Drata
Drata is a security and compliance automation platform that continuously monitors and collects evidence of a company's security controls, while streamlining workflows to ensure audit-readiness. Key features: - Automates evidence collection and control testing across 20+ compliance frameworks like SOC 2, ISO 27001, HIPAA, GDPR, PCI DSS, NIST CSF, and more. - Integrates with 180+ cloud services and tools to centralize evidence from across an organization's tech stack. - Provides pre-mapped controls and requirements validated by auditors. - Streamlines workflows for audit preparation, evidence review, and audit management. - Offers customizable frameworks to meet unique business requirements. - Enables continuous compliance monitoring and real-time compliance posture visibility.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
A standalone Python script that audits system configurations against CIS Hardening Benchmarks to assess compliance readiness without requiring installation or dependencies.
A tool for achieving and proving compliance with NIST 800-171 and CMMC cybersecurity requirements
A data-driven OT risk management platform that uses digital twin technology and breach simulations to assess cybersecurity risks, optimize mitigation strategies, and ensure compliance with industry standards.
ISO2HANDLE is a powerful software that provides a total solution for Q&R professionals, trusted by over 50,000 users and 750+ organizations worldwide.
A Microsoft Word template library for implementing industrial information security management systems with documentation for policy, risk management, business continuity, and incident handling.
PINNED
Proton Pass is a cross-platform password manager that provides encrypted storage, password generation, and security monitoring features with integrated 2FA and dark web monitoring capabilities.
NordVPN is a commercial VPN service that encrypts internet connections and hides IP addresses through a global network of servers, featuring integrated threat protection and multi-device support.
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.