Governance, risk, and compliance is notoriously known as a manual and time intensive process often siloed and bogged down by paperwork, spreadsheets, and screenshots. The experience has since evolved, fueled by integrations with applications and systems to streamline operational tasks and implement automated, continuous monitoring. Drata's Open API brings in a new stage of that evolution, built on the user-friendly REST API standard and empowering customers with the ability to generate and manage API Keys, read and write data key endpoints, and connect the Drata platform with first party developers and third party solutions.
"For security teams in search of the latest and greatest, Drata's Open API is the ultimate resource. By combining the platform's capabilities with Tines' no-code automation, customers can unlock operational efficiencies to maximize protection while gaining more visibility and control over resources and data to stay compliant every step of the way," said Charlie Ardagh, Head of Partnerships at Tines.
Initial features of Drata's Open API include:
• Unlocking essential endpoints to pull evidence from controls and critical systems such risk assessment and vendor management seamlessly into the Drata platform even without a native integration
• Easy to use templates and automation tools such as Tines, Torq and Tray.io to build and extend on Drata's existing library of 75+ integrations, with additional partner expansions on the horizon
• Tracking of any key that customers create as a separate entity or event to ensure an audit trail
• Granular access and control with custom read and write permissions and expiration dates for each key
"Open API is a momentous step in our efforts of democratizing compliance and moving to a truly open platform," said Adam Markowitz, Co-Founder and CEO of Drata. "We're enhancing our customizable compliance offerings and further streamlining integrations into our customers' tech stacks to meet customers wherever they are in their GRC journey."