Drata, a security and compliance automation platform, has announced its acquisition of oak9, a cloud-native compliance platform. This acquisition allows Drata to offer Compliance as Code, a solution that monitors compliance before and after code is deployed to production.
DevOps, engineering and governance, risk and compliance teams typically have to rely on manual processes to address compliance issues after changes reach publication, according to the company. Drata wants to eliminate the need for these resource-intensive fixes. Compliance as Code enables engineers and developers to review high-fidelity risk alerts mapped directly to their compliance frameworks and policies, saving them time and resources.
The acquisition of oak9 aims to improve developers’ visibility into risk and compliance posture through automated control monitoring and evidence collection. Compliance as Code works to identify and resolve risks of non-compliance prior to code deployment, reducing the likelihood of issues during audits.
