Week of November 4

Learn about the latest and newest features and updates every week. You can also visit the Roadmaps and Ideas page on our app to view upcoming releases or request new ideas.

Most Requested Features

AWS and AWS Organizational Units Connections

We’ve launched a brand-new, full-page experience for AWS and AWS Organizational Units connections, streamlining the integration process and reducing the chances of misconfigurations. The initial landing page details important information about AWS connections in Drata, including supported features, controls, and monitoring tests utilizing the API. Here are some solution highlights:

• Improved setup instructions: A dedicated full-page setup experience replaces the previous AWS connection drawer, providing clearer, more comprehensive guidance.

• Troubleshooting information: Common connection misconfigurations are highlighted directly in the wizard, reducing setup and syncing issues.

• Permissions and resources: Required permissions and queried resources are displayed upfront.

Learn more at AWS Connection Guide.

Automatic Test Runs

Note: This feature is only for Identity, Infrastructure, Version Control, and Ticketing connections. For connections involving data sync, tests are run on the synced data to ensure accuracy and compliance.

For the supported connections, Drata now automatically initiates tests as soon as a connection is successfully established. This automation allows you to instantly experience the value of Drata’s compliance monitoring without waiting for the nightly autopilot or initiating tests manually. After setting up the connections, you can view the number of tests based on your enabled frameworks and can easily access results directly in the Monitoring page.

DCF Control Mappings available in Risk Library for Risk Assessment

For those on Risk Assessment, you now have access to DCF control mappings within the Risk Library. This addition provides much-needed guidance as  you ramp up your risk assessments to meet compliance requirements. Here are solution highlights:

• Risk Library with DCF Control Mappings: The Risk Library now includes DCF controls mapped directly to risks.

• Flexible Updates: You can reference the Risk library to update existing risks or remove and re-add risks from the library as needed.

Note: This release adds DCF control mappings to the Risk Library only. No changes have been made in the Risk Register.

Organizational Rulesets Access

With the new changes in GitHub, Drata now supports GitHub Organizational and Repository Rulesets with READ access only. For more information, refer to our GitHub Organizational Rulesets help article.

Latest Improvements

Help article updates

• Example Evidence for Not Monitored Controls (ISO 27001)

• Example Evidence for Not Monitored Controls (SOC 2)

• Multi-Device Support

• Policies to Framework Summary

• Workspace ONE MDM Connection

• BitBucket Connection

• AWS CodeCommit Connection

• GCP (Google Cloud Platform) Connection

• Test 299: AWS Application Load Balancer Redirects HTTP to HTTPS

• Test 297: AWS Classic Load Balancer Unhealthy Hosts Monitored

• Risk management articles:

  • Risk Management Custom Risk Scoring & Legend

  • Risk Management Insights

  • Risk Management overview

  • Risk managers overview

  • Risk Treatment Types