Skip to main content
Set up Swif integration with Drata
Updated over 5 months ago

Swif's integration with Drata allows you to streamline your security and compliance processes by combining Swif's device management capabilities with Drata's comprehensive security monitoring and compliance tools. This integration enables your organization to achieve and maintain compliance with various security standards, such as SOC 2, ISO 27001, HIPAA, and more.

Swif offers several key benefits for managing devices and ensuring compliance:

  1. Unified Device Management: Comprehensive coverage for all devices, including macOS, Windows, and Linux.

  2. Automated Enrollment: Streamlined onboarding process for new devices.

  3. Policy and Software Patch Management: Efficient management of policies and software updates.

  4. Smart Group Deployment: Automated deployment of policies and software to designated groups of devices.

  5. Real-Time Syncing: Continuous synchronization with compliance auditing platforms.

  6. AI-Powered Features: Enhanced access discovery to mitigate shadow IT risks.

Here is the list of data we are sending to Drata:

  1. Devices with assigned owners

  2. For each device owner, we will upload the following evidence to the personnel

    1. Disk Encryption (type: HARD_DRIVE_ENCRYPTION_EVIDENCE):

      1. MacOS: FileVault policy on Swif

      2. Windows: Bitlocker policy on Swif

    2. OS update (type: AUTO_UPDATES_EVIDENCE):

      1. MacOS: Mac's Software Update policy on Swif

      2. Windows: Windows Software Update policy on Swif

    3. Password policy (type: PASSWORD_EVIDENCE)

    4. Screensaver policy (type: LOCK_SCREEN_EVIDENCE):

      1. MacOS: Screen saver policy on Swif

      2. Windows: Windows power policy on Swif

    5. App blocking policy (type: APPLICATION_BLOCK_POLICY)

    6. Antivirus installation (type: ANTIVIRUS_EVIDENCE)

    7. Password manager installation (type: PASSWORD_MANAGER_EVIDENCE)

  3. When utilizing Swif for computer wiping, it's possible to download Media Disposal evidence. This evidence can then be conveniently uploaded to Drata for record-keeping and auditing purposes. It provides a clear and auditable trail of device disposal, which is crucial for data privacy and security.


To connect, you can follow these steps to set up the integration with Drata:

  1. Go to https://app.drata.com/settings and click your name on the bottom left and then click Settings > API keys

  2. Create a new API key

  3. Type name: For Swif,

  4. Choose Expiration: Never expires, and Custom scope

  5. Select the following permission

    1. Personnel: Read-only for all except device compliance requires write access (Purpose: Download all active personnel (employees) from Drata to match with device owners and Upload the policy evidence by personnel ID)

    2. Assets: Full access (Purpose: Sync organization-owned devices to Drata)

    3. Workspaces: Read-only for listing workspaces (Purpose: Select which workspace to push data to)

    4. Evidence: Full access (Purpose: Sync device-related evidence to Drata)

  6. Copy the newly generated API key and paste it into Swif https://app.swif.ai/org/account > Integrations

  7. Congratulations, you are done! Swif will sync data hourly to Drata.

    1. Swif will now sync the following devices to your Drata application.

      1. The device type is Laptop or Desktop

      2. OS is macOS or Windows

      3. Has current owner (Assigned devices only)

      4. Status is ACTIVE

      5. It's Enrolled

Did this answer your question?