External reviews
External reviews are not included in the AWS star rating for the product.
Reduces the SOC 2 project management workload significantly
What do you like best about the product?
A lot of the admin work involved with SOC 2 is related to project management, and Vanta helps to lighten that workload significantly. Automated monitoring and coverage of a lot of controls, along with its customizable infosec policy templates, helps us to achieve and maintain compliance faster and with less manual work.
What do you dislike about the product?
The product is pretty solid but there's still room for improvement. For example, some functionality could still be built out a little better to allow for greater flexibility to deal with non-standard environments.
What problems is the product solving and how is that benefiting you?
The help us with our SOC 2 audit readiness project, as well as to monitor ongoing maintenance of SOC 2-related controls. Vanta has helped to cut out a lot of manual work we would have to do with it.
- Leave a Comment |
- Mark review as helpful
Great tool for capturing all SOC compliance issues
What do you like best about the product?
Very easy tracking/maintenance of compliance needs. It is removing lots of work from my plate in generating ongoing screenshots and other documentation for our auditors.
What do you dislike about the product?
- Not great tools for batch updating or batch emailing users.
- It's not (yet) clear that it has all the necessary hooks to completely subsume all my audit-prep needs.
- It's not (yet) clear that it has all the necessary hooks to completely subsume all my audit-prep needs.
What problems is the product solving and how is that benefiting you?
We are using Vanta to prepare for and maintain our SOC2 compliance. It has already saved me loads of time with the pre-formatted policies, monitoring, and tracking of the vast majority of my SOC2 needs.
Recommendations to others considering the product:
For any company working on their SOC2 compliance, it's a no-brainer purchase.
The Easiest Way to Get Compliant
What do you like best about the product?
Vanta made it simple for us to start the process of getting SOC 2 Type 1 compliant when we were only 6 months old. As a result we feel far ahead of schedule, and 18 months later we're now using Vanta to go for our SOC 2 Type 2.
The product made it incredibly easy to automatically generate the documentation needed for the SOC 2 process. As a new/young company, we were able to just "accept the defaults" and build from there – which saved us a ton of time.
The team at Vanta have also been amazing partners in helping us find and work with our auditors. They have our back from both the software side as well as the process side, and made it easy for us to navigate this process for the first time.
The product made it incredibly easy to automatically generate the documentation needed for the SOC 2 process. As a new/young company, we were able to just "accept the defaults" and build from there – which saved us a ton of time.
The team at Vanta have also been amazing partners in helping us find and work with our auditors. They have our back from both the software side as well as the process side, and made it easy for us to navigate this process for the first time.
What do you dislike about the product?
The UI can be a bit fiddly and can take more clicks to get where I'd like to go than I'd prefer. They continue to improve the UI frequently, but there is a lot of work left to be done.
I've also found that the Vendor Management / IT Asset Management side of the product is under-developed.
I've also found that the Vendor Management / IT Asset Management side of the product is under-developed.
What problems is the product solving and how is that benefiting you?
We've used Vanta to achieve SOC 2 Type 1 compliance, manage our vendors, and manager our IT assets.
We're now also using Vanta to pursue our SOC 2 Type 2 compliance. We hope to use them for ISO 27001 and other certifications in the future.
We're now also using Vanta to pursue our SOC 2 Type 2 compliance. We hope to use them for ISO 27001 and other certifications in the future.
Recommendations to others considering the product:
There are a few other products in this space, but Vanta is so excellent I haven't spent the time to investigate other options. I'd definitely select it again.
Easy to use, save you much time in audit
What do you like best about the product?
Has a lot of integration with existing platforms
What do you dislike about the product?
I think Vanta is doing great the only think I may complain is we need more batch update options since we have to update items (owner, i.e., ) one by one
What problems is the product solving and how is that benefiting you?
SOC2/HIPAA auditing. Save our engineering time to collect evidences
Recommendations to others considering the product:
Their support team is also very responsive.
Makes SOC2 approachable
What do you like best about the product?
Checklist with step-by-step instructions for SOC2
What do you dislike about the product?
Still requires a lot of manual work on engineering behalf
What problems is the product solving and how is that benefiting you?
Knowing what is needed to complete our SOC2
Simplified and Streamlined
What do you like best about the product?
We loved the policy generators to help us make sure we are covering all of our bases. And then the gap analysis reports for internal tracking and the option to share reports to prospective and existing clients have been truly valuable.
What do you dislike about the product?
We use a few tools and services that don't integrate with Vanta (at least not yet). We would also love to see better integrated (or even Vanta created) annual required security training for our employees.
What problems is the product solving and how is that benefiting you?
We originally signed up with Vanta so that we could help ensure we were following best practices and answering all of the vendor questionnaires that our customers and potential customers send us. We hope to complete our first SOC 2 audit and certification process in the near future as well. Vanta has definitely helped with trust from customers and fulfilling many of their requirements.
Currently in pre-audit for our first soc2 audit and Vanta has made the process super easy.
What do you like best about the product?
Vanta keeps all my tasks in a short list, and makes it super easy to find what I need to work on next.
Also provides preformatted templates you can use as a small business who likely doesn't have all the docs in a row before an audit.
Also provides preformatted templates you can use as a small business who likely doesn't have all the docs in a row before an audit.
What do you dislike about the product?
The UI is kind of confusing at first, though when you use the product you get used to where things are.
What problems is the product solving and how is that benefiting you?
We're working toward automating our audit processes, and currently it's just one person running the entire audit for the company... in previous companies it took a team of people.
An organized and well-integrated platform that helped us manage our cloud security and policies.
What do you like best about the product?
The task-based approach to managing cloud security and policies. The dynamically-generated security reports. The integration with many of our
What do you dislike about the product?
Nothing. In the ~6 months we've been using Vanta, our experience has been nothing but positive.
What problems is the product solving and how is that benefiting you?
Managing our cloud infrastructure. Generating security policies. Preparing for SOC-2 Type II audit. Generating dynamic security reports for prospective customers.
Makes security compliance easy and (almost) fun
What do you like best about the product?
Simple, clean interface for managing the complexities of SOC II compliance. The policy management features are particularly useful. Vanta isn't just a tool for managing docs — it helped us to clarify our processes and organize our thinking around security compliance issues. It's hard/impossible to get a sense of best practices when you're pursuing SOC 2 on your own.
What do you dislike about the product?
Could always benefit from more integrations with vendors. We had to do a little extra work to chase lesser known cloud vendors.
What problems is the product solving and how is that benefiting you?
Vanta practically gamifies SOC compliance. We actually enjoyed the process, at least as much as such a thing is possible.
The primary benefit for us was achieving SOC 2 Type 2 compliance. This has opened up the door for sales growth, particularly in enterprise accounts where security compliance can be a major hurdle for smaller service providers like us.
The primary benefit for us was achieving SOC 2 Type 2 compliance. This has opened up the door for sales growth, particularly in enterprise accounts where security compliance can be a major hurdle for smaller service providers like us.
Very pleased with this compliance tool
What do you like best about the product?
I like the UI; it's a very clean platform that makes tracking our team's various security controls much easier.
What do you dislike about the product?
It would be great for more policy templates to be provided and for alerts to be sent out.
What problems is the product solving and how is that benefiting you?
I want to be able to easily use Vanta for any security audit, not just SOC2. However I have realized that with some effort it can work well for any audit.
showing 1,321 - 1,330