Resources

Curated content for the compliance connoisseur: We cover the latest on frameworks, risks, and security trends.

Show filters

Compliance

Content Type
Tags
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Compliance
Event
Leverage Security and Compliance to Win Over Prospects

Curious about how security and compliance can help you build trust and win over prospects? On December 13th at 8:30am PST / 4:30pm GMT, join our AMAA

Compliance
Compliance
Event
ISO 27001 & SOC 2 Compliance Automation

Demonstrating security compliance with a framework like ISO 27001 or SOC 2 is not only essential for scaling your business and raising capital, it also builds an important foundation of trust.

Compliance
Compliance
Event
Compliance for Startups: Join Vanta's Office Hours

Do you have questions about SOC 2, ISO 27001, HIPAA, or other security and privacy frameworks? Wondering if, when, and how to achieve compliance (as painlessly as possible)? Join the next office hours with Vanta team leaders to learn about compliance for growing startups

Compliance
Compliance
Event
Auditor Edition

Are you preparing for upcoming compliance audits? Curious about the best practices to ensure a smooth audit process? Join the webinar...

Compliance
Compliance
Blog
PCI-DSS 4.0: What’s changing and how to prepare

As of March 2024, PCI-DSS 4.0 will introduce some significant changes. In this post, we go over what some of those changes are, as well as how you can prepare for them.

No items found.
Compliance
Blog
8 questions about AI and compliance

AI is one of the hottest topics in tech, but what are the risks that come with innovating? Read advice from compliance experts about the topic of AI and compliance.

AI
Compliance
Event
Ask Me (Almost) Anything: Security, Compliance & The Remote Workplace

Is your business partially or fully remote? Are you wondering how the remote workplace impacts your compliance and security?

Compliance
Compliance
Event
Coffee & Compliance: Streamlining SOC 2 compliance with Vanta and AWS

SOC 2 is a sought-after security framework for growing SaaS companies. It demonstrates your ability to safeguard the privacy and security of your customer data. But achieving it can be time-consuming and expensive.

Compliance
Compliance
Event
Ask Me (Almost) Anything: Compliance for Early Stage Startups

Proving trust is critical to winning business and growing revenue. But scaling the security and compliance programs needed to do so can be costly, resource intensive, and incredibly manual. How should growing startups navigate the complex compliance space? What resources and supports are available?

Compliance
Compliance
Event
Vanta in Action: Compliance Automation

Demonstrating security compliance with a framework like SOC 2, ISO 27001, HIPAA, etc. is not only essential for scaling your business and raising capital, it also builds an important foundation of trust.

Cybersecurity
Compliance
Guide
Frameworks for success: Leveraging security & privacy frameworks to scale a growing business

As your organization grows, your security and compliance needs will also grow. Get our free guide on implementing custom frameworks that are tailored to your organization’s complex needs.

No items found.
Compliance
Event
Coffee and Compliance: Building Trust to Drive Business Growth

Join our live webinar on May 23 at 12 PM where VP of Product Chase Lee, and Staff Product Manager Sanjay Padval as they demonstrate a brief overview and provide guidance on advancing your security program beyond building or improving. Learn how to enhance customer satisfaction and gain a competitive advantage, accelerating your business growth.

Compliance
Compliance
Event
Café et compliance : les clés pour booster sa croissance en tant que startup

Pour vendre à des entreprises, les startups doivent garantir la protection des données de leurs clients en prouvant qu’elles ont mis en place les bonnes pratiques de sécurité. Pour cela, elles peuvent obtenir une certification comme la norme ISO 27001. Ce webinar explique les différents contrôles de sécurité à effectuer, les avantages de la certification et comment automatiser jusqu'à 90% du processus avec Vanta. Sébastien, CTO et co-fondateur de Leeway reviendra sur son expérience avec Vanta, et les participants pourront échanger avec notre responsable commerciale en France et notre expert en certification.

Compliance
Compliance
Event
Using custom frameworks to meet your unique security needs

Watch this on-demand webinar to learn how custom control frameworks help to grow your business and earn the trust of customers and vendors, strengthen your security program and achieve compliance, and save significant resources.

No items found.
Security
Blog
What is a trust management platform?

How do you get compliant, stay secure, and demonstrate trust continuously? That’s where a trust management platform comes in. Learn more.

Compliance
Risk Management
Building Trust
Product updates
Blog
Introducing Custom Frameworks to the Vanta Platform

Custom controls and custom frameworks help compliance teams centralize and customize the way their security work gets done in Vanta.

Features
Compliance
Event
Convos with Customers: ResoluteAI

Eléonore Dixon-Roche, Senior Product Manager at ResoluteAI, explains how Vanta helped her step outside of her role and take on managing security and compliance for her company.

Compliance
Product updates
Blog
New in Vanta | January 2023

Vanta has made some pretty exciting updates already in 2023. Learn about Trustpage by Vanta, our newest integrations, and the most recent improvements to the platform.

Compliance
Features
Integrations
Building Trust
Security
Blog
When is the right time for vulnerability scanning?

As new cybersecurity threats emerge, when is the right time for vulnerability scanning? We give an overview of how to time vulnerability scans for improved security.

Cybersecurity
Compliance
Security
Blog
What is continuous security monitoring?

What is continuous security monitoring and why is it crucial to your business? Learn about continuous monitoring and best practices for ensuring security within your organization.

Features
Cybersecurity
Compliance
Compliance
Blog
How do you perform quarterly access reviews?

Periodic user access reviews prevent the risk that former employees may still retain access to sensitive corporate data and systems after being terminated. Learn how to perform quarterly access reviews.

Compliance
Cybersecurity
Features
Security
Blog
What is vulnerability scanning?

What is vulnerability scanning and how can it enhance your information security? Find out everything you need to know from the Vanta security team.

Compliance
Cybersecurity
SOC 2
Event
Convos with Customers: Envase

Envase knew gaining the trust of their potential customers was crucial, but were unsure if getting SOC 2 compliant was worth the hassle. Learn how Envase worked with Vanta to make the SOC 2 attestation process painless.

Compliance
Compliance
Guide
AWS: Foundational Technical Review overview

AWS FTR describes the construction of secure, performant, resilient, sustainable, and cost-efficient cloud infrastructures. Read our overview to aid your comprehension.

Compliance
Cybersecurity
Compliance
Blog
Do you need penetration testing for compliance?

Software Secured, a Vanta partner, gives an overview of penetration testing and the differences between prescriptive and descriptive compliance frameworks.

Compliance
Experts
Partners
Compliance
Event
Convos with Customers: Explo

Learn how the co-founder of Explo, Gary Lin, uses Vanta to manage security and compliance at a quickly growing startup.

Compliance
Security
Blog
What is an access review?

An access review describes the process of monitoring the rights and privileges of everyone who can interact with data and applications.

Cybersecurity
Risk Management
Features
Compliance
Event
How to scale compliance at a hyper-growth company

Watch our webinar to hear from security leaders who have leveled up their compliance programs during periods of hyper-growth.

Cybersecurity
Compliance
Experts
Security
Event
Coffee & Compliance: Demystifying security policies

Steven Conley, IT Audit Director at Insight Assurance, and Matthew Phillips, Lead Auditor at Vanta, discuss security policies for your organization.

Experts
Cybersecurity
Compliance
Partners
NIST
Guide
The ultimate guide to NIST 800-53

Compliance
Cybersecurity
Company news
Blog
Meet the International Team

In 2022, we announced the expansion of our international presence with a new European headquarters in Dublin and growing our team in Sydney. Learn about the International Team.

Experts
Compliance
Event
Convos with Customers: Hook

In this Convos with Customers episode, where Firaas Rashid, Founder and CEO of Hook, explains how Vanta helped his team automate compliance by limiting manual work.

Compliance
Features
Experts
Security
Event
Convos with Customers: Vanta x Signeasy

Signeasy’s Head of Compliance & Info Systems Bineeta Mitra explains how a small but mighty team of one manages SOC 2 compliance with Vanta.

Features
Compliance
Startups
NIST
Guide
The ultimate guide to NIST 800-171

Jumpstart your NIST 800-171 compliance with Vanta's complete guide to this legally required security standard.

Compliance
Cybersecurity
Risk Management
SOC 2
Guide
Your guide to SOC 2 audits

Preparing for a SOC 2 audit? This comprehensive guide will tell you what to expect. You'll also find out how 4,000+ businesses save time and money with Vanta.

Compliance
Compliance
Guide
The ultimate guide to ISO 27701

International privacy laws are always changing. ISO 27701 certification has become a global standard for PIMS to maintain compliance. Read our guide to get started.

Compliance
Risk Management
Compliance
Guide
The ultimate guide to FedRAMP

What is FedRAMP? Learn about the origin, certification, and compliance of FedRAMP in this guide.

Cybersecurity
Compliance
Compliance
Guide
The ultimate guide to ISO 27017

What is ISO 27017 and should your organization be ISO 27017 compliant? Find out all about this standard for cloud security and how to implement it to your advantage.

Compliance
Compliance
Event
Convos with Customers: Vanta x InDebted

Hear how Tim Collins, Chief Compliance Officer at InDebted, uses Vanta to save time and resources in our most recent Convos with Customers episode.

Startups
Compliance
Company news
Blog
VantaCon 2022: Managing risk and unlocking growth with trust

It's a wrap! Our inaugural user conference was a blast. Here's a recap of each product announcement unveiled at VantaCon 2022.

Compliance
Cybersecurity
Experts
Partners
Startups
SOC 2
Event
Product Demo Webinar

See the market-leading compliance automation software in action in this on-demand product demo.

Compliance
Cybersecurity
Experts
Features
Integrations
SOC 2
Blog
What is a SOC 2 readiness assessment?

Don't walk into your audit without a SOC 2 readiness assessment. Here's everything you need to get started.

Compliance
Cybersecurity
Risk Management
Compliance
Guide
The ultimate guide to scaling your compliance program

Vanta’s experts have put together this ultimate guide to adding frameworks to your compliance program with strategies for protecting your data and keeping your workload manageable.

Compliance
Cybersecurity
ISO 27001
Guide
Revolutionize risk: How to manage risk with Vanta

Get a better understanding of excessive risk challenges that can be hard to identify and even harder to manage. We’ll share how Vanta relieves those challenges with our newly enhanced ISO-aligned Risk Management solution.

Compliance
Risk Management
SOC 2
Event
Convos with Customers: Vanta x SlapFive

On the newest episode of Convos with Customers, SlapFive Co-founder & CEO Jeff Ernst explains how SlapFive uses Vanta to automate compliance, close deals faster, and build trust with customers.

Compliance
Experts
Startups
Compliance
Event
Coffee & Compliance: Choosing the right compliance standard for your business

Join us for another episode of Coffee & Compliance where we discuss best practices for choosing a compliance standard for your company.

Compliance
Experts
Cybersecurity
Security
Event
Coffee & Compliance: Hiring for security and compliance

Join cybersecurity expert Rob Picard as he chats with seasoned engineering and security leader Karthik Rangarajan.

Experts
Compliance
Cybersecurity
Company news
Blog
Building bridges: How Vanta helps EMEA-based companies navigate complex EU regulations

Is your organization ready for international regulations? These three Vanta customers are—find out how they did it!

Compliance
Risk Management
Startups
Compliance
Blog
Signeasy achieves SOC 2 and HIPAA compliance with Vanta

Find out how Signeasy ditched their manual processes and leveled-up their security and compliance with Vanta.

Compliance
Features
Company news
Blog
Vanta goes global

Vanta is excited to announce that we are expanding our international presence with a new European headquarters in Dublin and a growing team in Sydney.

Compliance
Partners
Product updates
Blog
Vanta helps companies accelerate growth with 10 new security and data privacy compliance frameworks

Our mission to secure the internet continues with the release of 10 new compliance frameworks. Schedule a demo today to learn more.

Compliance
Cybersecurity
Features
Security
Event
Coffee & Compliance: Managing Audit Exceptions

Join cybersecurity and data privacy expert Matt Cooper as he chats with former auditor Andrew Gulrajani.

Experts
Compliance
SOC 2
Blog
What is SOC 2 compliance automation?

You’ve probably heard of SOC 2 compliance automation, but what does that actually mean? More importantly, how will it help your company? We break it down in this article.

Compliance
Cybersecurity
Security
Event
Ramping up in a downturn: Grow your topline through automated security compliance

Hear Kaitlin Pettersen, VP of Customer Experience, share key lessons at Launch's Founders University in September 2022.

Compliance
Experts
Product updates
Blog
Introducing Vanta's Connectors API

The Connectors API unlocks the potential for any developer to send pertinent security information to Vanta.

Compliance
Cybersecurity
Integrations
Product updates
Blog
New in Vanta 9.13.22

This month we’re unveiling two major developments: our Connectors API for integration partners and our Stacksi integration for automated security questionnaires.

Features
Integrations
Security
Event
Coffee & Compliance: Demystifying risk assessment

Join cybersecurity and data privacy expert Matt Cooper on this episode of Coffee & Compliance for a quick and informative overview of a risk assessment.

Risk Management
Compliance
Experts
Company news
Blog
Customer obsessed: Our customer-centric Community and Research Panel coming soon

Further committing to one of our core principles of "putting customers first," we are excited to share plans for the upcoming Vanta Community and Vanta Research Panel.

Compliance
Product updates
Blog
New in Vanta: Tools to streamline your audit

In this post we take a look at some of Vanta's latest audit-focused features. These newly released tools and services were designed to make you and your auditor’s life a bit easier when it comes time for audit.

Features
Compliance
Integrations
Product updates
Blog
Keep your business golden with CCPA

Vanta now supports CCPA compliance. Build trust, win new business, and lead the conversation on consumer data privacy by maintaining year-round compliance with Vanta.

Compliance
Features
Product updates
Blog
What's New in Vanta 7.12.22

You spoke, we listened. This month's updates reflect lots of customer feedback and collaboration. Read about our new platform redesign, customization options, and the addition of our CCPA compliance product.

Features
Building Trust
Compliance
Product updates
Blog
What's New in Vanta 6.15.22

We’re starting the summer with a collection of newly shipped features designed to help keep your organization secure and cool under audit, including Vanta Trust Reports.

Compliance
Building Trust
Features
Product updates
Blog
Building trust with customers and prospects just got easier with the Vanta Trust Report

Introducing the Vanta Trust Report. Proactively share your security program details with customers and prospects to close deals quicker, speed up security reviews, become more efficient.

Compliance
Features
Building Trust
Compliance
Blog
Your Vanta journey: What to expect from the customer experience

Our customers are at the center of everything we do. In this article, we’ll show you what it’s like to prove, and improve, your security as a Vanta customer.

Compliance
Experts
ISO 27001
Blog
Who needs ISO 27001 certification?

Read our blog to learn more about what is ISO 27001 certification and who needs ISO 27001. We're here to help make the process simple and straightforward.

Compliance
Cybersecurity
Product updates
Blog
What's New in Vanta 4.4.22

Spring is officially here and so is another product update. Learn more about AWS Lambda serverless monitoring, Asana task creation, and in-app policy editing.

Compliance
Integrations
Features
Compliance
Blog
Why should my company comply with a higher level of PCI compliance?

Vanta Cybersecurity expert, Tony Fulda, answers a commonly asked question about why an organization would reach for a Report on Compliance when a Self-Assessment Questionnaire is an acceptable PCI compliance standard.

Compliance
Experts
Product updates
Blog
What's New in Vanta 3.1.22

In this month’s updates, learn how we’ve enhanced our integrations with Slack, Okta, and Datadog to make your security program safer and easier to manage.

Integrations
Compliance
Features
Product updates
Blog
What's New in Vanta 2.1.22

New year, new Vanta! Our resolution is to make managing security, undergoing an audit, and using Vanta easier than ever. Learn more about what we're focused on building this year.

Features
Compliance
Product updates
Blog
What’s New in Vanta 12.17.2021

Before we break for eggnog, our team is excited to share several product updates that are sure to save you time, so you can spend it on what really matters. ✨

Compliance
Features
Integrations
Company news
Blog
Vanta’s 2021 Year in Review

Vanta has had a very busy 2021, so we've taken some time to reflect on all that we -- and our customers -- have accomplished this past year.

Compliance
Security
Blog
3 GraphQL pitfalls and how we avoid them

Vanta's engineering team shares what they've learned from their initial implementation of GraphQL back in 2017 and how GraphQL ended up being the perfect tool for the team.

Engineering
ISO 27001
Blog
The evolution of information security audits

Vanta’s Matt Cooper recently spoke at Cobalt's SecTalks 2021 and discussed how audit irritation spurred the idea for compliance automation and how information security audits are evolving.

Cybersecurity
Experts
GDPR
Blog
Who should comply with GDPR?

Understanding GDPR can be a challenge. Learn what GDPR is, who it impacts, and how it might apply to your business.

Compliance
Cybersecurity
Product updates
Blog
What's New in Vanta 10.4.21

Happy fall everyone! In this round-up of product updates we’re excited to highlight several new integrations and support for recurring uploaded evidence.

Features
Integrations
GDPR
Blog
8 Facts about GDPR compliance you need to know

Get a better understanding of what GDPR means and if your business needs to become GDPR compliant.

Compliance
Cybersecurity
Compliance
Blog
What is PCI compliance? A PCI DSS compliance overview

What is PCI compliance and how can it save your business? Find out the basics of PCI DSS and how to make sure your company is PCI compliant.

Compliance
Cybersecurity
SOC 2
Blog
5 Principles for building a secure product

A Startup Grind 2021 Session recap with Christina Cacioppo.

Cybersecurity
Startups
Product updates
Blog
What's New in Vanta 7.30.21

New Tests Dashboard, new Vanta security awareness training (SAT), more automated security tests, & new HR integrations.

Integrations
Features
Product updates
Blog
Introducing automated ISO 27001 and HIPAA compliance

We’re excited to announce public availability of our ISO 27001 and HIPAA compliance products. These standards are now available as standalone services or packaged with our award-winning SOC 2 offering. 

Compliance
Features
Product updates
Blog
What's New in Vanta 6.30.21

Documents tab, new and improved tests, and better employee offboarding.

Compliance
Features
SOC 2
Blog
5 Ways to turn SOC 2 compliance into a growth strategy

How to use your SOC 2 as a sales and marketing lever

Compliance
Cybersecurity
Startups
SOC 2
Event
Selling to the enterprise? Avoid these 3 lurking deal killers

Avoid these 3 lurking deal killers

Compliance
Experts
Compliance
Blog
How to streamline your employee onboarding and offboarding process

Learn why automating onboarding and offboarding processes ensures the security of your company's data.

Features
Security
Guide
Penetration testing 101

What is a penetration test and why your company might need one

No items found.
Product updates
Blog
What’s New in Vanta

Jamf, MongoDB Atlas, Azure container scanning and more

Features
Integrations
SOC 2
Blog
SOC 2 compliance for startups

Webinar recap covering SOC 2 basics

Compliance
Experts
SOC 2
Blog
6 Reasons your company needs a SOC 2

Learn why Vanta customers are getting their SOC 2.

Compliance
Cybersecurity
Features
Experts
SOC 2
Blog
Starting up with SOC 2

Know the SOC 2 controls and how CPAs are involved

Compliance
Startups
HIPAA
Blog
What is HIPAA compliance?

What is HIPAA compliance and why might your organization need to learn about it? Find out about what it means to be HIPAA compliant.

Compliance
Cybersecurity
SOC 2
Blog
A Roadmap for the SOC Auditing Process with BARR Advisory

with BARR Advisory

Partners
Compliance
SOC 2
Blog
SSAE 16, SSAE18, SOC 1, SOC2: Understand risk and security

Understanding risk and security assessments

Compliance
Engineering
Features
Risk Management
Security
Blog
Your business needs a vendor management policy. Here’s how to create one.

What is a vendor management policy, and why does your company need one? Learn here.

Cybersecurity
Compliance
Risk Management
SOC 2
Blog
Who can perform a SOC 2 audit?

Who can perform your SOC 2 audit? Who from your organization needs to be involved in the audit? Learn more about SOC 2 audits.

Compliance
Startups
SOC 2
Blog
SOC 2 vs SOC 3: What's the difference?

Which does your company need and how they differ

Cybersecurity
Compliance
SOC 2
Blog
SOC 2's Trust Service Criteria

Overview of the 5 categories

Compliance
Cybersecurity
Features
SOC 2
Blog
Soc 2 Type I vs. Type II audits: Know the difference

Should you pick a SOC 2 Type 1 or Type 2 report for your organization? Find out about both reports and which is right for you.

Compliance
Security
Guide
The security for SaaS CTO checklist

CTOs are responsible for securing a lot of moving parts of an organization. Vanta created this checklist to simplify the process so that you can help secure your organization as efficiently as possible.

Compliance
HIPAA
Blog
The importance of HIPAA and what it can mean for your business

Does your business need to comply with HIPAA? Learn about HIPAA, which businesses need to comply, and how to efficiently get HIPAA compliant in order to avoid any costly penalties to your organization.

Compliance
CCPA
Guide
Your CCPA guide to data privacy compliance

What is CCPA compliance and how will it affect your business? Learn about California’s new regulations in this essential CCPA guide.

Cybersecurity
Compliance
No results found 🤷

Get compliant and
build trust, fast.