What do you like best about the product?

The ability to generate template automatically is incredibly helpful. The punchlist is great. The risk assessment tools are very helpful too. The integrations that exist work well. Excellent post-sales support.

What do you dislike about the product?

The UI is patchy. It has some lovely touches, but the main navigation could use some work. You can get a bit lost when ramping up on the product. But once you're familiar with it, it's simple enough.

What problems is the product solving and how is that benefiting you?

SOC 2 Type 1 compliance. We will use for SOC 2 Type II when ready.

What do you like best about the product?

I'm a big fan of automation, so when I heard about the legwork required for gathering evidence as part of SOC 2 audits, I cringed. That's why when I found out about Vanta and how they automate what can and should be automated, I was so relieved. I love how easy Vanta has made the audit and maintenance processes for SOC 2 and other compliance certifications.

What do you dislike about the product?

Not much to dislike. They do what they say they'll do. My only wish is that they would add some kind of IDS feature so they can be a complete one-stop shop for me in terms of compliance and security automation.

What problems is the product solving and how is that benefiting you?

Compliance audits were exactly what they said they would be: a breeze.

What do you like best about the product?

The team is easy to work with and they make the process for getting ready for SOC2 Type 1 and SCO2 Type 2 very straightforward. We are a very small company and it feels as though they have joined our team and have taken charge in helping us achieve SOC2 Type 1 and SOC2 Type 2 status.

They have connected to us to the appropriate CPA offices for our SOC2 Type 1 and SOC2 Type 2 audit. They gave us multiple options based on different parameters we laid out so we could find the right fit for us. They immediately make the connections after our kick off call so I felt like we were a top priority for them.

They also make introductions to people to help us with our Pen-test. Again, keeping in mind what is most important to us (time, cost, etc). They also provided us with information on how to get each employee through the required security training. They are very responsive and have been great at guiding us, setting up weekly check in calls and make sure we are on track for our SOC2 Type 1 and SOC2 Type 2 audits. They are flexible to work with and super accommodating. I really trust them and know they have our best interest. The product make me feel confident that we will go through our SOC2 Type 1 and SOC2 Type 2 successfully.

The upside of using Vanta and I really do not have to think too much about what is needed to go through a SOC2 Type 1 and SOC2 Type 2 audit. They lay everything out for me and I just need to go through and complete each action item. It's like they've created an extensive check list for me and I just go through and manage each task.
I love that they integrate with Checkr and Rippling- I was able to add in our anti-virus software through Rippling, which is a requirement of the SOC2 Type 1 and SOC2 Type two. They also make it easy to push all of our background checks from Checkr into Vanta so there was little work on my end to show that each employee has gone through and passed their background check.

I love that we have a dedicated Customer Success Manager. It really helps us stay up to date and make sure we are hitting important dates towards SOC2 Type 1 and SOC2 Type 2. We have a weekly check in call with our Customer Success Manager who has been a pleasure to work with. Each week we go through what we've accomplished and what is still outstanding. She answers any questions we have and helps make sure we are staying on top of what needs to be done within the Vanta platform. It's a time for us to check in and make sure we are still on track to meet our deadlines for our audit. It also helps us be accountable.

What do you dislike about the product?

So far there isn't much to dislike, as the team has been super easy to work with. We have had a great experience. We haven't run into any issues when working with Vanta.

Sometimes the section for company profile is difficult to find. It would be nice if that were listed across the top menu bar instead of under the profile section. There are important pieces of information to be filled out in that section so it would be nice if it was more accessible.

The interface on the people section could be a little easier to look through and outline what tasks each employee has completed and what is outstanding. It shows red dots next to each employees but I wish it would let me click on the name and show a dropdown menu of what is missing from that employee's profile so I can view it all in one screen instead of it having a pop out window.

For the security training, things were a bit complicated. We used the suggested link and it was a big difficult to use, not the most user friendly. It wasn't very obvious on how to submit that each employee finished the training. There is no certificate sent to the employee upon completion, they just need to take a screenshot. It would be great if the system generated a certificate of completion because right now I am having to upload each screen shot individually for each employee, which is a little time consuming.

We have to get vendor reports for each vendor we work with (their SOC2 reports). This process was a bit tedious. I wish Vanta had a way to have access to the SOC2 reports and we could just pull the ones we wanted. I had to reach out to each vendor directly to request their reports and it took some time and digging to figure out how to find who to contact to get the appropriate report. The reports seem generic so I do not know why it isn't possible to just have these reports stored in Vanta and we can just pull which reports we need based on which vendors we connect with.

What problems is the product solving and how is that benefiting you?

We are working towards our SOC2 Type 1 and Type 2. The problem we are solving is working towards becoming a more secure company, to keep company data and privacy as a top priority for us. We want to show that we It is something we want to get as a it makes us more appealing to customers and shows that we are secure and take out security seriously. The benefits are endless for us and we are excited to be working with Vanta. It has been great that they provide template for policies and make it really easy to make sure we are set up for success. The policy templates are very clear and easy to fill out and upload back into Vanta. I am able to easily track each employee and make sure they are also set up for compliance. They also send out weekly reviews which highlight what things are still missing and what gaps need to be filled, which helps me stay on track and make sure we have everything set up properly as we approach our audit with the CPA firm. They have connected us to the appropriate CPAs and introduced us to someone who can run a pen test.

Vanta is helping us become SOC2 compliant. This is a huge accomplishment and helps to validate our business. We are super excited to be going through this process with them because they seem like a trusted and knowledgeable source in making sure we are set up for the audit and to achieve our SOC2 Type 1 and SOC2 Type 2.

Vanta has helped us solve the daunting task of going through a SOC2 Type 1 and SOC2 Type 2 audit and certification. I was overwhelmed at first but their approach and the confidence I have in them has made this process feel easy and straightforward. I am not a very technical person and they have been able to speak to me in a way that enables me to understand everything we are doing. We are happy to be working with Vanta. I can't imagine going through SOC2 Type 1 and SOC2 Type2 without their guidance and help.

What do you like best about the product?

The dashboard and the ability to view all of of our tools, policies in one place. I found the templates to helpful to assist with gaps where we needed additional guidance. Also liked the ability to monitor, track and customize all policies in the dashboard instead of manual spreadsheets.

What do you dislike about the product?

Sometimes there is **too much automation and the system wouldn't account for corner cases. Additionally, the classification of employees versus contractors was slightly cumbersome and manual.

Also, small item but I thought it was a bit tacky that they sent me an invoice literally seconds after signing the contract. I'm sure it was automated but I think a little grace could have been considered.

What problems is the product solving and how is that benefiting you?

SOC II Type II Compliance and HIPAA Certification. This will help us engage with additional partners to help build trust.

Recommendations to others considering the product:

We considered (4) vendors before making the choice with Vanta. We compared pricing, efficiency, ease of use and timeframes and they exceeded in all categories. Their onboarding team and customer success manager was also extremely helpful.

Please do not publish my name/company to your site please.

What do you like best about the product?

Automated Policies, asset tracking and onboarding gave us more time to focus on security and compliance practices

What do you dislike about the product?

The new policy wizard is an improvement, but more nuanced policy generation would be a great value add

What problems is the product solving and how is that benefiting you?

By continuously monitoring our core security and onboarding practices, it allows us to focus on policy and enforcement instead of work-intensive security review

Recommendations to others considering the product:

For a small to medium-sized organization without a full SIEM and compliance system, Vanta will absolutely provide the beyond its cost in value for your SOC2 compliance needs.

What do you like best about the product?

Customer support - Jones was extremely responsive, knowledgeable, and motivated to fix the root cause of issues.
Product - Everything worked well and updated quickly. Vanta integrated with all our existing software stack (AWS, Github, Jira)

What do you dislike about the product?

My biggest complaint was around the tasks not being sorted into categories, but Jones informed me that Vanta is working on a dashboard overhaul that would address this.

What problems is the product solving and how is that benefiting you?

Undergoing an audit for SOC 2 certification. We are about to begin the audit.
I genuinely don't think we would have been able to go for a SOC 2 at our size (8 FTEs) without Vanta.

What do you like best about the product?

I like the ease of using Vanta. It is an extremely organized project management tool that helped our company create effective policies for our SOC audit. Our team consisted of 3 main administrators and in the next year will increase. Despite the amount of users, Vanta was really simple and an efficient tool for us!

What do you dislike about the product?

At the time our company was using Vanta, there were not enough integrations with HR tools that we were using. However, as of my most recent conversations with them, I understand that this is something they are working on this year. I look forward to using those new integrations in our next audit.

What problems is the product solving and how is that benefiting you?

I am able to solve problems like policy creation for SOC audits. Our team took over the SOC audit and was struggling to find a way to stay organized. Vanta was the best decision we made. It was our central repository and main source of truth for all documentation.

Recommendations to others considering the product:

It is a fantastic tool for project management and the success of a SOC audit. Our team significantly benefited from Vanta and the methods it helped improve.

What do you like best about the product?

Because Vanta gives me a comprehensive list of controls, I was able to easily assess our SOC 2 readiness on my own without an expensive gap analysis consulting project. As we remediate gaps, I've been able to keep an eye on the controls that are integrated to ensure they stay remediated without a lot of tedious manual effort. And as a bonus, the policies they provide out of the box were written to fit a software organization like ours.

What do you dislike about the product?

It's a little clunky. Some of the nice to have features could use some TLC before really adding value.

What problems is the product solving and how is that benefiting you?

I was able to get ready for SOC 2 without a third party readiness assessment. I was able to create our policies easily without having to use templates designed for traditional on-prem organizations. I am able to monitor a set of controls in the tool itself and am alerted when they fail.

Recommendations to others considering the product:

They are expanding in other areas of compliance as well, so definitely ask about their product roadmap.

What do you like best about the product?

Vanta's app gave us excellent guidance to ensure that we'd succeed with our audit, along with almost all the tools we need to ensure that our controls are effective (such as managing policies, employee onboarding, offboarding, etc). Their customer success team was top-notch.

What do you dislike about the product?

I don't think there are any downsides. I've been a huge promoter of Vanta.

What problems is the product solving and how is that benefiting you?

Vanta helped us go from having a very informal infosec program to successfully completing our SOC 2 Type II audit in a matter of months, with far less tedium than I'd expected. We also make heavy use of their security reports function, which helps prospects understand our security practices during the sales process and has short-circuited the need for SQAs in many instances.

What do you like best about the product?

Modern, easy to use interface that organizes a very complex work stream.

What do you dislike about the product?

A little expensive, but well worth the cost.

What problems is the product solving and how is that benefiting you?

Vanta enhances our organization's ability to scale faster and more securely.