Overview
Product Information on Vanta
What is Vanta?
Vanta Pricing
Vanta Product Images
Overall experience with Vanta
“Questionnaire Automation Accelerates Client Security Reviews and Saves Significant Time”
“Vanta is a useful product, but still immature with limitations (e.g. risk management)”
About Company
Company Description
Vanta is an Agentic Trust Platform that helps organizations build, manage, and scale their security and compliance programs. It provides automation for over 35 compliance frameworks, including SOC 2 and ISO 27001, and supports GRC workflows such as risk management. Vanta is used by more than 15,000 companies to improve visibility into their security posture and streamline compliance processes.
Company Details
Do You Manage Peer Insights at Vanta?
Access Vendor Portal to update and manage your profile.
Key Insights
A Snapshot of What Matters - Based on Validated User Reviews
Reviewer Insights for: Vanta
Vanta Likes & Dislikes
Three of Vanta's strengths are 1- automated evidence collection: automated evidence gathering significantly reduces man hours needed for audit prep with key integrations into many of our systems. 2- Centralized control and policy management: Vanta provides a centralized place to manage controls, policies, and employee compliance workflows. This feature helps us keep us organized and compliant at a company level without having to think about it. 3- streamlined client DDQ/security reviews: Vanta provides a centralized location for all of our client questionnaires, and the questionnaire automation process has saved us countless hours and helped speed up our sales cycles by ensuring we get questionnaires back to clients in a timely manner.
The tool is well structured to organise your security program between various frameworks. The AI tooling so far is also useful, and the trust centre feature is also nice to have.
Integrations with tools like GitHub and AWS, Automated Reminders for document renewals, and delegation of responsibilities for policies and documents.
Three areas I dislike are 1- needing to purchase entire new frameworks in order to gain access to one off trainings if we have a request from a client that isn't included in our current framework, 2- the questionnaire automation has improved a lot and we find it helpful, but it can sometimes be hard to upload complex excel sheets that have multiple tabs or answer options, and lastly 3- sometimes the automated notifications sent are repetitive.
The risk management module has a number of immaturities and limitations. For example, current risk (where you are today) is automatically calculated by Vanta and it is not possible to produce this score yourself. It's a very basic calculation method, where the risk score goes from the inherent to residual score only once all assigned controls are passing. It goes from 'zero to hero' just like that, which is often not an accurate reflection of your real, current risk score. It cannot take into account control effectiveness, or the difference between compliant vs secure.
Not everything can be automated and integrating with our PM system is not possible currently. Some evidence needs to be uploaded manually. Onboarding definitely has a learning curve. We struggled for a few months but their support team was willing and able to help.
Top Vanta Alternatives
Peer Discussions
Vanta Reviews and Ratings
- Sales Manager<50M USDSoftwareReview Source
Questionnaire Automation Accelerates Client Security Reviews and Saves Significant Time
Vanta has been a valuable platform helping us to automate our SOC 2 Type II audit process. Vanta provides a clear structure around control management, evidence collection, policy creation and renewal, and ongoing monitoring, which has led to many hours saved. Vanta has also been extremely helpful with automation and completion of client DDQs. - Chief Information Officer<50M USDSoftwareReview Source
Continuous Monitoring and Tool Integrations Streamline Compliance Processes Significantly
Vanta's automation has drastically reduced the manual work required by my team. The continuous monitoring and integration with tools we use give us confidence that we are staying audit ready year-round. Cost was high than we exptected but we understand the value and are going to be a long time customer - Operations Manager<50M USDSoftwareReview Source
Centralized Evidence and Controls Streamline ISO Compliance Workflow with Greater Clarity
Overall my experience with Vanta has been positive! Vanta helps me in developing the ISO compliance work with clarity and structure. Having all the controls ad evidence in one place makes the work efficient, reducing my mental load and the uncertainty that comes with constantly monitoring compliance activities. - It Security & Risk Management Associate50M-1B USDSoftwareReview Source
Third-Party Risk Management Benefits Noted Alongside Mixed Feedback on Specific Features
The overall experience is positive due to multiple capabilities with regards to third-party risk management - It Security & Risk Management Associate50M-1B USDSoftwareReview Source
Framework Implementation and Compliance Tracking Simplified with Vanta's Intuitive Module
Vanta compliance module offers a pretty good experience with easy implementation of frameworks and progress tracking.