Vanta
VantaExternal reviews
2,112 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Makes Compliance Much Easier
What do you like best about the product?
Vanta lays out all the controls for you with reminders, so it's easy to stay on top of compliance. The support team is helpful, and the vast number of integrations makes access reviews much smoother. The built-in security training for team members is also a great addition, helping keep everyone aligned on best practices. Overall, it takes a lot of the headache out of audits.
What do you dislike about the product?
Some integrations are missing, and the control numbers didn’t match up exactly with what our auditors expected, which caused a bit of extra work.
What problems is the product solving and how is that benefiting you?
Vanta helps us stay on top of SOC and PCI compliance by organizing all our controls, automating reminders, and simplifying access reviews through integrations. The built-in security training keeps our team informed, and the platform makes audits much smoother by ensuring we have everything in place ahead of time. It saves us time and reduces the stress of managing compliance manually.
Like the centralized view of our security controls
What do you like best about the product?
Like the centralized view of our security controls and suggested remedies.
What do you dislike about the product?
Ticking system is confusing (I cannot seem to access it in the Vanta portal).
What problems is the product solving and how is that benefiting you?
Keeping HIPAA compliant
Very easy to use and comprehensive
What do you like best about the product?
Very easy to use, very cocmprehensive and self paced.
What do you dislike about the product?
There are lots of resources, perhaps too many resources. Template policies are a bit clunky. Can only operate in 1 company name and templates for multi subsidiary companies does not exist yet.
What problems is the product solving and how is that benefiting you?
Compliance accreditation
An essential service for internal account operations as well as compliance.
What do you like best about the product?
The management of employee onboarding and offboarding is revolutionary.
I like the many integrations with various services
The result is perfect compliance management.
I like the many integrations with various services
The result is perfect compliance management.
What do you dislike about the product?
More features would be nice, but there are many paid options. And it cannot be easily subscribed.
What problems is the product solving and how is that benefiting you?
Good at detecting software vulnerabilities, but many are detected and cannot be resolved, such as those for which no fixes have been released
I would like more guidance on those solutions.
I would like more guidance on those solutions.
Automated Tests saved us hundreds of hours in manual data collection/submission
What do you like best about the product?
We went from a "fairly organised team" with no formal compliance to a team that's started the attestation period for SOC2 in 3 weeks. Having done SOC2 and ISO 27001 "the hard way" (aka manually) previously, this was incredible to be a part of.
Plugging in Vanta to our Production AWS Accounts and all of our integrations was so simple and really helped us figure out any gaps we needed to plug. Vanta for us was a natural fit as they covered about 95% of all the tools we use internally to provide our software to customers, which was great for us.
The biggest plus for us of using Vanta is the internal resources it requires to get up and running and work through the compliance. I ran our entire compliance operation in Vanta from Day 1 with pretty much no help, this isn't because my peers weren't there to help, but Vanta made it so easy to stay organised and ontop of it I felt I didn't need any assistance.
Plugging in Vanta to our Production AWS Accounts and all of our integrations was so simple and really helped us figure out any gaps we needed to plug. Vanta for us was a natural fit as they covered about 95% of all the tools we use internally to provide our software to customers, which was great for us.
The biggest plus for us of using Vanta is the internal resources it requires to get up and running and work through the compliance. I ran our entire compliance operation in Vanta from Day 1 with pretty much no help, this isn't because my peers weren't there to help, but Vanta made it so easy to stay organised and ontop of it I felt I didn't need any assistance.
What do you dislike about the product?
Some of the integrations didn't quite do what we needed. Auth0 for example is expecting it to be a internal IDP (which it can be) but we are using it as a authentication backend for our customers in Production. I wanted to ensure (via vanta) that we are delegating internal access to that Production Tenant correctly/compliantly.
When I configured the Auth0 integration it started to add user records to Vanta itself for our customers. Imagine sending compliance reminders to all your customers? It would be elementary to accidentally to do this if you're in the same situation.
Writing custom tests can also be tricky without customer support help. It'd be great if this was streamlined a bit so I didn't have to ask for help.
We had a period where Vanta introduced in the realm of a hundred additional AWS tests without notice, pushing us from 99% compliant to ~65%. This was then a few days later reverted and the tests have dissappeared. Rolling out additional tests is of course critical to the success of Vanta as a compliance platform, I just wish they made this easier for the customers to accept/implement when they're ready.
When I configured the Auth0 integration it started to add user records to Vanta itself for our customers. Imagine sending compliance reminders to all your customers? It would be elementary to accidentally to do this if you're in the same situation.
Writing custom tests can also be tricky without customer support help. It'd be great if this was streamlined a bit so I didn't have to ask for help.
We had a period where Vanta introduced in the realm of a hundred additional AWS tests without notice, pushing us from 99% compliant to ~65%. This was then a few days later reverted and the tests have dissappeared. Rolling out additional tests is of course critical to the success of Vanta as a compliance platform, I just wish they made this easier for the customers to accept/implement when they're ready.
What problems is the product solving and how is that benefiting you?
It makes it so easy to manage our compliance internally. I don't think I'll ever go back to the manual way.
Compliance automation and tracking made easy
What do you like best about the product?
The visibility and tracking of the tests and requirements in Vanta is really good. The ability to see if tests are overdue, due soon or need remediation and to be able to filter by category is extremely helpful. The Trust Report is very well done and a time saver as well. The Assets module also provides good visiblity for our inventories.
What do you dislike about the product?
I would like to be able to add more than 5 resources in the trust report.
What problems is the product solving and how is that benefiting you?
Vanta's ability to provide insight and visibility in to the different controls and requirements for our SOC 2 and PCI audits is great.
Efficient tool for security audit
What do you like best about the product?
It helps you to prepare for all the requirment of audit including template you can easily edit to fit your company's situation.
What do you dislike about the product?
Daily reminder is a bit much and difficult to distinquish if it is your task just from email
What problems is the product solving and how is that benefiting you?
Help us to pass security compliance more efficiently
Good platform to get fast SOC 2 compliance
What do you like best about the product?
Simple to use portal with clear steps and screenshots
What do you dislike about the product?
There are opportunities to enhance customer support
What problems is the product solving and how is that benefiting you?
SOC 2 and GDPR compliance requirements
Many integrations available
What do you like best about the product?
- with multiple integration support it's easy to connect to other SaaS products within our tech stack
- alerts to help keep company compliant and audit-ready
- alerts to help keep company compliant and audit-ready
What do you dislike about the product?
- Delay in information syncing over from integrations
- Constant alerts from emails when tests and integrations are not working
- Constant alerts from emails when tests and integrations are not working
What problems is the product solving and how is that benefiting you?
- provides documented proof for compliance related audits
- maintains a databse to address security related compliance
- maintains a databse to address security related compliance
Great SOC 2 Tool!
What do you like best about the product?
It is easy to use and has good notifications.
What do you dislike about the product?
Nothing, it does what it needs to do and meets our needs.
What problems is the product solving and how is that benefiting you?
Managing our SOC 2
showing 251 - 260