Happy fall everyone! In this round-up of product updates we’re excited to highlight several new integrations: AWS Inspector, Microsoft Intune, Namely (HR), and Insperity (HR).
The Documents tab for uploaded evidence received a big update and now supports recurring evidence. The Vanta platform also saw its share of enhancements, including the ability to view and export final audit reports within the Security Reports page.
That’s just the start of what’s new in Vanta! Read on to learn more.
AWS Inspector Integration for Vulnerability Scanning
Vulnerability scanning is an important tool for any organization that takes their security seriously. And for some security standards, it’s a hard requirement. Most Vanta customers already use AWS for their cloud infrastructure, and to better serve these customers we’re releasing an integration with AWS Inspector for general availability.
Users can now directly link AWS Inspector to Vanta to populate evidence that a vulnerability scanner is in place and that identified issues are being addressed properly. Vanta automatically fetches vulnerability findings from AWS Inspector and displays them within the Vulnerabilities page, where users can remediate or ignore flagged items. Vanta also automatically checks that vulnerability findings are addressed within your organization’s given SLA timeframe, and sends out reminders to help keep those commitments.
Our AWS Inspector integration is one of several upcoming long term solutions to help ensure that your organization’s cloud infrastructure remains secure. With this launch, we intend to deprecate the Vanta Vulnerability Server Agent on December 1, 2021. For more information on this transition, please read our support articles here and here.
Don’t hesitate to reach out to your Customer Success Manager for help making this transition as smooth as possible for your team!
Recurrence for Uploaded Evidence
The Documents tab for uploaded evidence now supports recurring events. Because most compliance frameworks require proof of completion or documentation on a recurring basis, we’ve updated the Documents tab to support multiple document uploads, reminders for upcoming evidence due dates, and recurrence period setting (monthly, quarterly, bi-annually, annually).
When it’s time for you to renew uploaded evidence, Vanta will surface the document based on your preferred timing or on our default setting. Once your new evidence is uploaded, the effective date is updated and your old document becomes inactive, but is maintained for record keeping.
In addition, you can now filter uploaded evidence by status, category, or standard – making it easy for your team to track progress and take action. We’re excited to release this update to make managing recurring evidence a little less painful. Let us know what you think!
New Tests, Integrations, and Improvements
The following Tests enhancements have been rolled out to further automate your security and compliance:
- Google Cloud Platform – Check that only authorized users can access tracked log sinks in GCP is now its own test.
- Google Cloud Platform – Check that log sink destinations in GCP are tracked by Vanta is now its own test.
The following Integrations have been released to further support your organization’s tech and business stack:
- AWS Inspector for vulnerability scanning
- Microsoft Intune (Microsoft Endpoint Manager) for MDM
- Namely for HR
- Insperity for HR
- HIPAA SAT (security awareness training) has been released for general availability
- Final audit reports can be viewed and exported from the Security Reports page
- Policy templates can now be exported en mass as a single file
- Information on when a test has been deactivated and who deactivated it is now included in the test’s history chart as well as within compliance reports.
As always, we welcome your feedback on these changes! Please let us know what you think by reaching out to your Customer Success Manager.
Keep in touch on LinkedIn.
– The Vanta Team