Vanta
VantaExternal reviews
2,122 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Visually Stunning and a Pleasure to Use
What do you like best about the product?
very visually appealing and is able to connect with all the different vendors we used
What do you dislike about the product?
so far nothing, is a really powerfull tool
What problems is the product solving and how is that benefiting you?
the automation, not needing to gather evidence manually is a big win for me
Perfect Compliance Tool for Small Teams, But May Not Scale for Complex Org Structures
What do you like best about the product?
In my experience, this tool greatly streamlines the process of tracking and managing compliance. It also makes it much easier to provide auditors with the necessary evidence for various controls. This is especially valuable for smaller organisations like mine, where we often lack the manpower to continuously oversee policies, controls, and evidence.
What do you dislike about the product?
While this solution works well for smaller companies, I have found that it may not always address the specific requirements that larger organisations have in their audit processes.
What problems is the product solving and how is that benefiting you?
Vanta plays a central role in our compliance process. We rely on it to monitor our compliance status, manage risks, conduct security assessments, oversee vulnerability management, handle MDM, and address many other needs.
Robust Compliance Tool with Seamless HITRUST Integration
What do you like best about the product?
I truly value Vanta's effectiveness in keeping us up to date with compliance, controls, policies, and procedures, which is critical for our security needs. I appreciate how it seamlessly integrates with HITRUST, helping us manage our certification requirements efficiently, which is crucial as we need to undergo an annual review and a full certification every other year. The policy and procedure notifications are extremely helpful in ensuring our annual review and ratification processes are smooth. I also love that Vanta offers this comprehensive ecosystem where everything is kept in one place, and it makes it easy to notify the necessary users about updates. Moreover, I am impressed by the compliance portal that allows our customers to access all of our attestations and certifications directly, eliminating the need to send them ZIP files, thus streamlining and professionalizing our interactions with potential customers. With integration capabilities with software like Microsoft Entra, OneDrive, and CrowdStrike, among others, it fits perfectly into our existing infrastructure, offering us a cohesive workflow. I found the setup to be straightforward, largely due to Vanta’s user-friendly approach that guides us through the process effectively. Overall, my six-month experience using Vanta has been nothing short of satisfying, fulfilling all our needs for a GRC tool, and I am very happy with our decision to utilize their services.
What do you dislike about the product?
The setup process, while not difficult, was notably time-intensive due to the number of uploads, edits, and assignments required. Although the setup is facilitated with a step-by-step guide, a more detailed walkthrough could have made it even more efficient.
What problems is the product solving and how is that benefiting you?
I use Vanta to keep our compliance and security up to date, streamline policy reviews, and support HITRUST certification, enhancing our governance and reducing manual overhead.
Automates Compliance Tasks and Saves Time Effortlessly
What do you like best about the product?
It automates most of the compliance work, saving time on evidence collection and control tracking.
What do you dislike about the product?
Some controls can be too rigid or unclear, requiring manual clarification or extra customization to fit real-world setups.
What problems is the product solving and how is that benefiting you?
Vanta streamlines continuous compliance by automating evidence collection, control monitoring, and audit readiness, saving significant time and reducing human error while ensuring clients stay audit-ready year-round.
Effortless Compliance Management, But Integrations Could Be More Flexible
What do you like best about the product?
I like that Vanta makes compliance and security management simple by automating evidence collection and monitoring in real time. It saves a lot of time and manual effort. I have more clear visibility into the organization’s security than ever before.
What do you dislike about the product?
Sometimes Vanta’s integrations can be a bit rigid, requiring manual adjustments when tools or configurations change. It also feels like the simplicity is acquired at the cost of security.
What problems is the product solving and how is that benefiting you?
Vanta helps automate security and audit management by continuously monitoring controls, collecting evidence, and ensuring compliance with standards like SOC 2 and Hipaa. This reduces the time and stress of audit preparation while improving overall security visibility and trust with clients.
Simple Custom Tests, But Limited Flexibility for Advanced Compliance
What do you like best about the product?
the fact that is simple and that allows you to create some custom tests to check compliance.
also customer support is great, they allowed us to test the CIS extra framework.
also customer support is great, they allowed us to test the CIS extra framework.
What do you dislike about the product?
The fact that customs tests are limited, you can't just get all the paramiters and you cant simulate the CIS like other frameworks allow it to do.
What problems is the product solving and how is that benefiting you?
I appreciate the integration features, especially how the tool centralises security compliance. It’s convenient to be able to check both CIS and ISO frameworks directly from the same platform.
Great Framework Variety, Needs More Integration Options
What do you like best about the product?
Various frameworks and collection of controls in one place is what i like the most
What do you dislike about the product?
Could integrate more frameworks and add in the option to automate the integrations using a vanta agent
What problems is the product solving and how is that benefiting you?
Vanta is helping me with security compliance and maintaining the security posture without having to think about it every day
Impressive AI Features and SOC Integrations Make Compliance Easy
What do you like best about the product?
I enjoy their new AI features, their company policy keeping section, the API integrations for SOC compliance, and the risk register area.
What do you dislike about the product?
Sometimes the platform is a bit difficult to use due to all the advanced technical features.
What problems is the product solving and how is that benefiting you?
Allowing us to keep a GRC platform all in one place and the API integrations remove the need for more manual evidence gathering techniques.
User-Friendly and Helpful, But Needs Better Task Organization
What do you like best about the product?
This tool was incredibly helpful and very easy to use, making for an overall excellent experience. Implementation was straightforward, and I didn't encounter many questions or issues along the way.
What do you dislike about the product?
There are too many tabs and micro tasks, which can make navigation a bit overwhelming at first. It would also be helpful if the tasks were already organized by teams or at least suggested to be assigned to certain team members.
What problems is the product solving and how is that benefiting you?
Making it super easy to get all the information and documentation for a security compliance review
Helpful Task Guidance, But Hidden Extra Costs
What do you like best about the product?
The suggestions on how to complete tasks
What do you dislike about the product?
Full financial commitment is not disclosed. It's not clear that after you complete all documentation you then have to pay for another external service. We were no where near budgeted for that.
What problems is the product solving and how is that benefiting you?
We had bad info from film sector advising us we had to be SOC2 compliant. only to find out it was not relevant. It's helped us tighten our security administration, but upset we were upsold so many things.
showing 31 - 40