External reviews
External reviews are not included in the AWS star rating for the product.
Soc2 process
What do you like best about the product?
The people working in Vanta is very helpful. They've answered all my doubts regarding policies to initiate the process, and I think the content in their documentation is very straightforward
What do you dislike about the product?
At the moment, I think almost everything has been a smooth process. One thing I dislike was that you have to download Vanta app in your computer even if your'e not working directly with the organization doing the process.
What problems is the product solving and how is that benefiting you?
To have an good start and continuation for our organization, we are needing a Soc2 agent to implement new projects and changes, Vanta is helping us with this process.
- Leave a Comment |
- Mark review as helpful
One of the biggest time saving tools we have for compliance
What do you like best about the product?
Vanta's ability to integrate with third-party tools to monitor our compliance status saves a great deal of time every year during the audit process. Additionally, the monitoring and alerting capabilities gives our team the necessary insights to ensure all areas of the system remain compliant.
What do you dislike about the product?
The 'Risk Assessment' section in Vanta can be a little tedious. I feel there is room for improvement with the User Interface for this section to reduce the number of clicks.
What problems is the product solving and how is that benefiting you?
We are using Vanta for SOC2, Type II Compliance. The tool allows us to continually monitor our compliance status as well as assign tasks to prepare the necessary information and evidence for auditors.
Fantastic product, I wouldn't have been able to manage ISO 27001 without it
What do you like best about the product?
The online document editor is very well constructed, the suite of policy templates are well written, the automated tests are great and rather than just giving a fail they provide you with instructions on how to remedy your issue.
What do you dislike about the product?
The risk register does not let you add custom pieces of evidence, instead you have to make reference to documents on Asana or Google Workspace as evidence. The policy templates all have an American focus, it would not be too much work to update them to include the relevant legislation for the country using the app.
What problems is the product solving and how is that benefiting you?
The application is helping our very small startup achieve and maintain ISO 27001 cybersecurity compliance. This is difficult to achieve as a small company with no dedicated cybersecurity personnel.
Great experience with getting SOC 2 Compliant
What do you like best about the product?
Every team member we worked with was helpful.
What do you dislike about the product?
We hadn't anticipated the pen test cost. It wasn't a huge deal, but something we hadn't known about during the sales process.
What problems is the product solving and how is that benefiting you?
SOC 2 Compliance to expand our market and increase sales win rate
Easy setup and comprehensive tool
What do you like best about the product?
Setting up Vanta was extremely easy, from setting up the integrations to adding vendors and building policies. In times when we required assistance, the support and implementation assistance team was very quick to respond.
What do you dislike about the product?
We haven't had any downsides at this point. If I had a wishlist, it would be to auto-import SOC2 / ISO27001 audits automatically from more vendors and to expand the integration footprint overall.
What problems is the product solving and how is that benefiting you?
Compliance is a major requirement for our industry, and we don't have a dedicated compliance team internally. Vanta is making it possible for us to achieve our compliance goals without major overhead and investment.
Established, well thought out, with everything we need
What do you like best about the product?
We compared multiple tools, and by far we noticed that Vanta was clearly the most mature platform. It was well thought out, and you could just tell they'd been through some iterations to improve and make the software better.
On top of that, it was clear to me that they were taking customer feedback and using it to improve the platform. Vanta had a bunch of small little features, that when it came down to comparing features really set them apart. Features that just made life easier, like a JIRA integration to create tickets in your JIRA account, a new Access Management tool, and so many more things. They clearly are focused on not just telling you if you pass/fail a compliance standard, they are also building the tools you'll need to use to get there. Which was huge for us, looking at the tall mountain that is SOC2/ISO27001.
On top of that, it was clear to me that they were taking customer feedback and using it to improve the platform. Vanta had a bunch of small little features, that when it came down to comparing features really set them apart. Features that just made life easier, like a JIRA integration to create tickets in your JIRA account, a new Access Management tool, and so many more things. They clearly are focused on not just telling you if you pass/fail a compliance standard, they are also building the tools you'll need to use to get there. Which was huge for us, looking at the tall mountain that is SOC2/ISO27001.
What do you dislike about the product?
Compared to some other competitors, some categories of their integrations are a little bit lacking. They are working on it, but nonetheless.
They could improve the software overall to support non-vanta-based integrations better. Like an option to upload CSV's of users from non-supported software for access reviews, or the option to add a non-supported cloud provider so that when it says you pass a control, it'll also ask you to manually check the unsupported vendor to ensure it passes there as well.
We've had a few false positives where Vanta thinks we are passing a control but we clearly are not.
They could improve the software overall to support non-vanta-based integrations better. Like an option to upload CSV's of users from non-supported software for access reviews, or the option to add a non-supported cloud provider so that when it says you pass a control, it'll also ask you to manually check the unsupported vendor to ensure it passes there as well.
We've had a few false positives where Vanta thinks we are passing a control but we clearly are not.
What problems is the product solving and how is that benefiting you?
Vanta is helping us to build out a sustainable cybersecurity and compliance program. Their tools are saving us countless hours, and so many spreadsheets. Their software and their team can provide the guidance that we need.
Fantastic for Startups
What do you like best about the product?
Simple action-oriented tasks with 24/7 tracking allow our team to focus on the work at hand with the assurance that our operations are always secured.
What do you dislike about the product?
Vanta is still building out integrations and resources to provide a better overall product in the long run.
What problems is the product solving and how is that benefiting you?
We aim to be SOC 2 Compliant and Vanta is helping us get there quickly,
Just what I needed!
What do you like best about the product?
Easy onboarding and intuitive dashboard for me and my team to use to get things done, love the template options for documents and policies and the monitoring feature with integrations is great.
What do you dislike about the product?
Really haven't found anything major at this point. Some of the items for SOC 2 were not applicable for my company so would have been nice to know what was not needed so I could skip over them.
What problems is the product solving and how is that benefiting you?
Vanta is helping my company get ready for and complete our SOC 2 Audit, we also use them to maintain our SOC2 status. By integrating with our current systems and having a turnkey solution it is making the process very straightforward.
Good set of documentation and tests for SOC 2 compliance!
What do you like best about the product?
- Clear list of documentation and tests required in a single dashboard - you can apply filters by standards, breakdown into engineering, business, etc.
- Customer support is also very good. There is a clear sense of direction.
- Customer support is also very good. There is a clear sense of direction.
What do you dislike about the product?
- Frequent change of customer support agents - we had that changed 2-3 times over a period of 6 months because of attrition.
- A couple of times coordination with the auditors was an issue
- A couple of times coordination with the auditors was an issue
What problems is the product solving and how is that benefiting you?
- Helping us reach global compliance standards such as ISO, SOC2, etc in the fastest and most efficient manner possible. After completing all tests on Vanta, we don't need to worry with the auditor.
Amazing product and team. Very helpful staff and intuitive platform!
What do you like best about the product?
The best part about Vanta is the ability to integrate tools we already use. Plus, the policy editor makes things so much faster than writing them all manually.
What do you dislike about the product?
The one downside to Vanta is that one of the software products we use is not available in the platform to integrate with. That might make things slightly harder for us.
What problems is the product solving and how is that benefiting you?
Vanta is solving our SOC II compliance and audit for us. We are using them to streamline and automate that process, which is a huge task for a startup company like u..
showing 1,331 - 1,340