Resources

Curated content for the compliance connoisseur: We cover the latest on frameworks, risks, and security trends.

Show filters

Compliance

Content Type
Tags
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Company news
Blog
London calling: Join us at VantaCon UK on 23 April

VantaCon UK brings together CISOs & security leaders, AI experts, and Vanta customers to share their insights on the intersection of AI and trust.

AI
Building Trust
Compliance
Event
Automating your existing compliance program

With Vanta, you get enough flexibility to choose between a wealth of pre-built content and the ability to customize and configure the product to match your program’s needs. Curious to see this in action?

Compliance
Compliance
Event
How to automate ISO 27001 & SOC 2 compliance

Join Vanta’s 45-minute live product demo on 25 April at 11 am BST. Two of our team members will walk you through the platform and answer questions throughout the session.

Compliance
Compliance
Event
ISO 27001 & SOC 2 compliance automation

Join Vanta’s 45-minute live product demo on 10th April at 1pm AEST. Two of our team members will walk you through the platform and answer questions throughout the session.

Compliance
Compliance
Event
Combating threats through a continuous compliance

In the world of cloud infrastructure, security teams frequently find themselves bouncing between tools to track alignment to compliance standards. What’s more, they must often contend with a lack of visibility into risk and potential threats.

Compliance
Features
Experts
Compliance
Event
SOC 2 & ISO 27001 compliance automation

Join Vanta’s 45-minute live product demo on April 16 at 10 am PST. Two of our team members will walk you through the platform and answer questions throughout the session.

No items found.
Security
Event
How to build an enduring security program as your company grows

Join Vanta's CISO, Jadee Hanson, and seasoned security leaders at company's big and small to discuss building and maintaining an efficient and high performing security program.

Compliance
Experts
Compliance
Event
Ask Me (Almost) Anything: AI & Compliance

What does AI mean for your company’s security compliance program? Join our session on 28 March 9 am AEDT where Matt Cooper, Privacy, Risk and Compliance Manager at Vanta, and Noam Rubin, Sr. Software Engineer at Vanta, will answer (almost) all your questions about AI and compliance.

AI
Compliance
Risk Management
Compliance
Event
Automating SOC 2 compliance & more

Join Vanta’s 45-minute live product demo on March 12 at 11 am PST where Devin and Natalie will walk you through the Vanta platform and show you how we automate 90% of the work for security and privacy frameworks, and help you move towards a state of continuous compliance.

Compliance
Risk Management
Compliance
Event
ISO 27001 & SOC 2 compliance automation

Join Vanta’s 45-minute live product demo on 13 March at 11 am GMT. Two of our team members will walk you through the platform and answer questions throughout the session.

Compliance
Vanta in Action: Vendor Risk Management
Security
Event
Vanta in Action: Vendor Risk Management

Vendor security reviews can be manual and time-consuming, draining security teams of precious hours. Vanta’s Vendor Risk Management solution changes that, automating and streamlining security reviews so that you can spend less time on repetitive work and more time strengthening your security posture. Curious to see what it looks like?

Building Trust
Compliance
Risk Management
Compliance
Event
Ask Me (Almost) Anything: Essential Eight

Join our Ask Me (Almost) Anything session on 27 February at 10 am AEDT, where Matt Cooper, Privacy, Risk & Compliance Manager at Vanta, will cover the basics and answer (almost) all your questions about Essential Eight.

Compliance
Risk Management
Vanta in Action: Vendor Risk Management
Security
Event
Vanta in Action: Vendor Risk Management

Vendor security reviews can be manual and time-consuming, draining security teams of precious hours. Vanta’s Vendor Risk Management solution changes that, automating and streamlining security reviews so that you can spend less time on repetitive work and more time strengthening your security posture. Curious to see what it looks like?

Building Trust
Compliance
Risk Management
Security
Blog
In AI we trust: AI governance best practices from legal and compliance leaders

With AI regulation still in flux, how can companies adopt AI safely and responsibly to minimize risk while accelerating innovation? Leaders from Ironclad, Anthropic, and Quora share their best practices.

AI
Vanta in Action: ISO 27001 & SOC 2 Compliance Automation
Compliance
Event
Live Product Demo: ISO 27001 & SOC 2 Compliance Automation

Join Vanta’s 45-minute live product demo on 21 February at 11 am AEDT. Two of our team members will walk you through the platform and answer questions throughout the session.

Compliance
A man and woman with the words ama on a yellow background.
Compliance
Event
Ask Me (Almost) Anything: AI & Compliance

What does AI mean for your company’s security compliance program? Watch the on-demand session where we answer audience question about AI and compliance.

AI
Compliance
Experts
Risk Management
Compliance
Event
AMAA: Accelerating your progress in Vanta to meet your security and compliance goals

Want to quickly get up to speed with Vanta so you can meet your security and compliance goals? Join our next Ask Me (Almost) Anything webinar on January 18th at 8:30am PST / 4:30pm GMT to find out how.

Compliance
Security
Guide
How to do penetration testing: A step-by-step guide

Learn how to perform penetration testing and when it is required.

No items found.
Compliance
Event
Live Product Demo: ISO 27001 & SOC 2 Compliance Automation

See Vanta’s on-demand demo where wo of our team members will walk you through the platform.

Compliance
GDPR
Blog
How to make your website GDPR compliant

Discover the essential steps to achieve GDPR compliance for your website. Click here to learn the requirements and organizational benefits of GDPR compliance.

Compliance
Features
Company news
Blog
Vanta continues to lead the G2 Grid® for Security Compliance

We’re excited to share that for the fifth quarter in a row, Vanta has been named the #1 Leader in G2’s Grid® Report for Security Compliance. Read more.

No items found.
A magnifying glass on a purple background.
Compliance
Blog
The complete guide to compliance risk management

Understand what compliance risk management is and how to create an effective system for your organization. Click here for key tips on managing compliance risk.

Compliance
Risk Management
Compliance
Blog
How CrowdComms and Henchman use ISO 27001 and SOC 2 together

Choosing whether to focus on your ISO 27001 certification or obtaining a SOC 2 report? Get insights from Vanta customers on their process with these two frameworks.

No items found.
Security
Blog
What is continuous security monitoring?

What is continuous security monitoring and why is it crucial to your business? Learn about continuous monitoring and best practices for ensuring security within your organization.

Features
Cybersecurity
Compliance
Compliance
Event
Leverage Security and Compliance to Win Over Prospects

Curious about how security and compliance can help you build trust and win over prospects? On December 13th at 8:30am PST / 4:30pm GMT, join our AMAA

Compliance
Compliance
Event
ISO 27001 & SOC 2 Compliance Automation

Demonstrating security compliance with a framework like ISO 27001 or SOC 2 is not only essential for scaling your business and raising capital, it also builds an important foundation of trust.

Compliance
Compliance
Event
Compliance for Startups: Join Vanta's Office Hours

Do you have questions about SOC 2, ISO 27001, HIPAA, or other security and privacy frameworks? Wondering if, when, and how to achieve compliance (as painlessly as possible)? Join the next office hours with Vanta team leaders to learn about compliance for growing startups

Compliance
Purple llama in front of a desk and monitor
SOC 2
Blog
What is a SOC analyst?

Discover the role of a SOC Analyst: their tasks, requirements, certifications, tiers, and salary.

Compliance
Compliance
Event
Auditor Edition

Are you preparing for upcoming compliance audits? Curious about the best practices to ensure a smooth audit process? Join the webinar...

Compliance
Compliance
Blog
PCI-DSS 4.0: What’s changing and how to prepare

As of March 2024, PCI-DSS 4.0 will introduce some significant changes. In this post, we go over what some of those changes are, as well as how you can prepare for them.

No items found.
Compliance
Blog
8 questions about AI and compliance

AI is one of the hottest topics in tech, but what are the risks that come with innovating? Read advice from compliance experts about the topic of AI and compliance.

AI
A man and woman with the words ama on a yellow background.
Compliance
Event
Ask Me (Almost) Anything: Security, Compliance & The Remote Workplace

Is your business partially or fully remote? Are you wondering how the remote workplace impacts your compliance and security?

Compliance
Compliance
Event
Coffee & Compliance: Streamlining SOC 2 compliance with Vanta and AWS

SOC 2 is a sought-after security framework for growing SaaS companies. It demonstrates your ability to safeguard the privacy and security of your customer data. But achieving it can be time-consuming and expensive.

Compliance
Compliance
Event
Ask Me (Almost) Anything: Compliance for Early Stage Startups

Proving trust is critical to winning business and growing revenue. But scaling the security and compliance programs needed to do so can be costly, resource intensive, and incredibly manual. How should growing startups navigate the complex compliance space? What resources and supports are available?

Compliance
Compliance
Event
Vanta in Action: Compliance Automation

Demonstrating security compliance with a framework like SOC 2, ISO 27001, HIPAA, etc. is not only essential for scaling your business and raising capital, it also builds an important foundation of trust.

Cybersecurity
A group of circles with different logos on them.
Compliance
Guide
Frameworks for success: Leveraging security & privacy frameworks to scale a growing business

As your organization grows, your security and compliance needs will also grow. Get our free guide on implementing custom frameworks that are tailored to your organization’s complex needs.

No items found.
Compliance
Event
Coffee and Compliance: Building Trust to Drive Business Growth

Join our live webinar on May 23 at 12 PM where VP of Product Chase Lee, and Staff Product Manager Sanjay Padval as they demonstrate a brief overview and provide guidance on advancing your security program beyond building or improving. Learn how to enhance customer satisfaction and gain a competitive advantage, accelerating your business growth.

Compliance
Compliance
Event
Café et compliance : les clés pour booster sa croissance en tant que startup

Pour vendre à des entreprises, les startups doivent garantir la protection des données de leurs clients en prouvant qu’elles ont mis en place les bonnes pratiques de sécurité. Pour cela, elles peuvent obtenir une certification comme la norme ISO 27001. Ce webinar explique les différents contrôles de sécurité à effectuer, les avantages de la certification et comment automatiser jusqu'à 90% du processus avec Vanta. Sébastien, CTO et co-fondateur de Leeway reviendra sur son expérience avec Vanta, et les participants pourront échanger avec notre responsable commerciale en France et notre expert en certification.

Compliance
How to use custom frameworks to meet your unique security needs.
Compliance
Event
Using custom frameworks to meet your unique security needs

Watch this on-demand webinar to learn how custom control frameworks help to grow your business and earn the trust of customers and vendors, strengthen your security program and achieve compliance, and save significant resources.

No items found.
A dashboard with a lot of icons on it.
Security
Blog
What is a trust management platform?

How do you get compliant, stay secure, and demonstrate trust continuously? That’s where a trust management platform comes in. Learn more.

Compliance
Risk Management
Building Trust
An image of a dashboard with a rock in the background.
Product updates
Blog
Introducing Custom Frameworks to the Vanta Platform

Custom controls and custom frameworks help compliance teams centralize and customize the way their security work gets done in Vanta.

Features
Compliance
Event
Convos with Customers: ResoluteAI

Eléonore Dixon-Roche, Senior Product Manager at ResoluteAI, explains how Vanta helped her step outside of her role and take on managing security and compliance for her company.

Compliance
Product updates
Blog
New in Vanta | January 2023

Vanta has made some pretty exciting updates already in 2023. Learn about Trustpage by Vanta, our newest integrations, and the most recent improvements to the platform.

Compliance
Features
Integrations
Building Trust
Security
Blog
When is the right time for vulnerability scanning?

As new cybersecurity threats emerge, when is the right time for vulnerability scanning? We give an overview of how to time vulnerability scans for improved security.

Cybersecurity
Compliance
Compliance
Blog
How do you perform quarterly access reviews?

Periodic user access reviews prevent the risk that former employees may still retain access to sensitive corporate data and systems after being terminated. Learn how to perform quarterly access reviews.

Compliance
Cybersecurity
Features
Security
Blog
What is vulnerability scanning?

What is vulnerability scanning and how can it enhance your information security? Find out everything you need to know from the Vanta security team.

Compliance
Cybersecurity
SOC 2
Event
Convos with Customers: Envase

Envase knew gaining the trust of their potential customers was crucial, but were unsure if getting SOC 2 compliant was worth the hassle. Learn how Envase worked with Vanta to make the SOC 2 attestation process painless.

Compliance
A book with the words aws ftr on it.
Compliance
Guide
AWS: Foundational Technical Review overview

AWS FTR describes the construction of secure, performant, resilient, sustainable, and cost-efficient cloud infrastructures. Read our overview to aid your comprehension.

Compliance
Cybersecurity
Compliance
Blog
Do you need penetration testing for compliance?

Software Secured, a Vanta partner, gives an overview of penetration testing and the differences between prescriptive and descriptive compliance frameworks.

Compliance
Experts
Partners
Compliance
Event
Convos with Customers: Explo

Learn how the co-founder of Explo, Gary Lin, uses Vanta to manage security and compliance at a quickly growing startup.

Compliance
Security
Blog
What is an access review?

An access review describes the process of monitoring the rights and privileges of everyone who can interact with data and applications.

Cybersecurity
Risk Management
Features
How to scale compliance at a hyper growth company.
Compliance
Event
How to scale compliance at a hyper-growth company

Watch our webinar to hear from security leaders who have leveled up their compliance programs during periods of hyper-growth.

Cybersecurity
Compliance
Experts
Security
Event
Coffee & Compliance: Demystifying security policies

Steven Conley, IT Audit Director at Insight Assurance, and Matthew Phillips, Lead Auditor at Vanta, discuss security policies for your organization.

Experts
Cybersecurity
Compliance
Partners
Nst 800 - 353 exam questions and answers.
NIST
Guide
The ultimate guide to NIST 800-53

Compliance
Cybersecurity
Company news
Blog
Meet the International Team

In 2022, we announced the expansion of our international presence with a new European headquarters in Dublin and growing our team in Sydney. Learn about the International Team.

Experts
Compliance
Event
Convos with Customers: Hook

In this Convos with Customers episode, where Firaas Rashid, Founder and CEO of Hook, explains how Vanta helped his team automate compliance by limiting manual work.

Compliance
Features
Experts
Security
Event
Convos with Customers: Vanta x Signeasy

Signeasy’s Head of Compliance & Info Systems Bineeta Mitra explains how a small but mighty team of one manages SOC 2 compliance with Vanta.

Features
Compliance
Startups
The nst 800 - 1717 logo on a yellow background.
NIST
Guide
The ultimate guide to NIST 800-171

Jumpstart your NIST 800-171 compliance with Vanta's complete guide to this legally required security standard.

Compliance
Cybersecurity
Risk Management
An icon of a book on a yellow background.
SOC 2
Guide
Your guide to SOC 2 audits

Preparing for a SOC 2 audit? This comprehensive guide will tell you what to expect. You'll also find out how 4,000+ businesses save time and money with Vanta.

Compliance
Iso 27701 - iso 27702 - iso 27703 - iso 27704 - iso.
Compliance
Guide
The ultimate guide to ISO 27701

International privacy laws are always changing. ISO 27701 certification has become a global standard for PIMS to maintain compliance. Read our guide to get started.

Compliance
Risk Management
A book with the word feed ramp on it.
Compliance
Guide
The ultimate guide to FedRAMP

What is FedRAMP? Learn about the origin, certification, and compliance of FedRAMP in this guide.

Cybersecurity
Compliance
The iso 27017 logo on a yellow background.
Compliance
Guide
The ultimate guide to ISO 27017

What is ISO 27017 and should your organization be ISO 27017 compliant? Find out all about this standard for cloud security and how to implement it to your advantage.

Compliance
Compliance
Event
Convos with Customers: Vanta x InDebted

Hear how Tim Collins, Chief Compliance Officer at InDebted, uses Vanta to save time and resources in our most recent Convos with Customers episode.

Startups
Compliance
Company news
Blog
VantaCon 2022: Managing risk and unlocking growth with trust

It's a wrap! Our inaugural user conference was a blast. Here's a recap of each product announcement unveiled at VantaCon 2022.

Compliance
Cybersecurity
Experts
Partners
Startups
SOC 2
Event
Product Demo Webinar

See the market-leading compliance automation software in action in this on-demand product demo.

Compliance
Cybersecurity
Experts
Features
Integrations
SOC 2
Blog
What is a SOC 2 readiness assessment?

Don't walk into your audit without a SOC 2 readiness assessment. Here's everything you need to get started.

Compliance
Cybersecurity
Risk Management
The ultimate guide to scaling your compliance program.
Compliance
Guide
The ultimate guide to scaling your compliance program

Vanta’s experts have put together this ultimate guide to adding frameworks to your compliance program with strategies for protecting your data and keeping your workload manageable.

Compliance
Cybersecurity
The cover of the book revolutionizing risk how to manage risk with yanta.
ISO 27001
Guide
Revolutionize risk: How to manage risk with Vanta

Get a better understanding of excessive risk challenges that can be hard to identify and even harder to manage. We’ll share how Vanta relieves those challenges with our newly enhanced ISO-aligned Risk Management solution.

Compliance
Risk Management
SOC 2
Event
Convos with Customers: Vanta x SlapFive

On the newest episode of Convos with Customers, SlapFive Co-founder & CEO Jeff Ernst explains how SlapFive uses Vanta to automate compliance, close deals faster, and build trust with customers.

Compliance
Experts
Startups
Compliance
Event
Coffee & Compliance: Choosing the right compliance standard for your business

Join us for another episode of Coffee & Compliance where we discuss best practices for choosing a compliance standard for your company.

Compliance
Experts
Cybersecurity
Security
Event
Coffee & Compliance: Hiring for security and compliance

Join cybersecurity expert Rob Picard as he chats with seasoned engineering and security leader Karthik Rangarajan.

Experts
Compliance
Cybersecurity
Company news
Blog
Building bridges: How Vanta helps EMEA-based companies navigate complex EU regulations

Is your organization ready for international regulations? These three Vanta customers are—find out how they did it!

Compliance
Risk Management
Startups
Compliance
Blog
Signeasy achieves SOC 2 and HIPAA compliance with Vanta

Find out how Signeasy ditched their manual processes and leveled-up their security and compliance with Vanta.

Compliance
Features
Company news
Blog
Vanta goes global

Vanta is excited to announce that we are expanding our international presence with a new European headquarters in Dublin and a growing team in Sydney.

Compliance
Partners
Product updates
Blog
Vanta helps companies accelerate growth with 10 new security and data privacy compliance frameworks

Our mission to secure the internet continues with the release of 10 new compliance frameworks. Schedule a demo today to learn more.

Compliance
Cybersecurity
Features
Security
Event
Coffee & Compliance: Managing Audit Exceptions

Join cybersecurity and data privacy expert Matt Cooper as he chats with former auditor Andrew Gulrajani.

Experts
Compliance
SOC 2
Blog
What is SOC 2 compliance automation?

You’ve probably heard of SOC 2 compliance automation, but what does that actually mean? More importantly, how will it help your company? We break it down in this article.

Compliance
Cybersecurity
Ramping up founders in a downturn.
Security
Event
Ramping up in a downturn: Grow your topline through automated security compliance

Hear Kaitlin Pettersen, VP of Customer Experience, share key lessons at Launch's Founders University in September 2022.

Compliance
Experts
A diagram of various v logos on a purple background.
Product updates
Blog
Introducing Vanta's Connectors API

The Connectors API unlocks the potential for any developer to send pertinent security information to Vanta.

Compliance
Cybersecurity
Integrations
Product updates
Blog
New in Vanta 9.13.22

This month we’re unveiling two major developments: our Connectors API for integration partners and our Stacksi integration for automated security questionnaires.

Features
Integrations
Coffee & compliance demystifying risk assessment.
Security
Event
Coffee & Compliance: Demystifying risk assessment

Join cybersecurity and data privacy expert Matt Cooper on this episode of Coffee & Compliance for a quick and informative overview of a risk assessment.

Risk Management
Compliance
Experts
Company news
Blog
Customer obsessed: Our customer-centric Community and Research Panel coming soon

Further committing to one of our core principles of "putting customers first," we are excited to share plans for the upcoming Vanta Community and Vanta Research Panel.

Compliance
A purple background with the words product update.
Product updates
Blog
New in Vanta: Tools to streamline your audit

In this post we take a look at some of Vanta's latest audit-focused features. These newly released tools and services were designed to make you and your auditor’s life a bit easier when it comes time for audit.

Features
Compliance
Integrations
A purple logo with the words ccopa on it.
Product updates
Blog
Keep your business golden with CCPA

Vanta now supports CCPA compliance. Build trust, win new business, and lead the conversation on consumer data privacy by maintaining year-round compliance with Vanta.

Compliance
Features
Product updates
Blog
What's New in Vanta 7.12.22

You spoke, we listened. This month's updates reflect lots of customer feedback and collaboration. Read about our new platform redesign, customization options, and the addition of our CCPA compliance product.

Features
Building Trust
Compliance
Product updates
Blog
What's New in Vanta 6.15.22

We’re starting the summer with a collection of newly shipped features designed to help keep your organization secure and cool under audit, including Vanta Trust Reports.

Compliance
Building Trust
Features
Product updates
Blog
Building trust with customers and prospects just got easier with the Vanta Trust Report

Introducing the Vanta Trust Report. Proactively share your security program details with customers and prospects to close deals quicker, speed up security reviews, become more efficient.

Compliance
Features
Building Trust
Compliance
Blog
Your Vanta journey: What to expect from the customer experience

Our customers are at the center of everything we do. In this article, we’ll show you what it’s like to prove, and improve, your security as a Vanta customer.

Compliance
Experts
A purple logo with the word iso2000 on it.
ISO 27001
Blog
Who needs ISO 27001 certification?

Read our blog to learn more about what is ISO 27001 certification and who needs ISO 27001. We're here to help make the process simple and straightforward.

Compliance
Cybersecurity
Product updates
Blog
What's New in Vanta 4.4.22

Spring is officially here and so is another product update. Learn more about AWS Lambda serverless monitoring, Asana task creation, and in-app policy editing.

Compliance
Integrations
Features
Compliance
Blog
Why should my company comply with a higher level of PCI compliance?

Vanta Cybersecurity expert, Tony Fulda, answers a commonly asked question about why an organization would reach for a Report on Compliance when a Self-Assessment Questionnaire is an acceptable PCI compliance standard.

Compliance
Experts
Product updates
Blog
What's New in Vanta 3.1.22

In this month’s updates, learn how we’ve enhanced our integrations with Slack, Okta, and Datadog to make your security program safer and easier to manage.

Integrations
Compliance
Features
Product updates
Blog
What's New in Vanta 2.1.22

New year, new Vanta! Our resolution is to make managing security, undergoing an audit, and using Vanta easier than ever. Learn more about what we're focused on building this year.

Features
Compliance
Product updates
Blog
What’s New in Vanta 12.17.2021

Before we break for eggnog, our team is excited to share several product updates that are sure to save you time, so you can spend it on what really matters. ✨

Compliance
Features
Integrations
Company news
Blog
Vanta’s 2021 Year in Review

Vanta has had a very busy 2021, so we've taken some time to reflect on all that we -- and our customers -- have accomplished this past year.

Compliance
Security
Blog
3 GraphQL pitfalls and how we avoid them

Vanta's engineering team shares what they've learned from their initial implementation of GraphQL back in 2017 and how GraphQL ended up being the perfect tool for the team.

Engineering
ISO 27001
Blog
The evolution of information security audits

Vanta’s Matt Cooper recently spoke at Cobalt's SecTalks 2021 and discussed how audit irritation spurred the idea for compliance automation and how information security audits are evolving.

Cybersecurity
Experts
The gdpr logo on a purple background.
GDPR
Blog
Who should comply with GDPR?

Understanding GDPR can be a challenge. Learn what GDPR is, who it impacts, and how it might apply to your business.

Compliance
Cybersecurity
Product updates
Blog
What's New in Vanta 10.4.21

Happy fall everyone! In this round-up of product updates we’re excited to highlight several new integrations and support for recurring uploaded evidence.

Features
Integrations
A circle with the word gdpr around it.
GDPR
Blog
8 Facts about GDPR compliance you need to know

Get a better understanding of what GDPR means and if your business needs to become GDPR compliant.

Compliance
Cybersecurity
No results found 🤷

Get compliant and
build trust, fast.

Two wind turbines on a white background.
Get compliant and build trust,
fast.
Get started