliance means having controls in place to meet industry standards for security, privacy, and more. Learn how to become compliant.


Containers and Kubernetes Why DevSecOps is Critical to Success

Containers and Kubernetes: Why DevSecOps is Critical to Success

While containerization is certainly not without risks, the path towards a more secure environment starts with DevSecOps on day one.


BLOG-ISO-27001 -A-Beginners-Guide

ISO 27001: A Beginner’s Guide

Starting your journey to ISO 27001 compliance? Here's an easy-to-follow guide to get you on the right track.

Automate Your Journey

Drata's platform experience is designed by security and compliance experts so you don't have to be one.


Easily integrate your tech stack with Drata.


Pre-map auditor validated controls.


Begin automating evidence collection.

Put Compliance on Autopilot

Close more sales and build trust faster while eliminating hundreds of hours of manual work to maintain compliance.