External reviews
External reviews are not included in the AWS star rating for the product.
Great Platform
What do you like best about the product?
We like the UX/UI, Support, Integrations, and the well thought process behind
What do you dislike about the product?
Nothing much! Works well. The platform serves us well.
What problems is the product solving and how is that benefiting you?
Compliance automation, preparation for compliance audits
- Leave a Comment |
- Mark review as helpful
Vanta has made it very easy to understand the scope and requirements of our SOC 2 audit.
What do you like best about the product?
The monitoring that we can enable for our audit is very good.
What do you dislike about the product?
As an Azure customer, we would love to see better integration with DevOps.
What problems is the product solving and how is that benefiting you?
Tracking all our SOC 2 requirements and providing templates is a huge win.
Director of Customer Success
What do you like best about the product?
Vanta made SOC 2 very simple for us. Rather than having to reinvent the wheel, everything is broken down into a set of tests and documents to be completed, making project management super easy. Their team is also very knowledgeable about each requirement, so any doubts we had were quickly taken care of.
What do you dislike about the product?
Two items can be improved in Vanta:
- Tracking of requirements (like encryption) on Linux machines often does not work. As most of our Engineering team uses Linux, we needed to do manual verification and store that info in Google Drive for the auditors. (There is not currently a place to store manual evidence for each Computer in their platform.)
- Since the new design, the number of vulnerabilities for Computers is misleading as it lists any vulnerability, even if that test was disabled.
- Tracking of requirements (like encryption) on Linux machines often does not work. As most of our Engineering team uses Linux, we needed to do manual verification and store that info in Google Drive for the auditors. (There is not currently a place to store manual evidence for each Computer in their platform.)
- Since the new design, the number of vulnerabilities for Computers is misleading as it lists any vulnerability, even if that test was disabled.
What problems is the product solving and how is that benefiting you?
Becoming Soc 2 Type 1 and Type 2 certified is essential to doing more business with enterprise customers in our field. As a small team, this would have been a monumental undertaking without Vanta. Overall, the platform saved us time, and we are now easily passing prospects' security reviews.
Excellent software for SOC 2 compliance, security monitoring and beyond!
What do you like best about the product?
We were getting started on our first SOC 2 compliance effort and growing as an organization - we needed a solution that would (1) give us visibility on active security concerns (2) ensure we were prepared for our audit and (3) save us the hassle of working through multiple spreadsheets and templates. Vanta delivered on all fronts. We've been using them for over a year now and our first-ever audit went very well. Most impressive: Vanta continues to improve the product from customer feedback - so we've been able to move formerly time-consuming security and compliance processes into their software and execute the work there instead... weeks of staff time saved.
What do you dislike about the product?
There are cases where we have to supplement certain forms of tracking like recurring inactive account(s) checks, in other software like Confluence. However, I've seen Vanta accommodate more and more of these types of cases within their software during my time with them.
What problems is the product solving and how is that benefiting you?
Vanta helps us with the problems including: security/vulnerability tracking visibility and due dates, SOC 2 compliance preparation (documents, risk assessments, etc.) and making sure we were hitting our SLA targets for both recurring security checks, and mitigation of security findings (bugs, patches, etc.)
adVANTAge
What do you like best about the product?
Central management of all of my compliance needs. Fantastic templates and great task descriptions. The Vanta team always seems to bring the A game when we reach out to them
What do you dislike about the product?
Wish Vanta had more certification management systems. (ISO 9001 etc.). I showed Vanta to my co-workers and they wanted it for their management systems as well.
What problems is the product solving and how is that benefiting you?
We needed a central repository and management system for business. Vanta provides that in an easy to use platform.
Vanta took much of the misery out of the highly disruptive SOC-2 audit process
What do you like best about the product?
Vanta connects to all our devolopment systems like GCP and GitHub which saves a lot of the manual testing and logging work.
Vanta has a big library of policy and process templates that make documentation much easier.
Vanta has partnerships with audit firms and PenTest providers which streamlines the process.
Vanta's sales team is great to work with. No pressure, but quick with all the answers.
Vanta has a big library of policy and process templates that make documentation much easier.
Vanta has partnerships with audit firms and PenTest providers which streamlines the process.
Vanta's sales team is great to work with. No pressure, but quick with all the answers.
What do you dislike about the product?
This was my first time going through a SOC-2 audit so I really have nothing to compare it to.
What problems is the product solving and how is that benefiting you?
Every buyer of our software puts us through very rigorous security reviews. Being a small company, we had been putting off SOC-2 for fear of it taking our development resources away from building new features. When we learned about Vanta and how much it automates the process, we took the plunge. Now when prospects ask us for our security documents, we can send them the audit report. Unfortunately it hasn't relieved us from having to fill out a long security questionnaire for every prospect.
SOC II made simple!
What do you like best about the product?
Becoming compliant with certifications like SOC II is daunting, especially for a startup. Vanta makes it all very easy. It's very easy to assemble everything into one place and know exactly what is needed. Not only that, but the auditors can access Vanta directly, which also streamlines the whole process. It also feels like they integrate with just about everything you could need.
It could have been very tedious, but Vanta makes it easy.
It could have been very tedious, but Vanta makes it easy.
What do you dislike about the product?
Vanta seems to be growing and changing. Initially, there were things with the UI that were not intuitive, and I wish the filtering were a little easier to use.
Their most recent UI update fixed a lot of the original confusion.
Their most recent UI update fixed a lot of the original confusion.
What problems is the product solving and how is that benefiting you?
Vanta made clear every step needed to become SOC II compliant. They also help staying compliant. Since becoming SOC II compliant, customers (and ourselves) have more trust in the security of our software and processes.
Made achieving SOC2 / HIPAA Compliance extremely simple
What do you like best about the product?
Vanta makes compliance extremely simple by showing exactly what controls are needed, and even provides helpful template starting points for different policies. Their team is really helpful for fielding questions as well. In particular, Vanta's integration with other companies like GSuite / Checkr make the process more smooth.
What do you dislike about the product?
Their UI was a little cluttered but they recently did an update and it's much smoother now.
What problems is the product solving and how is that benefiting you?
They're useful for anyone trying to achieve SOC2, GDPR, or HIPAA compliance. It helps streamline the process internally and for external auditors.
Vanta has been great to streamline our Compliance effort
What do you like best about the product?
Easy interface and great integration feature with a lot of platforms such as Rippling and AWS. The live tests feature is one of the biggest highlights for me as it helps us to keep up the compliance framework we have set up.
What do you dislike about the product?
The build in risk assessments are not too in-depth, I believe it can be improved, one thing that also is a problem is that Checkr International is still not supported by Vanta, which causes test to fail for international employees.
What problems is the product solving and how is that benefiting you?
Vanta is helping us by giving a moderate compliance posture, Vanta helped us get SOC 2 Type 2 report in 9 months, which usually takes 1 to 1.5 years to achieve in traditional methods.
The experience of working with the Vanta team facilitates the objectives of the organization
What do you like best about the product?
It is a practical system, easy to use and intuitive, the best thing is the accompaniment of the team and the timely and effective support.
All the material in the platform is applicable to the organization and generates value in the processes.
All the material in the platform is applicable to the organization and generates value in the processes.
What do you dislike about the product?
We do not have negative comments as end users of the platform
What problems is the product solving and how is that benefiting you?
It is helping us with certifications that allow us to have comparative advantages with the competition and to face the market conditions and requirements of our clients.
showing 551 - 560