Drata

Within your organization, you might have a specific personnel who manages internal and external risks. Drata allows you to assign these individuals to the Risk Manager role, providing them access to specific sections necessary for their responsibilities while restricting access to other parts of the platform. 

This guide details the functionalities and permissions of the Risk Manager role.

If enabled, Risk Managers can only view, filter, and download data. They cannot modify data or perform certain actions.

- If enabled, Risk Managers can only view, filter, and download data. They cannot modify data or perform certain actions.

If enabled, Risk Managers can only access risks (including vendor risks) that they own. 

- If enabled, Risk Managers can only access risks (including vendor risks) that they own. 

The side navigation of the Drata app is divided into several sections, each containing pages you can access based on your role. Risk managers have access to:

- Tasks
- Risk
- User Settings
- Help Menu

Access the Tasks page and risk tasks. To learn more about Tasks, go to <a href="https://help.drata.com/en/articles/7217906-tasks">Task</a>.

Access the following pages under the Risk section on the navigation bar.

Risk Assessment page: Manage risks, create tickets, and map controls to risks. Learn more about<a href="https://help.drata.com/en/articles/4770255-how-does-the-risk-assessment-process-work-in-drata"> Risk Assessment</a>.

Risk Management page: Manage risks, create tickets, and map controls to risks. Learn more about <a href="https://help.drata.com/en/articles/6406513-risk-management">Risk Management</a>.

- Note: Risk Management is part of the Advanced package and is separate from Risk Assessment. Learn more at <a href="https://drata.com/plans" rel="nofollow noopener noreferrer" target="_blank">https://drata.com/plans</a>.

Vendors page: Edit vendor details, complete report reviews, and add vendors. Learn more about <a href="https://help.drata.com/en/articles/4755823-vendor-directory-profiles">Vendors</a>.

- Risk Assessment page: Manage risks, create tickets, and map controls to risks. Learn more about<a href="https://help.drata.com/en/articles/4770255-how-does-the-risk-assessment-process-work-in-drata"> Risk Assessment</a>.
- Risk Management page: Manage risks, create tickets, and map controls to risks. Learn more about <a href="https://help.drata.com/en/articles/6406513-risk-management">Risk Management</a>.
 - Note: Risk Management is part of the Advanced package and is separate from Risk Assessment. Learn more at <a href="https://drata.com/plans" rel="nofollow noopener noreferrer" target="_blank">https://drata.com/plans</a>. 
- Vendors page: Edit vendor details, complete report reviews, and add vendors. Learn more about <a href="https://help.drata.com/en/articles/4755823-vendor-directory-profiles">Vendors</a>.

Select the your username and then Settings.

Select the help icon or Help &amp; Feedback option to access the Help &amp; Feedback drawer. 

This Help &amp; Feedback drawer displays sections containing the help center and upcoming features. ​

<a href="https://help.drata.com/en/articles/8319053-role-administration-rbac">Role Administration &amp; RBAC</a>

- <a href="https://help.drata.com/en/articles/8319053-role-administration-rbac">Role Administration &amp; RBAC</a>

Read-Only permissions

Restricted view

Risk managers access

Tasks

Risk

Settings

Help Menu

Additional resources