PCI DSS is now live in Drata. Learn More

Drata Resource Center

Receive the latest news, webinars, updates, articles, and helpful curated content

CASE STUDY

Why VIVIO Health Banked on Automation for SOC 2 Type 2 Compliance

A case of how Drata reduces the time and cost associated with compliance

CASE STUDY

Why Immediation Chose Drata for ISO 27001 Certification

A case of how an intuitive platform can expedite the compliance journey

CASE STUDY

How Drata Helped Bramble Understand and Achieve SOC 2 Compliance

A case of a startup achieving compliance to ensure scalability

CASE STUDY

Why Lumiio Chose Drata to Earn and Maintain Stakeholder Trust

A case of how automation can save on resources and compliance costs while enhancing security programs

CASE STUDY

How SOC 2 Compliance Sets Weld Up for Long-Term Success

A case of investing in compliance early for a smoother journey

CASE STUDY

How Emerge Got a Head Start on SOC 2 Compliance with Drata

A case of why compliance is a must when dealing with enterprise customers.

CASE STUDY

How Chameleon Leveled-Up Their Security Program with SOC 2 Type 2 Compliance

A case of building confidence in processes, tooling, and evidence required for standing up a strong security posture. Learn how Chameleon…

CASE STUDY

How Runway Propelled Its Business with SOC 2 Compliance

A case of a small team on the fast track to a strong security posture. Runway makes it easy for teams to coordinate their mobile app releases.

CASE STUDY

How Axero Solutions Achieved SOC 2 Compliance in Record Time

A case of an intranet software company using Drata to augment their compliance program

CASE STUDY

Why HeadsUp Pivoted to Drata from a Legacy Player to Achieve SOC 2 Type 2

A case of how Drata’s continuous monitoring eased the heavy lift of evidence collection for a new company

CASE STUDY

How Trust & Will Prioritized Security While Doubling in Size

A case of doing right by your customers and their data, even with competing priorities and massive growth

CASE STUDY

Why Ariglad Chose Drata to Achieve SOC 2 Type 2 and Reach New Customers

A case of Drata’s all-in-one platform serving as the perfect solution for a user-friendly compliance journey

CASE STUDY

How Air Used Compliance Automation to Sell to Enterprise

A case of an early-stage company being committed, resourceful, and open to wearing many hats in order to successfully meet SOC 2

CASE STUDY

How Pilot Used SOC 2 to Prove Their Commitment to Security

A case of a company obtaining compliance 4x faster by working with an automation solution

CASE STUDY

How Pequity’s Partnership Approach Helped Ensure Successful SOC 2 Compliance

A case of working closely with Drata’s customer support team to achieve SOC 2 and kickstart company security efforts

CASE STUDY

How Clair Embraced Drata to Gain and Maintain SOC 2

A case of leveraging a Drata’s features, functionality, and customer support to quickly and efficiently receive a SOC 2 report

CASE STUDY

How FinTech Company Zūm Rails Quickly Obtained SOC 2

A case of a financial SaaS copmany using Drata to preemptively focus on continuous compliance in order to meet high stakes industry demands

CASE STUDY

How Demoflow Used Drata to Get Enterprise-Ready Quickly

A case of founders who know a thing or two about risk, and who understand the importance of mitigating risk for their customers

CASE STUDY

How Iteratively Got Their SOC 2 Fast with Drata

A case of how starting early with SOC 2 can ensure things are set up to scale securely from day one

BLOG ARTICLE

Drata Welcomes Former Looker and Google Leader: Simanta Chakraborty

We asked Troy Fine, an experienced SOC 2 auditor and senior manager at Schneider Downs, about the most common mistakes he sees companies make before and during their SOC 2 audit…

BLOG ARTICLE

Introducing Automated PCI DSS Compliance

We asked Troy Fine, an experienced SOC 2 auditor and senior manager at Schneider Downs, about the most common mistakes he sees companies make before and during their SOC 2 audit…

BLOG ARTICLE

What is a HIPAA Violation? + Common Mistakes and Fines

We asked Troy Fine, an experienced SOC 2 auditor and senior manager at Schneider Downs, about the most common mistakes he sees companies make before and during their SOC 2 audit…

BLOG ARTICLE

3 Reasons Why Startups Need SOC 2

We asked Troy Fine, an experienced SOC 2 auditor and senior manager at Schneider Downs, about the most common mistakes he sees companies make before and during their SOC 2 audit…

BLOG ARTICLE

Drata’s 2021 Year in Review

Last week marked six months since launching Drata out of stealth, and today we’re proud to announce our $25M Series A round led by GGV…

BLOG ARTICLE

SOC 2 Audits: What Your Organization Can Expect From Start to Finish

We asked Troy Fine, an experienced SOC 2 auditor and senior manager at Schneider Downs, about the most common mistakes he sees companies make before and during their SOC 2 audit…

BLOG ARTICLE

Introducing Automated HIPAA Compliance

We asked Troy Fine, an experienced SOC 2 auditor and senior manager at Schneider Downs, about the most common mistakes he sees companies make before and during their SOC 2 audit…

BLOG ARTICLE

Drata Named a Leader in Three G2 Winter 2022 Grid Reports

Last week marked six months since launching Drata out of stealth, and today we’re proud to announce our $25M Series A round led by GGV…

BLOG ARTICLE

7 Myths about SOC 2 Compliance

We asked Troy Fine, an experienced SOC 2 auditor and senior manager at Schneider Downs, about the most common mistakes he sees companies make before and during their SOC 2 audit…

BLOG ARTICLE

How to Choose the Right SOC 2 Audit Firm

We asked Troy Fine, an experienced SOC 2 auditor and senior manager at Schneider Downs, about the most common mistakes he sees companies make before and during their SOC 2 audit…

BLOG ARTICLE

Integration: Drata App Approved by Okta

Last week marked six months since launching Drata out of stealth, and today we’re proud to announce our $25M Series A round led by GGV…

BLOG ARTICLE

How ClickUp and Drata Help Streamline SOC 2 Compliance

We asked Troy Fine, an experienced SOC 2 auditor and senior manager at Schneider Downs, about the most common mistakes he sees companies make before and during their SOC 2 audit…

BLOG ARTICLE

Drata Among Founding Supporters of Open Finance Data Security Standard (OFDSS)

Last week marked six months since launching Drata out of stealth, and today we’re proud to announce our $25M Series A round led by GGV…

BLOG ARTICLE

Drata Reaches Unicorn Status with $100M in Series B Funding

Last week marked six months since launching Drata out of stealth, and today we’re proud to announce our $25M Series A round led by GGV…

BLOG ARTICLE

Drata on its $100M Series B Led by ICONIQ Growth

The role of a company’s Chief Information Security Officer has evolved over the past few years…to put it lightly…

BLOG ARTICLE

SOC 2+ HIPAA: What You Need to Know

What is HIPAA compliance? How can you get started? And how much overlap does it have with SOC 2? Here are some answers.

BLOG ARTICLE

HIPAA Compliance: a Beginner’s Guide

What is HIPAA compliance? How can you get started? And how much overlap does it have with SOC 2? Here are some answers.

BLOG ARTICLE

Score Your Company’s SOC 2 Readiness

Is your company ready to accelerate its SOC 2 Readiness? Use Drata’s dynamic readiness checklist to score your SOC 2 readiness level and understand what getting your SOC 2 report entails…

BLOG ARTICLE

SOC 2 Type 2: A Beginner’s Guide

When a prospective customer asks for a SOC 2 report, the first thing you need to know is this: Do they require a Type 2 or will they accept a Type 1 prior to completing a Type 2? Both reports will prove compliance with security best practices, but there are some key differences you’ll need to plan for.

BLOG ARTICLE

SOC 2 Audit Exceptions: What Are They and How to Avoid Them

You’re getting ready for your first SOC 2 audit. You’ve got your controls in place and have selected an audit firm to partner with. Now, it’s time for your observation period—and you’re concerned about exceptions.

BLOG ARTICLE

Silicon Valley CISO Investments: Supporting Security Startups Through an Expert Lens

The role of a company’s Chief Information Security Officer has evolved over the past few years…to put it lightly…

BLOG ARTICLE

The Beginner’s Guide to SOC 2 Criteria and the Controls you Need in Place to Satisfy those Criteria

What is a SOC 2 criteria or requirement? What is a control and which ones do we need to implement? Learn from Drata experts on how to design and implement the right controls to satisfy the SOC 2 requirements and ace your audit…

BLOG ARTICLE

Drata Raises $25M Series A Led by GGV Capital to Support Rapid Growth of its Next-Gen Compliance Automation Platform

Last week marked six months since launching Drata out of stealth, and today we’re proud to announce our $25M Series A round led by GGV…

BLOG ARTICLE

SOC 2 vs. ISO 27001

It’s no surprise that security frameworks like SOC 2 and certifications like ISO 27001 are becoming ever more important for any company that handles customer data (which is most of us these days), but what’s the difference…

BLOG ARTICLE

The Top 9 Mistakes Companies Make With SOC 2 Compliance

We asked Troy Fine, an experienced SOC 2 auditor and senior manager at Schneider Downs, about the most common mistakes he sees companies make before and during their SOC 2 audit…

BLOG ARTICLE

What is a SOC 2 Report & Does My Company Need One?

A SOC 2 report is a CPA-certified attestation that your company meets security standards. Here’s what that means and why it matters…

BLOG ARTICLE

SOC 2 Automation Software: What it is and Why You Need it

What is SOC 2 automation software and why do you need it? Companies today are putting SOC 2 on autopilot. Here’s how they’re doing it…

BLOG ARTICLE

SOC 2 Compliance: A Beginner’s Guide

SOC 2 compliance means having controls in place to meet industry standards for security, privacy, availability, processing integrity, and confidentiality. Here’s everything you need to know…

BLOG ARTICLE

SOC 2 Guide: 7 Pro Tips to Streamline Your SOC 2

The 7 things SaaS companies can do to get SOC 2 audit-ready in as little as 2 weeks. Embarking on a SOC 2 process can be overwhelming. Typically when SOC 2 becomes a priority, it’s something you needed yesterday…

BLOG ARTICLE

Drata raises $3.2M from Cowboy Ventures, Leaders Fund, SV Angel, and Prominent Angels to Automate SOC 2

My team and I are thrilled to introduce Drata to the world, and announce our $3.2M seed round led by Cowboy Ventures with participation from…

BLOG ARTICLE

Answers to the 7 Most Frequently Asked Questions About SOC 2

SOC 2 reports provide information about how effectively a service provider manages the security, privacy, and integrity of sensitive…

BLOG ARTICLE

5 Reasons Why You Do Not Need a SOC 2 Report

You’ll find plenty of content online regarding the benefits of SOC 2, but here’s the truth about why you don’t need to worry about it…

BLOG ARTICLE

Earning the Trust of Your Customers and Prospects with SOC 2

A SOC 2 report allows your company to show that it’s operating in a secure manner so you can win and retain more business…

BLOG ARTICLE

The Top 14 Security Policies Your Company Needs for SOC 2

During a SOC 2 examination, an auditor reviews that your company has documented policies and procedures relating to your information security (“infosec”) program…

Webinar

Ask an Auditor With Troy Fine

Troy Fine, auditor turned resident Drata compliance advisor, will answer all of your questions about SOC 2 and compliance

Webinar

A Unicorn’s Take on Prioritizing Security & Compliance

Learn how Clearco (formerly Clearbanc), the “pay as you grow” financing pioneer is empowering their team and leveraging automation to meet SOC 2, streamline processes, and prioritize security alongside unicorn-level…

Webinar

Building a Security & Compliance Roadmap: The Why & How for Health Tech Companies

Get Jarvis Analytics’ playbook on how they leveraged automation to set up a foundational security program, without depleting in-house engineering resources.

Subscribe & receive the latest content.

Subscribe & receive the latest content.

PUT SOC 2 ON AUTOPILOT

Get Started Today

Close more sales and build trust faster while eliminating the hundreds of hours of manual work that used to go into maintaining your SOC 2 report and ISO 27001 certification.

JOIN THE HUNDREDS OF COMPANIES THAT TRUST DRATA
Trusted by the best:
joe-reeve2
Case Study:

Learn how Iteratively used Drata to get their SOC 2 report faster than most thought possible, and now monitor their security & compliance posture…