Drata, a prominent compliance automation platform, has recently announced its acquisition of oak9, a specialized cloud native security platform. This strategic move marks a significant advancement for Drata, enabling the integration of a new capability called Compliance as Code. This capability allows for continuous monitoring of compliance throughout the software development lifecycle, distinguishing Drata as the sole platform to do so before and after code deployment. The introduction of Compliance as Code addresses a critical need in the industry to detect and rectify compliance issues early in the development process, enhancing efficiency and reducing post-deployment remediation efforts.
The acquisition of oak9 and the launch of Compliance as Code cater directly to the needs of DevSecOps, GRC (Governance, Risk, and Compliance), and engineering teams. By embedding compliance checks into the development cycle, Drata empowers teams to proactively identify and mitigate potential compliance violations as they build and deploy software. This shift left approach not only improves security and code quality but also fosters a culture of continuous compliance within organizations.
Adam Markowitz, Co-Founder and CEO of Drata, emphasizes the transformative impact of Compliance as Code, stating that it streamlines compliance efforts and enhances collaboration across infrastructure and GRC teams. This integration positions Drata and oak9 at the forefront of cloud native security, setting a new standard for how organizations manage compliance throughout their software development lifecycle. Oak9’s Co-Founder and CEO, Om Vyas, echoes this sentiment, highlighting the validation of their mission to address security gaps in software development, now reinforced by their integration into Drata’s comprehensive platform.
Drata’s acquisition of oak9 not only expands its technological capabilities but also strengthens its position in the market by offering a unified solution for cloud native security and compliance. The combined expertise of both teams promises to deliver enhanced efficiency, visibility, and confidence to organizations preparing for audits and managing compliance requirements in dynamic cloud environments.
