Sign in
Sign in
or
Create a new account
Agent Mode
Categories
Your Saved List Become a Channel Partner Sell in AWS Marketplace Amazon Web Services Home Help

Vanta

Vanta

Reviews from AWS customer

8 AWS reviews

External reviews

2,127 reviews
from and

External reviews are not included in the AWS star rating for the product.

4-star reviews ( Show all reviews )

    Information Technology and Services

Vanta - SOC2 compliance made easy

  • March 04, 2021
  • Review provided by G2

What do you like best about the product?
Vanta made our first SOC2 audit as seamless of an audit process as I could ask for. The real-time monitoring of user accounts, advice on security configuration, and the out of the box policies all helped us pass the audit with flying colors. We use it to manage vendor security as well, which has allowed us to store all of our security and compliance documentation in one spot. I've been through a number of these security audits in my career, and the process with Vanta made it more seamless and straightforward for us than I could have imagined. I've already recommended Vanta to peers at other companies and will continue doing so.
What do you dislike about the product?
I'd love to see Vanta make some improvements to their stock policies. I've spoken with their team and they've indicated this is something on their radar and they will be updating these soon.
What problems is the product solving and how is that benefiting you?
We are monitoring all user accounts with Vanta for onboarding, offboarding, and ongoing security. This allows us to manage our security infrastructure from one place which consolidates multiple tools/spreadsheets/processes down into one thing. It's awesome!
Recommendations to others considering the product:
Make sure you talk with your SOC2 auditor to ensure they understand how to use Vanta. There is a separate login for auditors to review, which makes the whole process 100x easier, but the auditors have to understand what they need to do.

    Information Technology and Services

Great help for SOC2 compliance

  • March 03, 2021
  • Review provided by G2

What do you like best about the product?
Vanta is a huge help for on-boarding and off-boarding employees and recording that it was done correctly for compliance purposes. For example, they correlate GitHub accounts with employees names. When an employee leaves they alert me if I have not removed their GitHub account from our org. It's little things like this that prevent me from making mistakes. It also allows auditors to see that we have been following our policies and best practices.
What do you dislike about the product?
Their risk register needs more work. It should be more flexible. I would also like to see more Kubernetes focused security monitoring.
What problems is the product solving and how is that benefiting you?
It helps us maintain compliance, particularly SOC2 compliance. It also keeps us more secure.

    dlintz L.

High Impact Software for a fast growing business like RFP360

  • March 03, 2021
  • Review provided by G2

What do you like best about the product?
Easy to implement and provides high impact to our prospects and customers with very little time investment from an administration stand point.
What do you dislike about the product?
I would like better education on other solutions/uses Vanta could provide to our business.
What problems is the product solving and how is that benefiting you?
We are automating and simplifying security reviews for our customers and prospects.

    Joonathan M.

Vanta accelerated Klaus' path to SOC2 compliance

  • March 03, 2021
  • Review provided by G2

What do you like best about the product?
As a small organization we were able to really leverage automated integrations and guidance regarding best practices and guardrails for many if not most of our used technology platforms including Google Cloud Platform, Github, GSuite etc. The fact that Vanta makes the controls and checks transparent allowed us to go through the process much faster than we would have without them.

If you are new to the field of SOC2 then Vanta has solid policy templates (that they have recently improved) to be used as base and can also solve asset tracking using their Vanta Agent (osquery based lightweight tool).

As a positive highlight I would also like to bring out Vanta's customer support — whenever we had any hiccups these got solved quickly and the team was transparent around what had happened.
What do you dislike about the product?
There is always room for improvement and we do know Vanta is already tackling many of these. Initially we were faced with few UI/UX glitches and have faced some early integration problems but these have always been solved quickly or there have been ways around the issues.

If to highlight something that we would like to see tackled in the future then it would be improved facilitation of periodic processes (like access review etc.) and enhancement of tasks handling.
What problems is the product solving and how is that benefiting you?
Vanta helps organizations to get aligned and meet the requirements to become SOC2 compliant and then continue to keep the controls in check by continuous monitoring. Their strong relationship with auditors helps to accelerate the process by assisting in evidence collection etc.
Recommendations to others considering the product:
Vanta is worth considering especially if new to the world of SOC2 compliance as their integrations and relations with auditors ease the complexity of the whole process.

    Andrew T.

SOC 2 Process for Virtual Power Plant Company using Customer Energy Data

  • March 02, 2021
  • Review provided by G2

What do you like best about the product?
The ability to integrate with our stack. There are a lot of common tools used that hook into Vanta very easily, making it clear what areas need to be addressed to become SOC 2 compliant.
What do you dislike about the product?
Vanta's interface doesn't change based on the level of SOC2 compliance. Depending on the Trust Service Criteria, not every feature is needed. Being able to turn off features/fixes based on the Trust Service categories being sought would be helpful.
What problems is the product solving and how is that benefiting you?
Getting out in-house security practices reviewed and, if needed, updated or changed to be SOC2 compliant. We expect the third-party vendor cybersecurity review process with our clients to be expedited, allowing for faster contracting.

    Anthony P.

Hit the ground running with SOC2 and HIPAA

  • March 02, 2021
  • Review provided by G2

What do you like best about the product?
Vanta's policy generator really saved our small team a lot of time at the beginning, to cover all our bases for SOC2 and HIPAA, especially as we're not experts in writing policies. It provides a solid foundation with a lot of options and the ability to fully customize them as needed. I also find the email notifications regarding inventory items deviating from our controls really useful, so that I know every day if something needs my attention.
What do you dislike about the product?
I think the People's section on managing employees could use some attention. They have been iterating on it (in a positive way) since we started using Vanta, but there's a lot more I'd like to see in that area. The ability to merge accounts, or accounts being part of multiple groups / roles, as this would currently require creating a new group for each set of requirements.
What problems is the product solving and how is that benefiting you?
Vanta has brought us a lot of expertise regarding SOC2 and HIPAA that we didn't have on our team, and has saved us a lot of time to become and remain compliant.
Recommendations to others considering the product:
If you don't have a compliance expert in-house with deep knowledge and understanding of organization processes and requirements for business, infrastructure and application security, and the idea of spending weeks (or months) working through all the requirements, alone or with a consulting firm doesn't appeal to you, then Vanta will take care of all the heavy lifting and guide you through the process and provide auditors most of the evidences they'll need to certify your organization.

    Computer & Network Security

Reduces the SOC 2 project management workload significantly

  • March 02, 2021
  • Review provided by G2

What do you like best about the product?
A lot of the admin work involved with SOC 2 is related to project management, and Vanta helps to lighten that workload significantly. Automated monitoring and coverage of a lot of controls, along with its customizable infosec policy templates, helps us to achieve and maintain compliance faster and with less manual work.
What do you dislike about the product?
The product is pretty solid but there's still room for improvement. For example, some functionality could still be built out a little better to allow for greater flexibility to deal with non-standard environments.
What problems is the product solving and how is that benefiting you?
The help us with our SOC 2 audit readiness project, as well as to monitor ongoing maintenance of SOC 2-related controls. Vanta has helped to cut out a lot of manual work we would have to do with it.

    Marketing and Advertising

Great tool for capturing all SOC compliance issues

  • March 02, 2021
  • Review provided by G2

What do you like best about the product?
Very easy tracking/maintenance of compliance needs. It is removing lots of work from my plate in generating ongoing screenshots and other documentation for our auditors.
What do you dislike about the product?
- Not great tools for batch updating or batch emailing users.
- It's not (yet) clear that it has all the necessary hooks to completely subsume all my audit-prep needs.
What problems is the product solving and how is that benefiting you?
We are using Vanta to prepare for and maintain our SOC2 compliance. It has already saved me loads of time with the pre-formatted policies, monitoring, and tracking of the vast majority of my SOC2 needs.
Recommendations to others considering the product:
For any company working on their SOC2 compliance, it's a no-brainer purchase.

    Computer & Network Security

Easy to use, save you much time in audit

  • March 02, 2021
  • Review provided by G2

What do you like best about the product?
Has a lot of integration with existing platforms
What do you dislike about the product?
I think Vanta is doing great the only think I may complain is we need more batch update options since we have to update items (owner, i.e., ) one by one
What problems is the product solving and how is that benefiting you?
SOC2/HIPAA auditing. Save our engineering time to collect evidences
Recommendations to others considering the product:
Their support team is also very responsive.

    Hospital & Health Care

Very pleased with this compliance tool

  • March 02, 2021
  • Review provided by G2

What do you like best about the product?
I like the UI; it's a very clean platform that makes tracking our team's various security controls much easier.
What do you dislike about the product?
It would be great for more policy templates to be provided and for alerts to be sent out.
What problems is the product solving and how is that benefiting you?
I want to be able to easily use Vanta for any security audit, not just SOC2. However I have realized that with some effort it can work well for any audit.

showing 861 - 870