Vanta
VantaExternal reviews
2,419 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Streamlined Compliance with Robust Integrations
What do you like best about the product?
I like the integrations in Vanta that keep all the information in one place. As part of the leadership team, I appreciate being able to get a good understanding of issues in GitHub and our SLA performance without needing direct access to GitHub like developers do. The initial setup was straightforward.
What do you dislike about the product?
Links in emails. For example, when I need to approve a risk, the link in the email just takes me to the risk register instead of the actual risk it referred to. So I need to search for the risk now to find it.
What problems is the product solving and how is that benefiting you?
Vanta helps with traction and planning by integrating tools, allowing our leadership team to understand issues in GitHub and track SLAs without direct access.
Seamless AWS & Vendor Integrations with Helpful Compliance Recommendations
What do you like best about the product?
I like how Vanta integrates seamlessly with our AWS infrastructure and third-party vendors. It makes it easy to tie everything into Vanta and see it clearly across the various dashboards. I also appreciate that it provides recommendations on how to mitigate and/or fix different findings, including a general overview along with AWS CLI commands. I also love the various templates for policies and procedures. This makes it very easy to get started with them if you have very little in place.
What do you dislike about the product?
When you’re new and just getting started with SOC compliance, it can feel a bit overwhelming. Along the way, questions are bound to come up, and I highly recommend leaning on your account manager to help explain things and guide you through the process. Also, while the automated recommendations for resolving and mitigating issues can be useful, they shouldn’t be followed blindly. Take the time to verify and understand what you’re actually applying before running any AWS CLI command. Lastly though it supports a vast majority of integrations there was a few here and there that lacked. However this could also be due to 3rd parties not proving proper API integration.
What problems is the product solving and how is that benefiting you?
Vanta is helping us work toward SOC compliance. Without its interface and integrations with our existing infrastructure and vendors, the process would have been chaotic and far more time-consuming.
Streamlined Compliance, Needs Better Training
What do you like best about the product?
I use Vanta to become ISO 27001 compliant and appreciate how it alerts us if any evidence fails and helps us easily get certified. I like using Vanta AI agent for filling customer questionnaires. I add all my knowledge base on Vanta, so when a new customer questionnaire is added, Vanta can fill it using the knowledge base, saving me many hours. The initial setup of Vanta was very quick and simple.
What do you dislike about the product?
Security awareness training content is not up to the mark. They can add training content related to AI, Privacy, and Security.
What problems is the product solving and how is that benefiting you?
I use Vanta for tracking compliance, alerting us if any evidence fails, and making certification easy. The Vanta AI agent fills customer questionnaires using my knowledge base, saving me hours.
Easy Integrations with Google Drive for Smooth Document Creation
What do you like best about the product?
lots of software tools that integrate with it and you can connect google drive for document creation and storing
What do you dislike about the product?
when errors or test failures are falied and presented with them you cannot correct them on that page you have to click multiple links to get to the right spot
What problems is the product solving and how is that benefiting you?
Compliance for ISO27001 and SOC2
Efficient Auditing with Helpful AI Assistant
What do you like best about the product?
I find Vanta makes things faster, especially with the predefined templates for policies and documents, which are very helpful. The virtual AI assistant is great because whenever I have a question, I can reach out to it and get the right answers. I also appreciated the very smooth and easy initial setup.
What do you dislike about the product?
The email could have been better in terms of the follow-up.
What problems is the product solving and how is that benefiting you?
Vanta helps me with policy creation and ensures controls are aligned, serving as a single source of truth.
Made Compliance Easy to Achieve—and Maintain
What do you like best about the product?
Vanta made it extremely easy for us to get compliant and to stay compliant over time. As a startup selling software, this is a must.
What do you dislike about the product?
Some of the predefined policy templates require refinement to better match how we want to work. However, we didn’t receive much help with that refinement.
What problems is the product solving and how is that benefiting you?
It helps our company remain compliant with the required security standards that our customers expect.
Continuous Compliance Monitoring with Streamlined, Centralized Audits
What do you like best about the product?
Continuous monitoring of compliance makes it easier to stay on top of requirements. Audits are straightforward thanks to the centralisation of all relevant information in one place.
What do you dislike about the product?
There are lots of new integrations and features, but it’s difficult to figure out which ones are actually relevant to our specific needs.
What problems is the product solving and how is that benefiting you?
Centralisation of SOC2 compliance requirements.
Streamlined Compliance with Intuitive Features
What do you like best about the product?
I really appreciate the functionality and ease of use of Vanta, which is probably the highlight for me. It's an intuitive system that's easy to navigate. From a compliance perspective, it's very helpful to see an overlay of all vendors being used, discovering the vendors, and tracking the progress we're making towards SOC two compliance. I also really like the Slack integration, as it makes notifications easy to manage, and the automated alerting helps keep our small team on top of things. The initial setup was quite simplistic due to its ability to integrate with other applications through the API, and the robust documentation provides a step-by-step guide for integrating third-party apps.
What do you dislike about the product?
I really like the Slack integration, but it is missing some key functionality in my opinion. The Slack notifications go to the IT compliance and security teams, which is fantastic, but a lot of these need to be actioned by our teams to notify end users who may be out of compliance. It would be nice if Vanta could send those notifications in Slack directly to the users instead of to the intermediary teams.
What problems is the product solving and how is that benefiting you?
I use Vanta for application discovery and maintaining compliance, especially with automated alerts and Slack integrations, which make it easy to manage as a small team.
Effortless Certification with Seamless Integration
What do you like best about the product?
I like how seamless, modern, and clean the interface is. Vanta notifies me of any changes, so I don't have to guess, which is nice because I can see when something needs my attention. It gives me a good overview of where the company stands in its efforts to achieve certification. The initial setup with Vanta was quite easy, as we just linked all of our integrations and it was quite seamless.
What do you dislike about the product?
Just some of the integrations are sometimes unreliable. So if you make a change in Google Cloud, for example, it might not always reflect right away in Vanta even if you update.
What problems is the product solving and how is that benefiting you?
Vanta makes linking with all our services clear and easy, guiding us in achieving security certifications effortlessly. It provides a seamless interface that notifies me of changes, offering a good overview of our certification efforts.
Streamlined Compliance with Minor Integration Challenges
What do you like best about the product?
I like the overview Vanta provides, especially the fact that it monitors compliance all the time. This is really helpful for reporting to the boards as a quick snapshot without getting into too much detail. The way it handles policy reapproval and conducts our security awareness training is great because I basically don’t have to chase anyone. It's nice to have a short but useful video for those who want to see it, ensuring that baseline compliance for all staff is taken care of without wasting my time. We use the Trust Center, which is really good for getting sales prospects up to speed and giving us a professional kind of front door for security. It also reduces my workload since I have to answer fewer questions because people can get the documents themselves. Having Trust Center access approval integrated with Slack is really useful for our globally distributed team as it allows someone on the sales team to quickly approve access in Slack rather than waiting for me.
What do you dislike about the product?
We don't use a lot of the add-ons in Vanta, like the Vanta AI agents, because we have another product for security questionnaire automation (SecurityPal). When we started, the risk and vendor management systems were underpowered. They've since relaunched as add-ons, but they're probably a bit out of our price range. We handle this in Notion databases where we have full control over metadata and filtering. Vanta's integrations with our hosting provider Heroku are not great (probably due to limitations of the Heroku API), so we have to do a lot manually in that area.
What problems is the product solving and how is that benefiting you?
Vanta helps keep compliance activities on track for our distributed team with automated checks and custom documents. It streamlines monitoring compliance, aids in reporting, facilitates policy reapproval, conducts security awareness training, and integrates with Slack for trust center access, reducing my workload significantly.
showing 121 - 130