Vanta
VantaExternal reviews
2,335 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Essential Tool for SOC 2 Compliance with Intuitive Usability
What do you like best about the product?
I like how Vanta helps us see the steps needed to ensure compliance, like which documents should be on file and actions for onboarding and offboarding. Their dashboard is very intuitive and easy to use. I appreciate the daily email reminders for tasks, which help me stay on top of compliance. The initial setup was extremely easy with Vanta, as they did most of the work and I just had to follow the online instructions.
What do you dislike about the product?
The login feature is clumsy. I can only log in using a magic link and have never been able to use credentials or know how to set them up. Also, even though the dashboard is easy to use, it's hard to search for things if you don't know where they are. Sometimes I struggle to find a document or report when I need to update it.
What problems is the product solving and how is that benefiting you?
Vanta helps us get SOC 2 compliant by clarifying compliance steps and managing documents for onboarding and offboarding. The intuitive dashboard and daily task emails keep me organized.
Effortless Compliance and Monitoring
What do you like best about the product?
I really like how easy it is to understand how to resolve non-compliant tests with Vanta. It's great having a page I can show regulators to demonstrate our compliance, which is very reassuring. The initial setup of Vanta for our team was extremely easy, which I appreciate.
What do you dislike about the product?
Nothing
What problems is the product solving and how is that benefiting you?
I use Vanta for HIPAA and PIPEDA compliance. It helps in monitoring our compliance, ensuring we remain compliant.
Seamless SOC 2 Compliance with Vanta
What do you like best about the product?
I really appreciate how simple Vanta is. It automatically gathers evidence or identifies failures and gaps in our security stance, which was always a pain in the past. This automation saves us a ton of time and money compared to doing it manually. The initial setup was dead simple, with no complexity other than the SOC 2 process itself. Vanta makes the entire SOC 2 process much easier and more affordable than anything we've done before.
What do you dislike about the product?
It's very minor, but sometimes when connecting to external systems, it could have a little bit more intelligence. It could just go put the tickets inside of our bug tracking system automatically. It has a button, but you end up manually configuring some stuff it already knows, which is not a huge headache but a nuisance. I think they could improve their product by connecting it fully end-to-end. They could notice a security problem and file that in our bug tracking system, and an agent would automatically pick it up, propose a solution, and alert us to review and merge.
What problems is the product solving and how is that benefiting you?
I use Vanta to automate our SOC 2 process, reducing the administrative burden significantly. It simplifies the process by automatically gathering evidence and identifying security gaps, saving us time and money.
Simplified SOC2 with Seamless Integrations
What do you like best about the product?
I like Vanta for its ease of use and integrations. The automatic testing feature is particularly useful for me. It helps me know what to focus on and resolve at a glance, saving me time. The initial setup of Vanta was also pretty easy, which I appreciate.
What do you dislike about the product?
I would like to set reminders in time intervals. So 30 days before a test or document expires, two weeks and then maybe 3 days before expiration. Or, have the ability to snooze reminders for a period of time. I currently have no control over that feature so things just get lost in the noise.
What problems is the product solving and how is that benefiting you?
I use Vanta for SOC2 compliance, and it helps with document storage, testing management, and security policy accountability. The automatic testing lets me know what to focus on, saving me time. Its ease of use and integrations are what I like most.
All Our Compliance & Security in One Place—User-Friendly and Easy to Stay On Top Of
What do you like best about the product?
keeps all of our compliance and security needs in one location and makes is user friendly to stay on top of things.
What do you dislike about the product?
for my specific usage, my computer does not need all the same security compliance, so I wish I could tweak my requirement, which I am sure there is a way, but i understand why it should be standard across the board.
What problems is the product solving and how is that benefiting you?
Vanta is used throughout the company to make sure all employees are trained in security measures and makes sure their computers are up to date on security needs
Timely Policy Renewal Updates, Nothing to Dislike
What do you like best about the product?
Timely updates about renewal period of policies
What do you dislike about the product?
There is no such thing that i dislike about Vanta. Yes there can be improvements, but nothing to dislike for sure.
What problems is the product solving and how is that benefiting you?
Vanta is letting us build and maintain a robust ISMS
Easy-to-Use UX and a Helpful API for Building Security Processes
What do you like best about the product?
UX is very good and easy to use, features and functionality work well and offer a good way for organisations to start to build out their security processes, procedures and policies.
The roles and user management meet expectations and the API has been very helpful in building automation between the various IT and security systems.
The roles and user management meet expectations and the API has been very helpful in building automation between the various IT and security systems.
What do you dislike about the product?
The API is missing some features which would allow us to take our efficiency further (e.g. creating a security review on an existing vendor).
The vendor-review AI features are a bit basic and need refinement to add true value, such as ability to define the source scope against specific questions (the AI likes to sometimes use the wrong documents to answer specific questions), and the answer format (e.g. make it succinct). I hope Vanta invests more here so we can use it more to speed up our vendor reviews, as they're a huge time sink right now.
Also the access review feature is lacking and we've had to build our own for cases where there is a 1 user : many instances of the user account in the same product.
The vendor-review AI features are a bit basic and need refinement to add true value, such as ability to define the source scope against specific questions (the AI likes to sometimes use the wrong documents to answer specific questions), and the answer format (e.g. make it succinct). I hope Vanta invests more here so we can use it more to speed up our vendor reviews, as they're a huge time sink right now.
Also the access review feature is lacking and we've had to build our own for cases where there is a 1 user : many instances of the user account in the same product.
What problems is the product solving and how is that benefiting you?
Aligning tests/controls to the associated controls within other compliance frameworks, and holding staff members accountable for evidence. Since controls are distributed across several areas, it's been really helpful for a top-down view and for holding non-security team members accountable for their audit evidence. It means we can spend the time working on more important matters and taking a proactive approach to security, as opposed to just purely reactive.
Straightforward Compliance Made Manageable with a Clean UI and Slack Integration
What do you like best about the product?
What I like most about Vanta is how straightforward it is to use, even for someone without a compliance background. The platform takes what could be a very complex process and makes it feel structured and manageable. The UI is clean and intuitive, so it’s easy to see what needs to be done, understand why it matters, and stay on track.
I also really appreciate the Slack integration. It makes it much easier to involve the team and keep compliance tasks moving forward without constantly having to chase people down. Overall, Vanta does a great job of making compliance feel less overwhelming and more like a normal, day-to-day part of operations.
I also really appreciate the Slack integration. It makes it much easier to involve the team and keep compliance tasks moving forward without constantly having to chase people down. Overall, Vanta does a great job of making compliance feel less overwhelming and more like a normal, day-to-day part of operations.
What do you dislike about the product?
I don’t have any major complaints about Vanta from a product standpoint. If I had to point to something, it would be the cost. For smaller teams or early-stage companies, it can feel like a significant investment. That said, it does replace a lot of manual work and external consulting effort, so the value becomes clearer once you’re actively going through a compliance process.
What problems is the product solving and how is that benefiting you?
We needed a clear structure to follow for SOC 2 and HIPAA compliance, and Vanta provided that framework right out of the box. Instead of figuring out requirements on our own, we had a guided path showing what controls were needed, what evidence to collect, and how everything connected. It turned what could have been a very overwhelming, ambiguous process into something actionable and trackable.
As a result, we’ve been able to move forward with compliance in a much more organized way, involve the right people internally, and feel more confident when speaking with customers about our security posture.
As a result, we’ve been able to move forward with compliance in a much more organized way, involve the right people internally, and feel more confident when speaking with customers about our security posture.
Easy Compliance Insights and Smooth Auditor Sharing
What do you like best about the product?
Out of the box, it provides easy insight into compliance requirements and deadlines. Integrations pull in data from a variety of our other internal tools, all of which is then easily shared with auditors. Vanta also makes annual security trainings and sharing of company policies simple; it's truly a one-stop-shop, empowering smaller startups to keep a clean house. I check it once or twice a week and feel fully on top of things.
What do you dislike about the product?
Navigation can be awkward; it sometimes takes multiple clicks or navigating to a new page in order to add missing information. Searchability could be improved, and there's a small onboarding curve for new users.
What problems is the product solving and how is that benefiting you?
We use Vanta to manage security and compliance requirements. It saves me time and energy, and increases internal confidence in our policies and architecture.
Excellent Compliance Automation with Smooth Onboarding and Responsive Support
What do you like best about the product?
Vanta provides excellent automation around security and compliance workflows, significantly reducing the manual effort needed to collect evidence and maintain continuous compliance. I really appreciate how easy it is to integrate with our existing tools and how quickly it gives visibility into our compliance posture. The platform is intuitive, the onboarding is smooth, and the customer support team is highly responsive and knowledgeable.
What do you dislike about the product?
Some integrations could be more customizable for complex environments, and occasionally certain controls produce false positives or require manual tuning. Reporting capabilities are good but could offer more flexibility for advanced, tailored reports. Overall, these are minor issues compared to the overall value.
What problems is the product solving and how is that benefiting you?
Vanta helps us automate security compliance, centralize policies, manage vendor risk, and prepare for audits with far less manual effort. It provides real‑time visibility into our security posture, reduces operational risk, and saves the team a significant amount of time during audit cycles. The automation and continuous monitoring allow us to stay compliant with frameworks like SOC 2 and ISO 27001 much more efficiently.
showing 51 - 60