Drata, the continuous security and compliance automation platform, debuted the first look of a new capability to streamline and expedite security questionnaires at the company’s annual user conference, Drataverse.
Drata AI Questionnaire Automation was showcased live to over 600 governance, risk, and compliance (GRC), IT, and cybersecurity professionals.
AI Questionnaire Automation
During sales cycles, organisations of all sizes often spend countless hours manually crafting replies to hundreds of questions to demonstrate a strong security posture, a process that demands extensive collaboration across multiple teams. The introduction of AI Questionnaire Automation significantly minimises this labour-intensive process by parsing and extracting questions, generating responses using existing data within the Drata platform, and allowing users to review, edit, and approve the AI-generated answers.
As a result, organisations can expedite sales cycles and drive revenue growth by minimising delays in the security review process, while also scaling efficiently without sacrificing the quality of responses.
Key features
- Automated Questionnaire Processing: Simply upload security questionnaires in formats like .xls, .csv, .pdf, and more, while Drata AI parses the document and extracts the questions automatically.
- AI-Driven Answer Generation: Using a rich knowledge base comprising information from the organisation’s Drata instance, the AI generates suggested responses to the extracted questions.
Reducing sales friction
“AI Questionnaire Automation empowers our customers to build trust quickly and efficiently,” said Brian Elmi, Drata's Senior Vice President of Product Management.
“With this new capability, businesses can respond to security questionnaires in minutes instead of days, reducing friction in the sales process and allowing teams to focus on their core operations.”
Compliance as Code
The company will introduce new releases and enhancements to its risk management capabilities
Drata also announced Compliance as Code is rolling out to customers starting today, enabling even more GRC teams to identify and remediate compliance gaps during code development.
The company will also introduce new releases and enhancements to its risk management capabilities, including residual risk scoring, vendor intake with AI summary, risk owner notification, and Workspace support, as well as the ability to manage multiple Risk Registers in Workspaces.
Drataverse 2024
Drataverse 2024, held at Pier 27 in San Francisco, was designed to bring industry pioneers together to collaborate and shape the future of GRC.
This year’s “Chart Your Course” theme featured keynote presentations as well as 20 panel discussions and interactive sessions from A-LIGN, Eden Data, MJD Advisors, ASAPP, and Class Technologies among others, fostering discussions on navigating the complex GRC landscape.
