Vanta
VantaExternal reviews
2,422 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Effortless Compliance with Intuitive Interface
What do you like best about the product?
I like Vanta's easy UI and the progress bar, which make it straightforward to see how far along we are and who owns what. I also find the descriptions of all necessary docs and controls really helpful. It helps keep everything up to date and ready for audits, and lets us know when renewals are due.
What do you dislike about the product?
Sometimes it's hard to know exactly where missing items sit, like policies. I'd like everything to be available in one tab with all expiration dates and status.
What problems is the product solving and how is that benefiting you?
I use Vanta for HIPAA and SOC2 compliance, ensuring everything is up-to-date and audit-ready. It makes tracking ownership and progress easy and helps us know when renewals are due.
Streamlined Compliance, Effortless Integration
What do you like best about the product?
I use Vanta to monitor compliance with the SOC2 framework, and its audit view really helps in getting SOC2 certified. Vanta is like a single pane of glass for risk and compliance, simplifying evidence collection with a robust list of integrations and easy-to-follow templates. I especially like the integration support, as our tech company uses many tools, and they integrate well with Vanta. Access reviews in Vanta are crucial for ensuring our employees have the correct access they need. The initial setup of Vanta was extremely easy too.
What do you dislike about the product?
Attestation support could be improved, for instance using a tool that doesn't have an integration. If we could write an attestation instead of deactivating a test that would be helpful.
What problems is the product solving and how is that benefiting you?
I use Vanta as a single pane of glass for risk and compliance, streamlining evidence collection with its robust integrations and templates.
Effortless SOC 2 Compliance with Intuitive Features
What do you like best about the product?
I love how Vanta is really user-friendly, making it easy to navigate and understand complex audits. The notifications are great too; they alert us when items need to be completed, which helps our team keep up with audit requirements without missing anything important. The initial setup of Vanta was very easy and quick.
What do you dislike about the product?
I think it could be improved by making it quicker to log in without a magic link.
What problems is the product solving and how is that benefiting you?
Vanta organizes all our compliance tasks and tracks everything needed for our SOC 2 audit. It's user-friendly with great notifications that help us keep up with audit requirements easily.
Automated Questionnaires That Speed Up Our Security Processes
What do you like best about the product?
Automated questionnaire features which help us move through security processes faster
What do you dislike about the product?
The platform can sometimes be a bit unintuitive
What problems is the product solving and how is that benefiting you?
Vanta helps us manage our security process both internally and externally better
Automation and Security Made Effortless
What do you like best about the product?
I really appreciate Vanta for the automation and real-time visibility it provides. It removes a lot of manual effort from compliance and helps teams to stay secure continuously, not just for audits. Also, I found the initial setup of Vanta to be very straightforward!
What do you dislike about the product?
One area that could be improved is the flexibility around certain controls.
What problems is the product solving and how is that benefiting you?
Vanta automatically checks security controls, removing manual effort from compliance and helping teams stay secure continuously. I like the automation and real-time visibility it provides.
Centralized Control Mapping That Streamlines Evidence Collection for Audits
What do you like best about the product?
I like the way it's structured, which allows to have different frameworks while mapping similar controls and gathering the evidence only once. This helps having all the information centralized in one place, reduce time and effort to check security controls and gather the necessary information for auditors to review during assessments.
What do you dislike about the product?
Some features still need improvement, for example, the Access Request and Access Review tools. These are helpful but sometimes require manual work.
What problems is the product solving and how is that benefiting you?
Centralizing a variety of frameworks we need to comply with.
Maintaining a policy inventory.
Assessing vendors.
Tracking and monitoring access provisioning.
ISO and SOC audits.
Risk Management.
Maintaining a policy inventory.
Assessing vendors.
Tracking and monitoring access provisioning.
ISO and SOC audits.
Risk Management.
Seamless Stack Integrations with Effortless, Timestamped Audit Proof
What do you like best about the product?
It connects directly to our stack (Google Workspace, GitHub, Slack) and pulls the data automatically. It doesn't just "check" a box; it provides the timestamped proof auditors need without you lifting a finger.
What do you dislike about the product?
Vanta excels with "standard" stacks (e.g., Google + Jira + Slack). However, if your tech stack is more niche or complex, you may hit limits.
What problems is the product solving and how is that benefiting you?
Vanta is primarily solving the problem of manual compliance, which historically has been a "paperwork nightmare" that drains time from engineering and security teams.
Easy Plug-and-Play Compliance Automation, but Slow and Error-Prone at Times
What do you like best about the product?
Vanta is an impressive, easy-to-use, plug-and-play tool for compliance. It automates many key components of compliance and gives you more visibility about your assets.
What do you dislike about the product?
It has many issues and technical errors. It also seems so slow sometimes.
What problems is the product solving and how is that benefiting you?
The compliance side of managing evidence and documentation makes a huge difference.
Crystal-Clear ISO 27001/9001 Compliance That Makes Audits Calm and Focused
What do you like best about the product?
What I like most is the clarity it gives me. I can immediately see what’s in place, what’s missing, and what actually needs my attention, without second-guessing or keeping things in my head. That makes a big difference in my day-to-day work on ISO 27001 and ISO 9001. Audits feel calmer, there’s no last-minute evidence chasing, and I can focus on the substance of compliance instead of the logistics around it.
What do you dislike about the product?
One thing I miss is having ready-made templates for internal audits. The data and evidence are there, but when it comes to structuring an internal audit, a lot still has to be built manually. Having simple, well-structured audit templates to start from would save time and make it easier to turn the available information into something immediately usable.
What problems is the product solving and how is that benefiting you?
Vanta solves the problem of visibility and coordination in compliance work. Rather than tracking controls and evidence across multiple tools, documents, and people, everything stays in one place and is easy to follow. For me, that reduces uncertainty and the mental overhead in day-to-day work. I don’t have to keep double-checking whether something is missing or whether it’s up to date.
Moving from "Snapshot Compliance" to Continuous Real-Time Monitoring
What do you like best about the product?
The automation engine is far more proactive than I expected. Instead of just flagging a missing policy, it monitors our actual AWS and GitHub configuration in real-time, catching drift the moment it happens. I particularly appreciate the "Trust Center" feature, which allows us to share our security posture with prospective via a clean URL rather than a messy ZIP file of PDFs.
What do you dislike about the product?
Its not a major issues but it sometime feels, The initial mapping of custom control can be a bit rigid if your company doesn't fit the standard startup mold. While the automation is excellent, troubleshooting why a specific test failed sometimes feels like a scavenger hunt through different menus.
What problems is the product solving and how is that benefiting you?
Vanta effectively ended our reliance on "compliance spreadsheets" that were always out of date. It solves the problem of evidence collection fatigue by automatically pulling the logs and screenshots needed for our SOC 2 audit. This has freed up our small engineering team to focus on building features rather than chasing down screenshots for authors.
showing 271 - 280