Vanta
VantaExternal reviews
2,122 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Innovative AI Features Elevate the Experience
What do you like best about the product?
I love how innovative and interactive the tool is. Especially with AI.
What do you dislike about the product?
More support and pricing options would help!
What problems is the product solving and how is that benefiting you?
GRC and framework orgaization.
Efficient, Effective, and Audit-Ready
What do you like best about the product?
I like that Vanta brings all security controls into one place, making collaboration easier and ensuring audits are smoother and quicker.
What do you dislike about the product?
Occasionally, integrations take extra effort to configure, but once they’re set, the platform works smoothly.
What problems is the product solving and how is that benefiting you?
Vanta automates many of the repetitive compliance tasks that would otherwise take hours. It centralizes security controls, reduces manual effort, and makes audits smoother. This saves time and ensures continuous security monitoring.
Comprehensive GRC Integration Makes Information Security a Breeze
What do you like best about the product?
The integration of many aspects of Information Security GRC (Policies, 3rd Party Risk Management, Risk Register, Framework Compliance, Trust Center, etc.)
What do you dislike about the product?
Nothing at this time. We are still learning to use the system.
What problems is the product solving and how is that benefiting you?
Superior 3rd Party Risk Management through AI review, Policy alignment with Security Frameworks, Risk Register and Trust Center.
Solid Tool with Room for Improvement in Access Review Flexibility
What do you like best about the product?
From a governance framework perspective, the complaints framework provides a strong foundation. I find the offboarding checklist especially helpful, and I value the addition of timestamps for accounts that have been offboarded. Furthermore, the platform supports a broad array of integrations.
What do you dislike about the product?
The access review module lacks flexibility and customization options. Additionally, there is no downstream de-provisioning following user access reviews.
The tests also do not appear to be very customizable. While they work well at a high level, there are times when we need to set up more specific monitoring tests.
The new feature of "Access Requests to systems" is a great addition however, it really lacks the complexity & integration with other IT service management tools.
The tests also do not appear to be very customizable. While they work well at a high level, there are times when we need to set up more specific monitoring tests.
The new feature of "Access Requests to systems" is a great addition however, it really lacks the complexity & integration with other IT service management tools.
What problems is the product solving and how is that benefiting you?
Compliance frame work, Evidence for User Access Reviews, Offboarding monitoring & timestamps of deactivated accounts for access.
Effortless Integration and User-Friendly Test Management
What do you like best about the product?
Seamless integration with third-party tools, immediate linking of documents with tests, and you don't need to be an expert in the framework being evaluated into, to perform the corrective measurements
What do you dislike about the product?
Integrations seem to break a bit too often.
What problems is the product solving and how is that benefiting you?
Vanta has been instrumental in helping us maintain our SOC 2 compliance, which is essential for our business to succeed.
Effortless Compliance Management, Needs Clearer Guidance
What do you like best about the product?
I appreciate Vanta for making it incredibly easy to track personnel, policies, and put controls in place. It's convenient to have everything in one place, where I can quickly make updates and changes. The notifications about policies or controls needing attention keep me well-informed and proactive. I like the templates for policies and other items, as they considerably simplify the process of creating and editing drafts since most of the work is already done. These templates save me a significant amount of time because I don't need to conduct independent research.
What do you dislike about the product?
I find the layout of Vanta a bit confusing and it took me some time to get accustomed to it. When I receive notifications about a control or test needing attention, I'm often uncertain how to address the issue. I believe Vanta should be more explicit in detailing the actions required to remediate a control or test and provide clear guidance on how to execute these actions.
What problems is the product solving and how is that benefiting you?
I use Vanta to simplify SOC2 compliance by tracking personnel and policies, placing controls centrally, and receiving notifications for needed updates, saving time with convenient templates.
Excellent all-in-one GRC Platform
What do you like best about the product?
What I appreciate most is that Vanta truly serves as our all-in-one platform for GRC and audit activities, so we have a single source of truth for compliance. I'm also consistently impressed by their rapid pace of development and innovation. They clearly listen to feedback and are always rolling out valuable new features. The AI implementation is a perfect example - its use in streamlining vendor reviews and answering security questionnaires is excellent and has become a significant time-saver for our team. Finally, the customer support has been fantastic whenever we reached out to them. They are responsive, knowledgeable, and genuinely seem invested in our success.
What do you dislike about the product?
My primary concern is the limited ability to deeply customize the platform. It tends to be rather prescriptive, and not every compliance task can be automated. There remains a significant amount of manual effort, particularly when dealing with controls or systems that lack native integration. Additionally, the platform is quite costly, and expenses can escalate rapidly beyond the initial subscription fee.
What problems is the product solving and how is that benefiting you?
The AI capabilities for handling vendor reviews and security questionnaires are extremely valuable, transforming what used to take days into just a few hours. I also appreciate the concept of ongoing compliance, as it supports audit readiness throughout the entire audit cycle and significantly lessens the workload when the audit actually takes place. Additionally, Vanta hosts our Trust Center.
Streamlined Our Security Audits with Immediate ROI
What do you like best about the product?
I love how Vanta provides such an immediate return on investment and impact, especially as someone who has implemented hundreds of different applications. It's exceptional in delivering quick and effective results. The dashboards in Vanta are incredibly valuable to me as they offer an immediate glimpse of progress towards compliance without overwhelming the user with details or dig through information to figure out where we stand. This feature simplifies my workflow significantly. Additionally, I find Vanta extremely efficient for achieving more with a lean security team, relieving an incredible amount of operational burden in preparing for our annual security audits. The onboarding process with Vanta has been the easiest I've probably ever experienced, which speaks volumes about its user-friendly design.
What do you dislike about the product?
I find Vanta's vendor risk management feature lacking in robust capabilities. I would love to see it become an all-encompassing tool for security, IT, and finance vendor reviews. Currently, it's limited, as it doesn't allow me to input crucial contract and renewal information. This limitation necessitates the use of additional tools, preventing Vanta from being a comprehensive solution.
What problems is the product solving and how is that benefiting you?
I find Vanta reduces operational burden for security audits, enabling a lean team to handle certifications like SOC 2 and ISO 27001 and seamlessly add additional frameworks to prepare for emerging regulations. It streamlines compliance tracking through dashboards, provides immediate ROI, and simplifies our security questionnaire process.
Streamlines SOC 2 Audit Prep Perfectly
What do you like best about the product?
I love how Vanta simplifies my SOC 2 audit preparation. It clearly breaks down everything I need to complete, showing me what needs my attention, which is incredibly helpful. I appreciate how it facilitates collaboration with my auditor, making the audit process smoother and more efficient. The feature of having a list of tests and controls is invaluable as it allows me to manage my tasks clearly and without the need to track them externally, like on a spreadsheet. I also like that Vanta consolidates everything in one place, offering seamless integration with my cloud services like AWS. I can make changes, and it automatically re-runs the tests, saving me significant time and effort. The initial setup was also quite easy, making my overall experience with the platform very positive.
What do you dislike about the product?
I feel that Vanta could improve in how it informs me about tasks and provides reminders. The current ways it tells me what I need to work on and reminds me of tasks are perhaps not as effective as I would like. I would appreciate a feature that encourages me to engage with the platform more frequently instead of primarily at the end of an audit cycle, although I'm not sure what exactly this improvement would look like.
What problems is the product solving and how is that benefiting you?
I use Vanta for SOC 2 audit preparation. It organizes and highlights tasks and supports auditor collaboration, simplifying my workflow. I appreciate that it's centralized, integrates with AWS, and automates task re-running, saving time and effort.
Trust Center & Vendor Risk Management Are Standout Features
What do you like best about the product?
I personally appreciated how straightforward the integration process was, as well as the convenience of the daily dashboard for monitoring GRC status. I also found the Trust Center and Vendor Risk Management features particularly useful.
What do you dislike about the product?
I think the AI-powered chatbot for real-time support still has room for improvement.
What problems is the product solving and how is that benefiting you?
Vanta has been instrumental in addressing two key challenges for us: achieving greater transparency in our security posture and managing third-party risk more efficiently.
The Trust Center allows us to securely and professionally display our compliance status, policies, and audit reports to the public. This feature removes the need for repeatedly sending documents back and forth, which not only saves significant time for our sales and legal teams but also helps establish immediate trust with prospects and partners, particularly during vendor assessments.
The Vendor Risk Management module has greatly improved the way we evaluate and monitor third-party vendors. Rather than relying on spreadsheets and lengthy email exchanges, we now benefit from a centralized platform where we can send questionnaires, track responses, and assess risk levels. The automation and AI-driven insights built into the system make it much easier to prioritize vendors and identify potential issues early on.
In summary, Vanta has enabled us to scale our compliance program, minimize manual work, and enhance visibility for all stakeholders, all while upholding a robust security posture.
The Trust Center allows us to securely and professionally display our compliance status, policies, and audit reports to the public. This feature removes the need for repeatedly sending documents back and forth, which not only saves significant time for our sales and legal teams but also helps establish immediate trust with prospects and partners, particularly during vendor assessments.
The Vendor Risk Management module has greatly improved the way we evaluate and monitor third-party vendors. Rather than relying on spreadsheets and lengthy email exchanges, we now benefit from a centralized platform where we can send questionnaires, track responses, and assess risk levels. The automation and AI-driven insights built into the system make it much easier to prioritize vendors and identify potential issues early on.
In summary, Vanta has enabled us to scale our compliance program, minimize manual work, and enhance visibility for all stakeholders, all while upholding a robust security posture.
showing 1 - 10