External reviews
External reviews are not included in the AWS star rating for the product.
6 months usage of Vanta
What do you like best about the product?
Vanta provides a robust GRC platform that excels at aggregating data and information across various systems, making it particularly well-suited for small and mid-sized businesses.**
The platform integrates seamlessly with existing systems, enabling efficient data collection, task management, and tracking. One of the standout features is its audit automation capabilities, which have significantly reduced the time required to implement audit processes and manage audit schedules.
Additionally, the questionnaire automation functionality is highly effective. The user-friendly interface simplifies the process of collecting, tracking, and maintaining questionnaires and associated knowledge bases. After evaluating several solutions for questionnaire automation, I’ve found Vanta to deliver some of the most impressive results in this area.
Vanta also offers valuable tools for risk management and for managing user onboarding and offboarding processes, including security awareness components. For organisations starting from scratch, Vanta provides a solid foundation for establishing effective compliance and security practices.
The platform integrates seamlessly with existing systems, enabling efficient data collection, task management, and tracking. One of the standout features is its audit automation capabilities, which have significantly reduced the time required to implement audit processes and manage audit schedules.
Additionally, the questionnaire automation functionality is highly effective. The user-friendly interface simplifies the process of collecting, tracking, and maintaining questionnaires and associated knowledge bases. After evaluating several solutions for questionnaire automation, I’ve found Vanta to deliver some of the most impressive results in this area.
Vanta also offers valuable tools for risk management and for managing user onboarding and offboarding processes, including security awareness components. For organisations starting from scratch, Vanta provides a solid foundation for establishing effective compliance and security practices.
What do you dislike about the product?
- There are still a few bugs present in the system. While most are not critical, there is one in the Audit module that I consider to be quite significant. That said, all bugs and improvement suggestions I've submitted to our account manager have been logged, and some have already been addressed.
- Certain automated tests for cloud environments (AWS and GCP) seem somewhat redundant. As a result, meeting Vanta's compliance checks requires additional effort in modifying infrastructure, or alternatively, dismissing the check — which isn't an ideal solution.
- The UI/UX could be improved, particularly in the Personnel module. Enhancements in this area would make the platform significantly more user-friendly.
- Certain automated tests for cloud environments (AWS and GCP) seem somewhat redundant. As a result, meeting Vanta's compliance checks requires additional effort in modifying infrastructure, or alternatively, dismissing the check — which isn't an ideal solution.
- The UI/UX could be improved, particularly in the Personnel module. Enhancements in this area would make the platform significantly more user-friendly.
What problems is the product solving and how is that benefiting you?
We significantly improve the way and time for audits, structure vendor management, aggregate data and information across the systems in more useful way.
- Leave a Comment |
- Mark review as helpful
Intelligent, cohesive and user-friendly compliance platform
What do you like best about the product?
Vanta is an excellent compliance platform - easy to use, very intuitive, and fully equipped for audit preparation. I have no previous experience in compliance and I found the amount of work overwhelming, especially for a SME SaaS company, but Vanta literally made my life easier! I absolutely love the pre-built policy templates, the automated tests and the clear and detailed guidance for submitting evidence. The variety of integrations also allows to connect tools that can then be monitored automatically. It is a tool that facilitates continuity in compliance work without losing track of the implemented and pending items. I also love how Vanta incentives progress tracking with percentages. It is such a small detail but to me makes all the difference. Lastly, whenever I need extra support I find very detailed and well-structured resources in Vanta's Help Center, and when I had to reach out to their customer support team, they answer in light speed and solve effectively any issues within the same day at the latest. That's something you don't see in many SaaS platforms.
What do you dislike about the product?
The only major gap I've found in the last 4 months of intensive use, is that it's not possible to support multiple integrations of the same tool. For example, we have 2 different accounts for our HRIS tool, one for each legal entity of the company, but we can only connect one of them, resulting in half of the employees missing from Vanta. The same goes for our MDM. Other than that, I find everything else working perfectly.
What problems is the product solving and how is that benefiting you?
Vanta helps us keep track of our compliance work and improve pending security topics. It helps monitor employee compliance with internal policies and security practices and offers a centralized solution for all evidence that needs to be submitted ahead of a compliance audit.
Streamlining Security Certifications with Some Growing Pains
What do you like best about the product?
Vanta offers excellent ease of use and management for all compliance projects, which is a significant improvement over previous methods that were complicated and difficult to navigate. The platform streamlines what was once a cumbersome process, making compliance more accessible even for those without specialized expertise.
Another standout feature is Vanta's robust control matching and automatic checks against services like Gmail and AWS. This automation significantly reduces manual verification work and provides more reliable oversight of your compliance posture across your technology stack.
Another standout feature is Vanta's robust control matching and automatic checks against services like Gmail and AWS. This automation significantly reduces manual verification work and provides more reliable oversight of your compliance posture across your technology stack.
What do you dislike about the product?
he vulnerability management functionality is challenging to use effectively. Specifically, there are difficulties in managing exclusions and tracking remediation efforts. The system doesn't provide intuitive ways to prioritize vulnerabilities, which can make security management more time-consuming than necessary.
What problems is the product solving and how is that benefiting you?
Evidence Collection Automation: Before Vanta, gathering evidence for compliance audits was a manual, labor-intensive process requiring coordination across multiple teams. Vanta automatically collects and organizes evidence from connected systems (AWS, Gmail, etc.), reducing what used to take weeks down to hours or days.
Continuous Compliance Monitoring: Rather than treating compliance as a periodic "sprint" before audits, Vanta provides real-time visibility into compliance status. This shift from point-in-time to continuous monitoring means we catch issues early before they become audit findings.
Control Implementation Guidance: Vanta demystifies complex compliance frameworks by translating abstract requirements into concrete, actionable steps. Their guided approach helps implement controls correctly the first time, eliminating costly rework.
Cross-Framework Efficiency: Managing multiple compliance frameworks (SOC 2, ISO 27001, etc.) used to mean duplicating effort across overlapping controls. Vanta maps these relationships, allowing us to satisfy multiple requirements with single implementations.
Continuous Compliance Monitoring: Rather than treating compliance as a periodic "sprint" before audits, Vanta provides real-time visibility into compliance status. This shift from point-in-time to continuous monitoring means we catch issues early before they become audit findings.
Control Implementation Guidance: Vanta demystifies complex compliance frameworks by translating abstract requirements into concrete, actionable steps. Their guided approach helps implement controls correctly the first time, eliminating costly rework.
Cross-Framework Efficiency: Managing multiple compliance frameworks (SOC 2, ISO 27001, etc.) used to mean duplicating effort across overlapping controls. Vanta maps these relationships, allowing us to satisfy multiple requirements with single implementations.
5-10min/day to get our security task done
What do you like best about the product?
all on line, all things can be done by click
What do you dislike about the product?
more speed, more time saved, 5-10min/day now, but if spend less in waiting for task status check, we can get it done in 3mins
What problems is the product solving and how is that benefiting you?
one platform to get HIPPA/SOC and other frameworks done
Awesome
What do you like best about the product?
Portal is easy to use, CSM's are responsive and friendly. There is even a support portal for customer resources as well for learning and FAQ's which is a fantastic resource. We use it very often so It's nice that the actually system is responsive. Intergrations were great with all of our existing applications which was nice as well such as GitHub, DataDog and Okta.
What do you dislike about the product?
Make dark mode! Haha but besides that I would say I do wish there was a more functional system for notifications so that everyone doesn't have to turn it off individually for themselves and can be done from an admin user instead.
What problems is the product solving and how is that benefiting you?
Security and Risk Compliance
Taking the pain out of achieving compliance and remaining compliant
What do you like best about the product?
Being able to track remaining tasks and activities required prior to an audit and then facilitating the audit process and communication was super helpful in getting us through the ISO27001 and SOC2 2 processes.
What do you dislike about the product?
From a UI perspective I’d like to be able to ‘break out’ the rhs dialogue box (for editing controls, tasks, risks) and make it bigger/full screen. It’s very constraining. Would also be good to be able to see and track all tasks in one location.
What problems is the product solving and how is that benefiting you?
Managing compliance activities for SOC2 and ISO27002
First time Vanta user very impressed with its abilities
What do you like best about the product?
The integrations into Vanta are unmatched in their ability to keep your security stance effective regardless of the compliance model you are following. I have used similar products in the past and they are tricycles compared to Vanta's racecar. The ability for an auditor to attach and verify compliance is outstanding. As someone preparing for our second SOC audit i use the platform daily sometimes more than once. The platform is easy to use and very intuitive. I was not present at the company when it was implemented but from what i heard, it was smoth and easy.
What do you dislike about the product?
If you use a particular platform that does not integrate with Vanta, the manual aspect of entering data is clumsy. There have been at time unexplained errors but an email to the support desk usually resolves them quickly.
What problems is the product solving and how is that benefiting you?
Most of the items required for a SOC audit are easily available to an auditor who has access permission to the platform providing me with more time to perform my job and not be subject to dealing with auditors.
Vanta - Security and Trust
What do you like best about the product?
It's intuitive. It helps us with compliance as well as making our trust center and knowledge base available to the company
What do you dislike about the product?
Nothing to dislike at the moment, to be honest.
What problems is the product solving and how is that benefiting you?
Figuring out our compliance status is a feature that helps me assess where we at in terms of how prepared we are for the audit.
Trust center offers a lot of input for our commercial team that helps them explain things to our customers.
Our vendor management and due diligence became easy when we start using the feature.
Trust center offers a lot of input for our commercial team that helps them explain things to our customers.
Our vendor management and due diligence became easy when we start using the feature.
Vanta Sofware for ISO 27001 Certification
What do you like best about the product?
It is a very powerful software.
Makes preparation for certification very easy
Has lots of useful tools / dashboards to be able to clearly see your progress and complete all the gaps
The templates provided were extremely helpful
The online help and chat is great
Our SME / Account Manager Kyle is always extremely helpful and very responsive.
Makes preparation for certification very easy
Has lots of useful tools / dashboards to be able to clearly see your progress and complete all the gaps
The templates provided were extremely helpful
The online help and chat is great
Our SME / Account Manager Kyle is always extremely helpful and very responsive.
What do you dislike about the product?
Only thing i can think of, they recommended another consultant to give us 30 days of support, And they had very helpful step by step project plans.
If Vanta could provide a project plan, with detailed tasks, step by step guide, that would be very helpful
If Vanta could provide a project plan, with detailed tasks, step by step guide, that would be very helpful
What problems is the product solving and how is that benefiting you?
Getting us ready for ISO 27001 Certification
Facilitate the implementation of strategies to comply with the ISO 27001 standard
What do you like best about the product?
Integration of multiple modules to accelerate compliance, increased visibility on the health status of systems, centralization, etc.
What do you dislike about the product?
Must manually do translations since some sections are not available in French.
What problems is the product solving and how is that benefiting you?
Help structure our information security programs
showing 11 - 20