Skip to main content

Manage tasks in Drata

Learn how to track, create, complete, and manage automated and custom tasks in Drata to maintain compliance.

Updated yesterday

The Tasks page helps you track, create, and manage tasks that support your compliance posture. Use it to stay on schedule for policy renewals, control approvals, evidence reviews, vendor management, and risk-related activities.

Tasks page overview

The Tasks page shows a monthly timeline of tasks grouped by month and type.

  • Overdue tasks are highlighted in red.

  • Select any month to view detailed tasks.

  • Use filters to organize tasks by type, owner, or timeframe.

Tasks in Drata are created in two ways:

  • Automated tasks → Created by Drata when compliance events occur.

  • Custom tasks → Created manually by users.

If a task isn’t completed on time, it is marked as Past due until completed.

Automated tasks

Automated tasks are created by Drata. You can’t create these manually.

  • Policy renewals: Assigned to the policy owner to remind a owner of the renewal dates.

  • Control approvals: Assigned to control approvers when a control requires approval.

  • Evidence: Assigned to the evidence owner when evidence reaches its expiration or review date.

  • Vendors: Assigned to the vendor owner when a vendor review or update is due. In some cases, a vendor task may not have an assigned owner.

Custom tasks

Custom tasks are created manually by users. When creating a custom task, you choose the owner, due date, and recurrence.

Examples include:

  • General: General custom tasks you create, such as scheduling an internal audit, assigning training, or tracking a compliance review meeting.

  • Risks: Tasks you create and map to risks.

  • Controls: Tasks you create and map to controls.

Mapped tasks

Mapped tasks are custom tasks linked directly to a risk or a control.

  • Risk tasks: Created when you map a task to a risk. Selecting Review opens the Risk Management page. Only users with the Risk Manager role can view and manage these tasks.

  • Control tasks: Created when you map a task to a control. Selecting Review opens the Controls page.

You can create mapped tasks in two ways:

  • From the Tasks page, choose to map the task to a risk or control during creation.

  • From the Risk Management or Controls page, create a task in context. The task is automatically linked to that risk or control.

Creating, editing, and deleting custom tasks

To create a custom task:

  1. Go to the Tasks page and select Create task.

  2. Add a title and description.

  3. Assign a task owner.

  4. Set a due date.

  5. (Optional) Make the task recurring. Set how often it repeats and when it should end.

For existing tasks, you can:

  • Update details, owner, or due date.

  • Change recurrence settings.

  • Map the task to risks or controls.

  • Delete the task if it’s no longer needed.

Complete tasks

To complete a task:

  1. Go to the Tasks page.

  2. Expand the task to view details.

  3. If a checkmark appears, select it to mark the task complete.

  4. If a Review button appears, select it to open the related page in Drata. Complete the action, and the task will be marked as complete.

Next steps

Did this answer your question?