Vanta
VantaExternal reviews
2,142 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Simplifies Compliance, But Needs More Integrations
What do you like best about the product?
The abstraction from the complexity of the audit compliance
What do you dislike about the product?
Not integrated with enough business tools
What problems is the product solving and how is that benefiting you?
Compliance with SOC 2, it eases the processes and ensuring compliance on many areas.
User-Friendly and Compliant, But Key Features Locked Behind Paywall
What do you like best about the product?
SO easy, convinient, compliant and user friendly, Ease of Implementation Customer Support
What do you dislike about the product?
Some features like cutom roles and permissions should not be in the plus packages and should include in the core package.
What problems is the product solving and how is that benefiting you?
Vanta has made GRC easy and quick
Effortless Policy Management, Needs More Integrations
What do you like best about the product?
Vant is very easy to use, you can subscribe to the modules/frameworks that are applicable to your organization and be able to organize, sort, filter by those. The way it easily allows for building up your policies and documents makes things easy to manage
What do you dislike about the product?
Could offer more integrations for things like compliance training or offer this themselves.
What problems is the product solving and how is that benefiting you?
Managing our entire risk management and compliance story.
Comprehensive and Collaborative, But Task Overlap Can Be Confusing
What do you like best about the product?
Comprehensive, great layout and supporting in product guidance to ensure we resolve any issues/tasks at hand in the best way possible. It' s also easy to collaborate on. We use it almost on a daily basis as we received notifications and alerts. It has been easy to implement some of the feaures and roll it out to the org. Customer support has been great and we have a dedicated CSM that has supported us thrughout our journey.
What do you dislike about the product?
Sometimes confusing as many of the tasks form part of other lists, reports, charts, alerts and they are intertwined but in a confusing way.
What problems is the product solving and how is that benefiting you?
Before Vanta, ensuring ongoing SOC 2 compliance at Josef required manual tracking across multiple systems — cloud infrastructure, HR tools, access management, vulnerability management, and evidence collection. This created risks around:
Missed control evidence (e.g. proof of access reviews or change management processes)
Lack of real-time visibility into security posture
Time-consuming audits due to fragmented evidence and ad-hoc screenshots
Limited accountability across engineering and operations teams
Vanta centralises all of this by automatically monitoring controls and integrations (Google Workspace, AWS, Slack, GitHub, ClickUp, etc.), surfacing exceptions, and maintaining continuous audit readiness.
💡 How That Benefits Josef
Continuous compliance and audit readiness
Vanta automatically pulls and updates evidence daily, ensuring our SOC 2 controls remain in place year-round. This has removed the “scramble” before audit periods and simplified the annual audit cycle with Johanson Group.
Reduced manual workload
Instead of maintaining spreadsheets and screenshots, Vanta automatically checks controls like employee onboarding/offboarding, MFA enforcement, and change management. Our compliance and engineering teams can now focus on remediations, not evidence gathering.
Improved visibility and accountability
Dashboards show real-time compliance health across control families, which helps track ownership and identify gaps (e.g., missing device encryption, overdue risk assessments). It’s become the single source of truth for our audit posture.
Integrated risk and vulnerability tracking
With integrations to ClickUp and vulnerability management tools (like our Vanta Zap to auto-create tickets when new vulns are detected), we’ve automated follow-up on risk items and can demonstrate a complete remediation workflow.
Streamlined communication with auditors
During audits, most evidence can be shared directly from Vanta — audit requests are mapped to controls with attached evidence, reducing back-and-forth and cutting audit prep time significantly.
Missed control evidence (e.g. proof of access reviews or change management processes)
Lack of real-time visibility into security posture
Time-consuming audits due to fragmented evidence and ad-hoc screenshots
Limited accountability across engineering and operations teams
Vanta centralises all of this by automatically monitoring controls and integrations (Google Workspace, AWS, Slack, GitHub, ClickUp, etc.), surfacing exceptions, and maintaining continuous audit readiness.
💡 How That Benefits Josef
Continuous compliance and audit readiness
Vanta automatically pulls and updates evidence daily, ensuring our SOC 2 controls remain in place year-round. This has removed the “scramble” before audit periods and simplified the annual audit cycle with Johanson Group.
Reduced manual workload
Instead of maintaining spreadsheets and screenshots, Vanta automatically checks controls like employee onboarding/offboarding, MFA enforcement, and change management. Our compliance and engineering teams can now focus on remediations, not evidence gathering.
Improved visibility and accountability
Dashboards show real-time compliance health across control families, which helps track ownership and identify gaps (e.g., missing device encryption, overdue risk assessments). It’s become the single source of truth for our audit posture.
Integrated risk and vulnerability tracking
With integrations to ClickUp and vulnerability management tools (like our Vanta Zap to auto-create tickets when new vulns are detected), we’ve automated follow-up on risk items and can demonstrate a complete remediation workflow.
Streamlined communication with auditors
During audits, most evidence can be shared directly from Vanta — audit requests are mapped to controls with attached evidence, reducing back-and-forth and cutting audit prep time significantly.
Great AI and Automation, But Takes Time to Learn
What do you like best about the product?
The AI features, the UI is nice. I like the automation it provides.
What do you dislike about the product?
It can be clunky to figure out how to use.
What problems is the product solving and how is that benefiting you?
Speeds up review times during the sales cycles by providing the AI feature for the security questionnaires as well as a Trust Center to make it quicker and more accessible to customers. Some customers don't even send us a questionnaire because they can get the assurance level they need by using the Trust Center only.
Great for Onboarding, Offboarding Could Be More Flexible
What do you like best about the product?
The policies that are already built out in the system
What do you dislike about the product?
Offboarding an employee can be a little difficult because you have to wait for systems to talk to each other. it would be better if you could offboard someone manually as part of our termination checklist
What problems is the product solving and how is that benefiting you?
Vanta is helping us pass security audit tests from other companies because the policies are already built in and we can easily point to them when documents are being requested.
Helpful Templates, But Integration Sync Needs Improvement
What do you like best about the product?
Using the existing templates helps a lot in creating policies.
What do you dislike about the product?
There are times when the integration fails to update as expected. While I realize that syncing can require some time, there are occasions when it simply doesn't function properly.
What problems is the product solving and how is that benefiting you?
Defining the list of policies and tests is helpful because it allows us to create documentation that supports these policies. This process ensures that our documentation is aligned with the established policies, making it easier to maintain consistency and clarity.
Good self-serving platform for compliance needs
What do you like best about the product?
I like all the templates for policy and compliance documents that come with the platform and are easy to customize for the required use case.
I think the number of integrations of pretty good and the vendor analysis is good and has caught most of the vendors we have.
The amount of tests and the remediation steps are helpful.
I think the number of integrations of pretty good and the vendor analysis is good and has caught most of the vendors we have.
The amount of tests and the remediation steps are helpful.
What do you dislike about the product?
The UI can be sometimes confusing and certain filters or controls are difficult to find sometimes.
What problems is the product solving and how is that benefiting you?
We're using Vanta to obtain our SOC2 certification. It has been helpful providing the required tests and controls for us to comply to.The integrations make easy to provide evidence and to analyze quickly the state of the systems we have to be monitored. The template documents have been helpful to shape the compliance policies we need to obtain the certification.
Vanta’s Automation Transforms Compliance with Seamless Integrations and Intuitive Dashboard
What do you like best about the product?
Vanta’s automation is a game-changer. It eliminates the tedious manual work involved in gathering audit evidence and tracking compliance controls. The platform’s integrations with popular tools—like Microsoft 365, Salesforce, and Jira—make it incredibly easy to monitor systems and users in real time. The dashboard is intuitive, visually clean, and provides an at-a-glance view of your compliance status. I especially appreciate the reminders and alerts that keep the whole team accountable without adding extra administrative burden.
The continuous monitoring and audit-readiness support are by far the most helpful features. Vanta doesn’t just help you pass an audit once—it helps you stay compliant all year long. Their support team and dedicated compliance specialists are also excellent, offering hands-on guidance throughout the certification process. The pre-built policy templates and security questionnaires save a ton of time and make compliance accessible, even for teams without a full-time security or compliance expert.
The biggest upside is confidence and speed. Vanta drastically reduces the time it takes to get audit-ready (SOC 2, HIPAA, etc.), which means you can close deals faster and demonstrate trust to customers sooner. It also scales well—what starts as a compliance tool quickly becomes a security management system that grows with your company. The automation, integrations, and excellent customer experience all make Vanta a long-term partner rather than just a one-time compliance vendor.
The continuous monitoring and audit-readiness support are by far the most helpful features. Vanta doesn’t just help you pass an audit once—it helps you stay compliant all year long. Their support team and dedicated compliance specialists are also excellent, offering hands-on guidance throughout the certification process. The pre-built policy templates and security questionnaires save a ton of time and make compliance accessible, even for teams without a full-time security or compliance expert.
The biggest upside is confidence and speed. Vanta drastically reduces the time it takes to get audit-ready (SOC 2, HIPAA, etc.), which means you can close deals faster and demonstrate trust to customers sooner. It also scales well—what starts as a compliance tool quickly becomes a security management system that grows with your company. The automation, integrations, and excellent customer experience all make Vanta a long-term partner rather than just a one-time compliance vendor.
What do you dislike about the product?
While Vanta is an incredibly powerful platform, there are moments where the user interface can feel a bit overwhelming—especially when you’re first getting started. With so many integrations and automated checks running, it can take some time to understand how everything connects. Occasionally, certain integrations (like custom infrastructure setups or less common tools) require extra configuration or manual input to sync properly.
The policy customization process could be more flexible. Vanta offers great templates, but editing or tailoring them to specific internal workflows sometimes feels constrained by the platform’s structure. Additionally, notifications can be a bit noisy, and fine-tuning alert settings to avoid alert fatigue takes some trial and error.
The main downside is cost and learning curve—Vanta isn’t the cheapest option, and smaller startups might find the pricing high if they’re early in their compliance journey. There’s also a dependency on Vanta’s integrations, so if your tech stack isn’t well supported, you might need some manual workarounds. Finally, while Vanta’s audit partners are helpful, working through third-party auditors within the platform can sometimes create coordination delays during busy audit seasons.
The policy customization process could be more flexible. Vanta offers great templates, but editing or tailoring them to specific internal workflows sometimes feels constrained by the platform’s structure. Additionally, notifications can be a bit noisy, and fine-tuning alert settings to avoid alert fatigue takes some trial and error.
The main downside is cost and learning curve—Vanta isn’t the cheapest option, and smaller startups might find the pricing high if they’re early in their compliance journey. There’s also a dependency on Vanta’s integrations, so if your tech stack isn’t well supported, you might need some manual workarounds. Finally, while Vanta’s audit partners are helpful, working through third-party auditors within the platform can sometimes create coordination delays during busy audit seasons.
What problems is the product solving and how is that benefiting you?
Before Vanta, maintaining continuous compliance and ensuring every employee acknowledged security policies was a tedious, manual process. Vanta completely transformed that experience by automating compliance workflows and providing real-time visibility into our security posture. Instead of chasing down screenshots, spreadsheets, or employee attestations, everything is centralized and monitored automatically.
Vanta helps us streamline compliance for frameworks like SOC 2 and HIPAA, dramatically reducing the time and effort needed to prepare for audits. The automated evidence collection from integrations across our systems—cloud providers, HR platforms, and ticketing tools—means we’re always audit-ready, not scrambling at the last minute.
Another huge benefit is policy management and employee engagement. Vanta makes it easy to distribute policies to all employees and track their acknowledgment digitally. This ensures 100% policy acceptance and ongoing accountability, which is essential for maintaining compliance and building a strong security culture across the organization.
From a business standpoint, Vanta has allowed us to accelerate sales cycles by providing customers and partners with trusted proof of compliance, while also reducing risk exposure through continuous monitoring. In short, Vanta gives us confidence, saves time, and supports company-wide compliance with minimal friction.
Vanta helps us streamline compliance for frameworks like SOC 2 and HIPAA, dramatically reducing the time and effort needed to prepare for audits. The automated evidence collection from integrations across our systems—cloud providers, HR platforms, and ticketing tools—means we’re always audit-ready, not scrambling at the last minute.
Another huge benefit is policy management and employee engagement. Vanta makes it easy to distribute policies to all employees and track their acknowledgment digitally. This ensures 100% policy acceptance and ongoing accountability, which is essential for maintaining compliance and building a strong security culture across the organization.
From a business standpoint, Vanta has allowed us to accelerate sales cycles by providing customers and partners with trusted proof of compliance, while also reducing risk exposure through continuous monitoring. In short, Vanta gives us confidence, saves time, and supports company-wide compliance with minimal friction.
Seamless SOC 2 Compliance, Strong Integrations
What do you like best about the product?
I've been using Vanta for around one to two years primarily for SOC 2 compliance, and I am very impressed with the ease of setup. I was pleasantly surprised by how it seamlessly integrated with our infrastructure, making the process of getting SOC 2 certification as straightforward as possible. Vanta efficiently keeps our team on track to maintain SOC 2 compliance, effectively eliminating the need for someone within the team to constantly remind us of the necessary tasks. The system has all tasks pre-set, allowing me to see exactly what I need to accomplish without having to figure it out myself, which simplifies the compliance process significantly. The integrations, specifically with infrastructure providers like AWS and Google Cloud, are a standout feature for me, as they allow us to align our tests efficiently. Vanta excels in providing integrations and individualization that adapt to our setup needs. This level of integration is crucial for streamlining our SOX 2 certification process, which is a significant benefit for us.
What do you dislike about the product?
I've noticed some inconsistency among audits through Vanta. Initially, our audits were somewhat lenient, but the latest audit became extremely strict suddenly. This inconsistency, even with the same auditors, is problematic as it makes it challenging to predict the time needed for future audits, despite having Vanta streamline our processes.
What problems is the product solving and how is that benefiting you?
I find Vanta solves compliance tracking, ensuring our team stays on track with SOC 2 requirements efficiently.
showing 151 - 160