⚠️ Select your experience
The steps to manage your Dashboard overview depend on your interface version. Select a link to skip to the instructions for your version.
Customers who joined Drata on or after Feb 24, 2026 are automatically on the New Experience.
Instructions for the New Experience ⬇️
The Dashboard provides a high-level view of your organization’s compliance posture. It brings together readiness, alerts, trends, and tasks so you can quickly identify where attention is needed.
Prerequisite
Required Drata Roles: Admins, Information Security Leads, Workspace Managers, and DevOps Engineer.
Ensure that your role does not have read-only permissions enabled
Each Dashboard is specific to the workspace you have selected.
Readiness overview
View progress toward compliance for each framework. From the Readiness overview section, you can:
View the percentage of controls that are ready for each framework
View remaining controls
Track progress using a visual progress bar
Frameworks with 0% readiness do not appear on the Dashboard. Once progress is made, the framework card is displayed.
Select a framework card to be redirected to the Controls page, with the following filters applied:
In scope controls
The selected framework
On the Controls page, you can view which controls are not ready, address gaps, and improve your compliance readiness for that framework.
ℹ️ What does “in-scope controls” mean?
ℹ️ What does “in-scope controls” mean?
In-scope controls are the controls your organization has designated as applicable to a specific compliance framework and that Drata actively tracks for readiness, evidence, and audit progress.
A control is in scope when it:
Is marked In Scope in Drata
Is mapped to a specific compliance framework
Is actively tracked for readiness, evidence, and/or monitoring
Contributes to readiness percentages
Controls that are out of scope:
Do not affect readiness calculations
Are not required for audit purposes
Are intentionally excluded based on your organization’s scoping decisions
Notifications
Review high-priority items that require attention to gain or maintain compliance.
Notifications may include:
Auditor messages
Trust Center alerts
Other time-sensitive compliance items
Select a notification to navigate directly to the related area.
Test trends
The Test trends widget shows the number of failing tests and how that number has changed over the last seven days.
The percentage reflects the relative increase or decrease compared to the previous period. Large percentage changes can occur when the number of failing tests was previously low.
From this widget, you can:
Select a category to view failing tests in that area, ordered by most recent failure
Select a test to open its detail page on the Monitoring page.
Policies status
The Policies widget summarizes the current state of all policies in your organization and highlights where action may be needed. It displays:
The total number of policies
How policies are distributed across key lifecycle stages
What each status means:
Active: Policies that are currently in effect for compliance and do not require immediate action.
Needs approval: Policies that have been created or updated but are awaiting approval.
Ready to publish: Policies that have completed review and are ready to be published.
Renews soon: Policies approaching their renewal date and requiring review.
Past due: Policies that have exceeded their renewal date and require immediate attention.
Select the widget to be redirected to the Policies page.
Vendor risks
Assess your current vendor risk posture. The Vendor Risks widget displays a donut chart representing current vendor risk distribution.
What each status means:
High: Vendors with risk indicators that may require immediate review or remediation.
Moderate: Vendors with identified risk that should be monitored or reviewed.
Low: Vendors with minimal identified risk based on current assessments.
None: Vendors with no identified risk indicators based on available data and configuration.
Select the widget to be redirected to the Vendors page.
Connections
Monitor the health of your integrations. The Connections widget highlights misconfigurations that may affect monitoring or compliance.
Select the widget to be redirected to the Connections page.
Personnel
Track user compliance status across your organization. The Personnel widget shows:
The number of users who are currently non-compliant
The total number of users in the workspace
Select the widget to be redirected to the Personnel page and review individual user compliance details.
Tasks
Stay on top of compliance tasks and deadlines. The Dashboard includes:
Task Forecast: Shows trends for completed and incomplete tasks month over month.
Task List: Shows upcoming and overdue items such as policy renewals, evidence renewals, and vendor reminders.
Select a task to open the relevant item and take action.
Notes and troubleshooting
Workspace-specific: Dashboard data reflects only the currently selected workspace.
Missing frameworks: Frameworks appear on the Dashboard only after progress is made (greater than 0% readiness).
Data freshness: Widgets reflect the most recent monitoring and integration syncs.
Instructions for the Classic Experience ⬇️
The Compliance Dashboard brings together the most essential alerts, trends, and tasks needed to give a holistic view of your organization’s risk and compliance posture.
Before Diving In
Each compliance dashboard is specific to each workspace.
HERE'S HOW
The dashboard is composed of various elements, each of which provides a high-level summary of the respective modules and provides a direct link into each area of the application.
Readiness overview
The Readiness overview of your frameworks provides a high-level view of the health of your compliance frameworks with the visual status bar, percentage ready, and the remaining controls still requiring attention for that specific framework. The remaining controls value is based on the number of non-ready in-scope controls and will be a subset of the total in-scope mapped controls for the referenced framework.
Note: You may have more frameworks enabled than those shown on your Dashboard. The Dashboard will not show frameworks that are still 0% ready. Once you begin to make progress on a framework’s readiness, its card will show on the Dashboard.
When selecting a framework card, you are redirected to the Controls In Scope page with the following preselected filters: “Not Ready” and the selected framework.
The Controls In Scope page highlights the in-scope controls that are needed to satisfy the framework and controls that should be mapped to other frameworks.
Notifications
The Notification section surfaces tasks required to gain or maintain compliance. Whether it is an auditor message or a Trust Center alert, the highest-priority items are always one click away.
Select the notification to go to the respective detail page of the audit or policy.
Test Trends
The Test Trends widget displays the status of your company’s monitoring tests each week. The “Total failing tests” line displays the total number of failing tests with the percentage change since seven (7) days prior. For example, if you had two failing tests seven days ago and you have remediated them both, your test trend will be down 200%.
Further down, you can review each individual category of tests.
When you select a category, the individual failing tests are displayed, ordered by the most recently failed test first. Each newly failed test is denoted by a red dot next to the “First Failure” date. The red dot represents a newly failing test within the last seven days. If a test fails, is fixed, and fails again, the most recent failure will be shown as the “First Failure” date. When you select a test, you are directed to the specific test detail page.
Policy Status
The Policy Center widget displays a high-level split of the various statuses of policies as they progress from creation to approval to renewal.
If you select the Policy Status card, you are redirected to the Policy Center to take any necessary actions.
Vendor Risks
The Vendor widget shows the makeup of your organization’s current vendor risk posture. Initially, the widget provides an at-a-glance risk donut chart showing the high-level breakdown of vendor risk.
When you click into the Vendor widget, you are sent to the vendor detail page to view all, reconfigure, send a questionnaire, set a reminder to review, and more within the Vendor Management module.
Connections
Continuous monitoring is the fuel that powers Drata’s engine. Configuring integrations with everything from cloud infrastructure to IdPs allows Drata to use the incoming data to automate many of the tedious and time-consuming tasks involved in maintaining compliance.
While providing a quick view of any integration misconfiguration or error, it also acts as a button to bring you directly to your Connections page.
Personnel
The Personnel widget shows a quick view of the total number of users and how many of those are non-compliant. When you select the Personnel widget, you are sent to the Personnel page.
Task Forecast and Task List
View and manage upcoming compliance tasks directly from the Dashboard. The widget shows trends month over month of the volume of completed (and not completed) tasks for the current month and the following three months.
The list portion displays policy renewals, evidence renewals, as well as vendor reminders that have a due or renewal date. When you select any of the tasks, you are directed to the respective task’s detail page.