Vanta

What do you like best about the product?

Vanta helped us to achieve our SOC 2 Certification journey with clear guidelines and advance preparations. They have one of the most reliable customer support that ensures customers are satisfied. We followed the due process from the Vanta team and we are reaching the end of audit period without any challenge.

What do you dislike about the product?

Using tools that cannot integrate efficiently with Vanta affects the performance.

What problems is the product solving and how is that benefiting you?

Vanta offers pricing breakdown and SOC 2 Certification requirements for full compliance. It has streamlined the auditing process of our assets and developed basic management infrastructure. It provides real time monitoring alerts from workflows that stimulates quick actions.

What do you like best about the product?

Continuous monitoring of our network with SOC 2 compliance security layer enables me to have peace of mind. It offers comprehensive privacy and security reports from our main servers to enhance effective progress of workflows. Vanta gives me security provisions to track IT teams to ensure they are compliant with set enterprise policies.

What do you dislike about the product?

There are some systems that are not given access to be connected to this platform since they are not compliant. The cost keeps on increasing when an enterprises runs more frameworks for security mapping.

What problems is the product solving and how is that benefiting you?

The automated continuous security mapping is the biggest advantage for all Vanta users. It has fully streamlined third-party risk assessment with automated vendor security configurations. Vanta monitors our digital devices 24/7 to ensure they have clean network from servers and they fully comply with network policies.

What do you like best about the product?

I like how Vanta automates and simplifies the process of proving compliance, making it easy for me by providing a series of tests that I can remediate. It breaks down huge and complicated tasks into an automated checklist of items tied to my MDM, IDP or other applications or infrastructure components. I can trust Vanta to identify issues so that I just go in and resolve them, saving me a ton of time because I don't have to check everything manually myself. Adding integrations in Vanta is also very easy, and I've successfully added more than a few since I started working with it.

What do you dislike about the product?

There's the occasional glitch here and there, which is expected for any product, but the support is great. One thing I want to see in Vanta is the ability to change the assigned department for certain tests because some tests are assigned to human resources but are truly more related to IT or Engineering. We can't change the categories because they're built into Vanta. I'd also like the ability to add custom frameworks. This might be more of a niche thing, but we had some collaboration with the finance department preparing for a specialized financial audit (I don't remember the exact name, but I know it's not in Vanta) with information systems components, which isn't available in Vanta as a supported framework like ISO 27001, GDPR, SOC 2, etc.

What problems is the product solving and how is that benefiting you?

Vanta automates compliance, making it simple and easy by breaking down huge tasks into issues I can remediate. It uses an automated checklist tied to systems like MDM and IDP, saving time as I don't need to check each system individually.

What do you like best about the product?

Vanta has provided effective security compliance template that has enabled our company to craft security policies that comply with ISO 27001 Charter. It automatically monitors MDM and Google workspace performance to rule out any threat within our network system. Vanta has proactive customer support team that provides solid training and deployment configurations that suits your needs.

What do you dislike about the product?

The licensing and subscription cost is high especially for small scale business enterprises with small operation budgets.

What problems is the product solving and how is that benefiting you?

Vanta has enabled our company to comply with international security policies. It offers continuous security checks on the enterprise network to ensure there is effective infrastructure and identify any bottlenecks. Enhancement of automated compliance systems has reduced need for screenshots for security controls and eliminated manual reliance.

What do you like best about the product?

Vanta configures data and AI models in our organization to key global compliance frameworks like ISO 42001 which streamlines workflows. It has fully enhanced privacy compliance with AI algorithms which draws data from different sources. Dust has streamlined our data workflows with Autonomous GTM Agents.

What do you dislike about the product?

The learning curve is complex for beginners. The deployment process takes long time and the licensing cost is high.

What problems is the product solving and how is that benefiting you?

Vanta provides the compliance road map for data management in our organization. It has streamlined data configurations with external agents and enhanced effective data security. GitHub Copilot provides tools for writing and testing new codes after development which saves time and cost while enhancing compliance.

What do you like best about the product?

Vanta is a user friendly platform and everything we need from business is here

What do you dislike about the product?

I like to add more design on the UI, like the backward step.

What problems is the product solving and how is that benefiting you?

Its solving the standard I need to have in business.

What do you like best about the product?

It accomplishes what needs to be done for compliance in a pretty lightweight platform. The AI features are helpful as well

What do you dislike about the product?

Not a Vanta issue but obviously the creep in SOC 2 requirements for all companies is a burden

What problems is the product solving and how is that benefiting you?

Aggregating compliance requirements in one place, which saves time and manual effort

What do you like best about the product?

Vanta makes it very easy to achieve cybersecurity compliance. I’ve helped a number of clients get their SOC 2 report through Vanta.

What do you dislike about the product?

The UI sometimes lags, but it’s nothing major or disappointing.

What problems is the product solving and how is that benefiting you?

We at Workstreet are an MSP for Vanta, and we’ve helped hundreds, if not thousands of customers improve their cybersecurity posture and get audited to achieve the frameworks in use.

What do you like best about the product?

Vanta democratizes SOC 2, ISO, and other certification preparation and audits. It tells me exactly what to do, when to do it, and what I’m missing along the way. I could have hired a larger, expensive consulting firm to handle all of this work for me, but with Vanta I didn’t need to. That’s allowed me to repurpose those budget dollars to where they’re most needed: my security stack.

What do you dislike about the product?

While Vanta makes it simple to prepare for and pass a SOC 2 certification audit, it can feel fairly rigid. What I like most is that you can connect your infrastructure and security tech stack and it does the rest—that’s literally how and why it works so well. It handles the control testing for you.

That said, there are often systems I can’t connect because privacy requirements don’t allow it, and there isn’t (as far as I know) much wiggle room in those situations. Also, when you connect anything, it seems to see everything and often surfaces systems, vendors, or issues that are irrelevant—basically false positives—that you then have to keep explaining away on each sync. Maybe they’ve solved this and I’m just not aware of where the magic “fix it” button is.

What problems is the product solving and how is that benefiting you?

Vanta is guiding me through my first SOC 2 audit. It feels like having a large audit firm in your corner, working with you pro bono. Yes, the application has an annual fee, but it’s negligible compared to what we’d be paying a consulting firm. Will we need a consulting partner or a full-scale security team in the future? Probably. But right now, in these early days, Vanta is all I need.

What do you like best about the product?

Vanta’s ability to automate continuous compliance monitoring is a significant operational asset. The platform’s integration with our tech stack allows for real-time evidence collection, which has drastically reduced the manual administrative burden that usually accompanies security audits. I particularly value the centralized dashboard for tracking framework progress; it provides clear visibility into our security posture across SOC 2 and other standards, making it much easier to coordinate internal tasks without relying on fragmented spreadsheets or constant status meetings.

What do you dislike about the product?

While the automation is robust, there is a learning curve associated with setting up the initial mappings correctly across complex, multi-tool environments. I’ve also found that as we scale, managing third-party vendor risks can occasionally feel manual if the vendor isn't already within the Vanta ecosystem. Additionally, while the dashboard is great for high-level monitoring, I would appreciate more advanced, customizable reporting options to tailor views for different internal stakeholders without needing to export data to external tools for further analysis.

What problems is the product solving and how is that benefiting you?

Before Vanta, our team struggled with the "audit fatigue" that comes from manually gathering evidence and maintaining compliance documentation. We were constantly juggling deadlines for different frameworks, which diverted time from strategic work. Now, Vanta acts as a single source of truth. By automating evidence collection and providing clear, actionable tasks, it has shortened our audit preparation time significantly. This allows us to focus on scaling our business while maintaining high-trust security standards, ultimately enabling us to close deals faster by proactively demonstrating our security posture to partners and customers.