Vanta
VantaExternal reviews
2,419 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Makes SOC 2 much easier
What do you like best about the product?
Vanta provides a step-by-step walk-through of the entire SOC 2 process and lots of automatically-updating tests and monitoring.
Vanta's Customer Success Managers are helpful and available.
Vanta's Customer Success Managers are helpful and available.
What do you dislike about the product?
Vanta works with most services (across hosting, HRIS, etc.) but not _every_ possible service. So there are some things you'll still have to do yourself. Also, SOC 2 is a long process in general.
What problems is the product solving and how is that benefiting you?
We use Vanta to help us get SOC 2 certification and make that process easier. Without Vanta, figuring out how to get SOC 2 and gathering evidence would be much harder.
Compliance Management Platform - Vanta
What do you like best about the product?
Library of templates that are provided by Vanta. Also, the testing it does to verify compliance.
What do you dislike about the product?
I wish more certs & standards were supported now (they will be in the future, though!)
What problems is the product solving and how is that benefiting you?
"Smart advisor on compliance for certifications and attestments. A good platform for organizing your efforts and administration.
A relief to beginners to compliance
What do you like best about the product?
API driven capabilities offer a very easy way to connect your systems to their application. It saves a wealth of information and instructs you on an on-going basis what needs to work.
What do you dislike about the product?
There doesn't seem to be many capabilities to customize the application for specific (already established) methods within your organization. An example would be integrating Vanta to JIRA; it does not seek particular JIRA cases based on a custom label. It uses a default label of 'security to track down specific JIRA's. It will be a problem if one already has a label called 'security' for other reasons.
What problems is the product solving and how is that benefiting you?
A huge time saver! Wen using Vanta for a SOC2 audit, it actively monitors things like user management, payroll, and other HR systems, Cloud platforms. For users that also have their day-to-day tasks to complete, this is a huge help. Not all organizations have a dedicated compliance team, making submitting policies and evidence much more manageable.
Consistent advice on security and best practices
What do you like best about the product?
Vanta provides a lot of actionable tasks to make our system more secure and reliable. It is easy to connect to our services and ingest the signals that create the tasks. The monitoring part also helps by sending a daily digest of new issues the team needs to work on.
What do you dislike about the product?
Sometimes, refreshing the tests when you make the changes to pass takes a little more time than desired. Also, some tasks lack more details on why they fail and how to fix them.
What problems is the product solving and how is that benefiting you?
We got into Vanta to start being certified on HIPAA and SOC2. It helped us pave the way to the certifications and evolve on some of the best practices for having a secure infrastructure.
Great Tool
What do you like best about the product?
Vanta has been a great support towards our certificates that we wish to obtain and the team has been equality supportive when we have questions and concerns about where we are and where we want to go
What do you dislike about the product?
I wish that Vanta could utilize tools like google signin to identify saas tech stack and shadow IT... I am not enjoying the manual process that I am going through right now
What problems is the product solving and how is that benefiting you?
We are working to achieve our soc2 and iso2700
Works as expected
What do you like best about the product?
UI is easy to follow and understand, the findings are easy to find and figure out what needs to be remedied.
What do you dislike about the product?
If you have multiple AWS accounts for example and multiple of them violates a rule, then they all get clumped up together, it would've been better if there's a way to sort violations out by account.
What problems is the product solving and how is that benefiting you?
We are using Vanta to ensure that our environments are secure and follow laws and regulations like HIPAA.. etc.
Vanta has improved greatly over the time that we've been using it!
What do you like best about the product?
The team. They are all extremely helpful, friendly, and knowlegeable. Everyone gets back to questions surprisingly fast.
What do you dislike about the product?
Some elements of the UI are less polished than some of the competitors we looked at. The policy editor and tracking of changes have been improved, but could still use a bit more attention, and more training options would be great (anti-phishing, password management, things like that).
What problems is the product solving and how is that benefiting you?
We are approaching our first SOC2 audit, having a platform like Vanta helps us know what needs to be done, collect evidence in an efficient manner, and ensure that we meet all of the requirements without a high level of effort.
Great with AWS
What do you like best about the product?
Automated Test that integrate with cloud service providers
What do you dislike about the product?
Some test have to little information what resource or service is meant
What problems is the product solving and how is that benefiting you?
Getting SOC2 and ISO27001 certified
Recommendations to others considering the product:
Get your entire team involed on maintaining compliance
Vanta was a crucial partner that helped us attain a new level in compliance
What do you like best about the product?
Vanta's checklists, cloud connections, and existing relationships and tools for auditors have been extremely valuable in helping us work towards SOC-2 compliance.
What do you dislike about the product?
The price is maybe a little bit high, but was definitely the best option for us.
One thing that would be nice is a more supported way for users to opt-out of the Vanta agent tracking. My company has several privacy-minded users that (reasonably) do not want to install tracking software on their machines. Vanta and the auditors support manually taking screenshots and uploading them periodically, but I have to manage this process by hand when it should be possible to automate it over email to the users.
One thing that would be nice is a more supported way for users to opt-out of the Vanta agent tracking. My company has several privacy-minded users that (reasonably) do not want to install tracking software on their machines. Vanta and the auditors support manually taking screenshots and uploading them periodically, but I have to manage this process by hand when it should be possible to automate it over email to the users.
What problems is the product solving and how is that benefiting you?
Achieving and monitoring SOC 2 compliance, HIPAA compliance
Saved a lot of time and auditor costs
What do you like best about the product?
It's was very easy to get set up and get started. It's was mostly intuitive to figure out what needed to be configured. The guides that tell you how to fix the errors were great to put into tickets and give to the Devops team. Auditors felt very comfortable getting things done without a lot of back and forth.
They have recently added PCI compliance, so we will be able to use them for multiple types of compliance further reducing our auditing costs and time sink.
They have recently added PCI compliance, so we will be able to use them for multiple types of compliance further reducing our auditing costs and time sink.
What do you dislike about the product?
Some things like alerts and employee onboarding and offboarding we're not entirely complete when we started using the product, they were added shortly after and since their recent funding round I see more improvements.
Some newer services on aws weren't detected immediately due to some configuration on out side and some on Vantas. But support was quick to help and fix.
Some newer services on aws weren't detected immediately due to some configuration on out side and some on Vantas. But support was quick to help and fix.
What problems is the product solving and how is that benefiting you?
Fast SOC2 type 2 completion. Needed it done in 5 months. We were able to get there and also reduces our overall cost in engineering and auditing by at least 60%
showing 961 - 970