Sold by: Vanta
Deployed on AWS
Vendor Insights
Vanta helps thousands of fast-growing companies simplify and centralize compliance and security workflows so they can build trust.
Overview
Vanta is the creator and global leader in Trust Management. Today, more than 4,000 AWS customers trust Vanta to streamline their security and compliance programs.
With more than 300 third-party integrations, Vanta is able to automate the testing and collecting of evidence for frameworks ranging from SOC 2 to FedRamp to NIST AI.
For companies with self-hosted or custom-built solutions, Vanta also offers the ability to quickly create custom automated tests in the platform, or through the Vanta API.
Vanta is the only multi-product vendor in the Trust Management category and also offers AI-powered Third Party Risk Management and Trust Center solutions.
Vanta has three unique packages for customers based on the complexity of their security and compliance programs. Those packages are also based on company headcount.
A preview of pricing for companies with 1-20 employees can be found below. More details on Vanta pricing and packaging can be found at: vanta.com/pricing.
AWS customers interested in private offers should email awsmarketplace@vanta.com .
Highlights
- Vanta goes beyond checklists and point-in-time audits with continuous monitoring that keeps you secure and compliant at all times. If issues arise, you can receive alerts and guidance via email and Slack or use Vanta's task-tracker integrations to stay on top of fixes.
- Vanta unifies security program management by bringing together key compliance and security workflows, like access reviews, vendor risk management, and more, saving you time and giving you better contextual insight for prioritizing and managing risk.
- Build trust in your organization and demonstrate a commitment to security by proactively sharing your Trust Center with customers and prospects.
Details
Features and programs
Skip the manual risk assessment. Get verified and regularly updated security info on this product with Vendor Insights.
Security credentials achieved
(2)
ISO27001
SOC2
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Pricing is based on the duration and terms of your contract with the vendor. This entitles you to a specified quantity of use for the contract duration. If you choose not to renew or replace your contract before it ends, access to these entitlements will expire.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Dimension | Description | Cost/12 months |
|---|---|---|
AWS FTR | AWS FTR Module | $7,500.00 |
Core Package | Starting cost for 1-20 employees | $11,500.00 |
Growth Package | Starting cost for 1-20 employees | $22,675.00 |
Scale Package | Starting cost for 1-20 employees | $48,970.00 |
Trust Center | Starting cost for 1-20 employees | $6,000.00 |
Vendor Risk Management | Up to 50 vendors managed | $11,200.00 |
Vendor refund policy
Please refer to https://www.vanta.com/terms .
Custom pricing options
Request a private offer to receive a custom quote.
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
Software as a Service (SaaS)
SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.
Resources
Vendor resources
Support
Vendor support
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Updated weekly
By Vanta
Top
10
In Monitoring
Top
25
In IT Business Management
Top
10
In Centralized Risk Management, Monitoring, Security
AI generated sentiment from actual customer reviews on AWS and G2
Functionality
Ease of use
Customer service
Cost effectiveness
Positive reviews
Mixed reviews
Negative reviews
AI generated from product descriptions
Continuous Monitoring
Continuous monitoring that keeps the organization secure and compliant at all times, with alerts and guidance for addressing any issues that arise.
Unified Security Program Management
Unification of key compliance and security workflows, such as access reviews and vendor risk management, to save time and provide better contextual insight for prioritizing and managing risk.
Trust Center
Ability to proactively share the organization's security and compliance posture with customers and prospects to build trust.
Automated Testing and Evidence Collection
Automation of testing and evidence collection for a range of security and compliance frameworks, including SOC 2, FedRAMP, and NIST AI.
Custom Automated Tests
Capability to quickly create custom automated tests within the platform or through the API for self-hosted or custom-built solutions.
Automated Evidence Collection
Automated collection of audit evidence through more than 100+ integrations with core services such as AWS, Asana, Azure, G Suite, Google Cloud, Github, Gusto, JAMF, Okta and Slack
Customizable Security Policies
Prebuilt security policy templates that can be edited to meet the organization's specific needs and ensure they meet the high standards of an auditor or regulatory framework
Scalable Platform
Ability to support unique setups with multiple cloud service providers and hundreds of instances, scaling with the business
Machine Learning-powered Questionnaires
Secureframe's machine learning-powered solution that makes it fast and easy to respond to RFPs and security questionnaires by pulling the best answer for each question based on approved past responses
Dedicated Compliance Expert
Every customer is assigned a dedicated compliance expert, an ex-auditor who can help answer complicated and specific questions that come up, especially during the audit process
Continuous Monitoring
Continuously monitors security controls and alerts customers when controls are not operating effectively to remediate and stay secure
Automated Evidence Collection
Automatically collects evidence needed for audits to streamline the audit process
Compliance Framework Integration
Integrates with over 20 compliance frameworks, standards, and regulations such as SOC 2, ISO 27001, HIPAA, PCI DSS, and GDPR
Application and System Integration
Integrates with over 200 applications and systems to continuously monitor security controls
AWS Integration
Integrates with 45+ AWS services and is an AWS Security Competency partner with an AI engine built on AWS Bedrock
Validated by AWS Marketplace
FedRAMP
GDPR
HIPAA
ISO/IEC 27001
PCI DSS
SOC 2 Type 2
-
-
-
-
No security profile
-
-
-
-
Standard contract
No
No
No
Customer reviews
Andrew L.
Simplified our SOC2 dramatically
Reviewed on May 16, 2025
Review provided by G2
What do you like best about the product?
It has great integrations with many of our key providers that makes completing SOC2 tests way easier. The interface is relatively straightforward and the setup didn't take too long.
What do you dislike about the product?
It's not that intuitive to navigate the different menus and the terminology. It takes some time to learn.
What problems is the product solving and how is that benefiting you?
We use Vanta to manage our SOC 2 type 1 and type 2 process. It shows how we are controlling for risks across our business and systems.
Leave a comment0 comments
Hospital & Health Care
Great foundation for SecOps
Reviewed on May 16, 2025
Review provided by G2
What do you like best about the product?
Vanta automates a ton of manual compliance work and offers good baseline controls that integrate with our most valuable systems.
What do you dislike about the product?
Varna’s fractured pricing complicates my experience and opinion of the product. They adopted a module-based pricing structure after we began usage. Some of the modules exceed our total contract value and don’t make sense to enable at that price point — limiting the total value of the product.
What problems is the product solving and how is that benefiting you?
Reducing the cost and effort of compliance overall and strengthening our security posture.
Information Technology and Services
Okay for startups
Reviewed on May 16, 2025
Review provided by G2
What do you like best about the product?
* De-facto leader in the compliance domain
* Most vendors have integrations, so there is a lot of automation in place
* Easy to use once you get used to it and set everything up
* Most vendors have integrations, so there is a lot of automation in place
* Easy to use once you get used to it and set everything up
What do you dislike about the product?
* Default policies for SOC 2 are designed for medium and large enterprises, not early-stage startups
* There is no diff between policy versions, making it difficult to review/track changes
* Managing vendors is tough without additional add-ons from Vanta, have to do this separately
* Compliance roadmap page is not useful to get started
* There is no diff between policy versions, making it difficult to review/track changes
* Managing vendors is tough without additional add-ons from Vanta, have to do this separately
* Compliance roadmap page is not useful to get started
What problems is the product solving and how is that benefiting you?
SOC 2 Type II certification
Oleksandr M.
6 months usage of Vanta
Reviewed on May 16, 2025
Review provided by G2
What do you like best about the product?
Vanta provides a robust GRC platform that excels at aggregating data and information across various systems, making it particularly well-suited for small and mid-sized businesses.**
The platform integrates seamlessly with existing systems, enabling efficient data collection, task management, and tracking. One of the standout features is its audit automation capabilities, which have significantly reduced the time required to implement audit processes and manage audit schedules.
Additionally, the questionnaire automation functionality is highly effective. The user-friendly interface simplifies the process of collecting, tracking, and maintaining questionnaires and associated knowledge bases. After evaluating several solutions for questionnaire automation, I’ve found Vanta to deliver some of the most impressive results in this area.
Vanta also offers valuable tools for risk management and for managing user onboarding and offboarding processes, including security awareness components. For organisations starting from scratch, Vanta provides a solid foundation for establishing effective compliance and security practices.
The platform integrates seamlessly with existing systems, enabling efficient data collection, task management, and tracking. One of the standout features is its audit automation capabilities, which have significantly reduced the time required to implement audit processes and manage audit schedules.
Additionally, the questionnaire automation functionality is highly effective. The user-friendly interface simplifies the process of collecting, tracking, and maintaining questionnaires and associated knowledge bases. After evaluating several solutions for questionnaire automation, I’ve found Vanta to deliver some of the most impressive results in this area.
Vanta also offers valuable tools for risk management and for managing user onboarding and offboarding processes, including security awareness components. For organisations starting from scratch, Vanta provides a solid foundation for establishing effective compliance and security practices.
What do you dislike about the product?
- There are still a few bugs present in the system. While most are not critical, there is one in the Audit module that I consider to be quite significant. That said, all bugs and improvement suggestions I've submitted to our account manager have been logged, and some have already been addressed.
- Certain automated tests for cloud environments (AWS and GCP) seem somewhat redundant. As a result, meeting Vanta's compliance checks requires additional effort in modifying infrastructure, or alternatively, dismissing the check — which isn't an ideal solution.
- The UI/UX could be improved, particularly in the Personnel module. Enhancements in this area would make the platform significantly more user-friendly.
- Certain automated tests for cloud environments (AWS and GCP) seem somewhat redundant. As a result, meeting Vanta's compliance checks requires additional effort in modifying infrastructure, or alternatively, dismissing the check — which isn't an ideal solution.
- The UI/UX could be improved, particularly in the Personnel module. Enhancements in this area would make the platform significantly more user-friendly.
What problems is the product solving and how is that benefiting you?
We significantly improve the way and time for audits, structure vendor management, aggregate data and information across the systems in more useful way.
Josh G.
Makes compliance and policy tracking much easier
Reviewed on May 16, 2025
Review provided by G2
What do you like best about the product?
Makes tracking policy, training, and compliance documents very easy. Templates make creating policy docs a breeze. The support team is always happy to help.
What do you dislike about the product?
There is so much int the system that it can sometimes be overwhelming.
What problems is the product solving and how is that benefiting you?
Helping us track our policy and compliance docs, audit portal for ISO 270001