Drata Resources

Access the latest blogs, webinars, customer stories, product enhancements, and more.

SOC 2 Points of Focus

Everything You Need to Know About the Revised Points of Focus for the SOC 2 Trust Services Criteria

In this article, our GRC team tells you everything you need to know the SOC 2 Points of Focus revisions and the impact to your organization if you are pursuing or currently maintain a SOC 2 compliance program.

Most Recent
List Shift Left Security

What is Shift Left Security and Why Should Businesses Incorporate It?

List 13 states with comprehensive privacy laws

These Are the 13 States With Comprehensive Consumer Privacy Protection Laws

Image - Attend Drataverse

5 Reasons to Attend Drataverse

Get compliance news and tips delivered straight to your inbox.


ISO 27001 checklist hero

ISO 27001 Checklist: 8 Easy Steps to Get Started

CCM 101 - Thumbnail

CCM 101: Introducing the Cloud Control Matrix

Illustraction depicting a GDPR compliance checklist

GDPR Compliance Checklist: How to Become Compliant

Cost of Not Being Compliant with Frameworks

The Cost of Non-Compliance

Risk Management

Drataverse Digital Risk and Reward

Control Meets Confidence at Drataverse Digital: Risk and Reward

6 Types of Risk Assessment Methodologies + How to Choose

6 Types of Risk Assessment Methodologies + How to Choose


Beginner’s Guide to Third-Party Risk Management


Penetration Testing vs. Vulnerability Scanning: What’s the Difference?

Drata News

Image - oak9 acquisition

May 02, 2024

Drata Acquires oak9 and Announces New Compliance as Code Capabilities

Gartner DCCA Market Guide Announcement

April 19, 2024

Drata Recognized in the 2024 Gartner® Market Guide for DevOps Continuous Compliance Automation Tools Report

Image - Drataverse Tony Hawk List

April 16, 2024

Drata Announces Tony Hawk As Drataverse Keynote Speaker

Image - Harmonize

April 09, 2024

Drata Bolsters Its Compliance Automation Platform with Harmonize.io Acquisition


Upcoming and new webinars.

Webinar KnowBe4

5 Internal Threats to Your Compliance Program and How to Solve for Them

SOC 2 Year 2 (and Beyond)

On-Demand Webinar: SOC 2 Year 2 (and Beyond)

Media - Webinar - Continuous Compliance

On-Demand Webinar: The Rise of Continuous Compliance

Media - Open API Common Use Cases

On-Demand Webinar: Dive Into Drata’s Open API: Common Use-Cases

Media - ISO 27001:2022 Webinar

On-Demand Webinar: What's New ISO 27001:2022

Latest Reports and Guides

FedRamp Guide

Cloud Service Provider's Guide to FedRAMP

2023 Compliance Trends Report 1

New Resource: 2023 Compliance Trends Report

SOC 2 Compliance Guide

New Resource: Start-to-Finish Guide on SOC 2 Compliance

Drata A Complete Guide to Cybersecurity Risk Management (1)

New Resource: Complete Guide to Risk Management

Automate Your Journey

Drata's platform experience is designed by security and compliance experts so you don't have to be one.


Easily integrate your tech stack with Drata.


Pre-map auditor validated controls.


Begin automating evidence collection.

Put Security & Compliance on Autopilot®

Close more sales and build trust faster while eliminating hundreds of hours of manual work to maintain compliance.