Platform to streamline compliance Audits.
What do you like best about the product?
The platform is very intuitive & makes handling compliance requirements easy to understand and keep track of. It was pretty straightfoward to implement Vanta for our needs as well as integrate our systems into it.
What do you dislike about the product?
Some of the instructions are not up-to-date which caused minor delays. Another would be that when we add new employees the necessary tasks email is not sent out automatically.
What problems is the product solving and how is that benefiting you?
Vanta is streamlining our SOC2 compliance audit. It has been integral to making sure we have all the necessary controls in place as well as keeping on top of them.
Great and simple product
What do you like best about the product?
Made compliance setup and monitoring easy. We could very clearly see what was missing and what we needed to do. Finally, the easy to adopt policy templates were great.
What do you dislike about the product?
Need even more policy templates. Besides that maybe some way to set up reminders for tasks
What problems is the product solving and how is that benefiting you?
SOC 2 Type 2 Complaince monitoring and auditing
It is an awesome experience with simplified portal user experience
What do you like best about the product?
Making compliant an easy task accross different industry and standards.
What do you dislike about the product?
As said earlier, it is awesome experience, I have no downside as of the time of filing this survey.
What problems is the product solving and how is that benefiting you?
Compliance and regulations
Solid platform that is helpful for organizations needing to maintain their compliance requirements.
What do you like best about the product?
Covers several commercial frameworks, has a solid UI, and pretty granular security settings.
What do you dislike about the product?
I wish it was FedRAMP authorized so I could confidently use it with our DIB clients.
What problems is the product solving and how is that benefiting you?
It allows for keeping all the data required to track compliance in an organized manner.
pretty good
What do you like best about the product?
That everything is organised and easy to navigate
What do you dislike about the product?
There are a lot of added costs. It really only offer the organisation and 25k are a lot for organisation
What problems is the product solving and how is that benefiting you?
Helping me get ISO
Helps us maintain compliance with standards like SOC 2 and various data policies, but the customer support needs improvement
What is our primary use case?
In our Vanta infrastructure, there's a mix of on-prem and cloud data. The cloud data is stored under WPH Cloud, which is why we can't access it directly as it's dedicated to CyberArk. We have component clusters and some BDIs on the cloud, and remote users need to access these resources for their DHL-related work. Managing this infrastructure involves using HCP Energy as the hypervisor, and hosting multiple Windows AM VMs, all running on version 22.04.
What is most valuable?
It helps us track the compliance of the components listed in our partner's directory. We can also check if the password manager, XML, and three log policies have been properly implemented on the desktop. We use JEM Cloud, which is a SaaS solution, and sometimes it experiences access issues. With Vanta, we can work on resolving these issues and ensuring policy compliance. Vanta also helps us maintain compliance with standards like SOC 2 and various data policies, which are essential for our documentation and communication requirements, ultimately ensuring enterprise software policy compliance.
In my role, which primarily involves IT responsibilities, I often deal with various policies. There are instances where specific policies, especially those related to quality, may not be implemented correctly. This primarily occurs with mainframes and devices owned by particular users. In such cases, Vanta helps us enable these policies on the devices and assign them to the relevant users. It also highlights when certain policies, such as version 86.x, are not assigned through SAP. Vanta provides guidance on configuring and mitigating these issues. Additionally, it helps us with GitHub account provisioning and deprovisioning, as well as managing GitHub and Google Workspace Flex. We also use the 1Password password manager, which Vanta assists in overseeing.
What needs improvement?
For how long have I used the solution?
I have been working with Vanta for two years.
How are customer service and support?
There is a delay with customer support and they are unsure of the answers we need. It could be because they're the first point of contact. But I comprehend the situation, and we're handling the process of receiving messages more swiftly. However, there might still be some occasional difficulty, possibly influenced by geographical factors or varying support response times. In general, I think the service is good.
How would you rate customer service and support?
How was the initial setup?
It's rather straightforward. Initially, when I set it up, I configure it, and then I test it. We have specific commands to troubleshoot issues. We can use OktaNet to check performance or errors. Additionally, there's an agent prospecting feature. They also offer a unit ID from my address, making installation quite simple. It's manageable through monitoring tools.
What's my experience with pricing, setup cost, and licensing?
I can't determine if it's more expensive or cheaper, but I will advise you to explore the options and go with what aligns with what they offer and the prevailing market standards.
What other advice do I have?
I would rate the solution a seven out of ten.
This is particularly important because for certifications like HIPAA and authorized certificates, if there's no dedicated team, the responsibility falls on individual people to regularly oversee all aspects. However, if we integrate all these steps, it becomes much easier to understand our requirements and what needs to be addressed. Therefore, it's a good solution to have a single platform like Vanta for integration and resolution by following all the necessary steps.
I've used Vanta for some time, and initially, we configured it, but the reflection isn't accurate. In such cases, we need to investigate. We've integrated it through JumpCloud, and we should examine the JumpCloud prospecting. If there are any issues, we can get in touch with JumpCloud support. In terms of management, if we rely solely on one platform, it might take more time. Typically, it takes almost a day before the changes reflect as expected.
Fulfilling their promise to guide our compliance journey
What do you like best about the product?
User friendly interface, great dept of intergrations to streamline audit preparation, very helpful and responsive support team
What do you dislike about the product?
I wish that Vanta had more detailed/prescriptive requirements for the controls, but I suppose this is intentional, as the controls are not written in stone. I also wish there as a messaging/comments feature (which their competitor ThoroPass has) to collaborate with your team and your auditor.
What problems is the product solving and how is that benefiting you?
Vanta is guiding our journey to SOC2 compliance, which is becoming a necessity for SaaS companies looking to move up-market into enterprise customers.
Best tool manage security of the data
What do you like best about the product?
We used it for a small POC to manage compliance for one of our clients.
What do you dislike about the product?
Its better if you have provided a trial account.
What problems is the product solving and how is that benefiting you?
It is giving us security compliance to make sure our clients data will be secured.
Mostly Good
What do you like best about the product?
It hooks into a lot of services and platforms
What do you dislike about the product?
The polling rate and API calls are a mess and often hit our API limits.
What problems is the product solving and how is that benefiting you?
a single view for compliance and assets across multiple platforms.
Checklist compliance
What do you like best about the product?
- Easy to use
- Simple checklists
- Explanations for items
- Templates
What do you dislike about the product?
- Vendors module is too basic and could use more features to be more useful
- Nickle-and-diming for add-on features
What problems is the product solving and how is that benefiting you?
Continuous compliance monitoring
