BlogCompany news
January 31, 2024

Celebrating new milestones plus enterprise-ready features and more AI capabilities

Written by
Vanta
Reviewed by
No items found.

Accelerating security solutions for small businesses 

Tagore offers strategic services to small businesses. 

A partnership that can scale 

Tagore prioritized finding a managed compliance partner with an established product, dedicated support team, and rapid release rate.

Standing out from competitors

Tagore's partnership with Vanta enhances its strategic focus and deepens client value, creating differentiation in a competitive market.

Today we’re excited to share several milestones as we continue on our mission to secure the internet and protect consumer data. 

  • In FY ‘24, we crossed $100M in ARR, nearly doubling our customer base to 7,000 companies globally, including Atlassian, Chili Piper, Flo Health and Quora. Almost 1 in 4 Vanta customers are now based outside of the U.S. as we’ve accelerated our international momentum in EMEA and APAC

And we’re just getting started. 

As we continue to reimagine GRC tools for the future of trust, we’ve built enterprise-ready features and rolled out additional Vanta AI capabilities along with support for the NIST AI Risk Management Framework. 

Enterprise-ready features for sophisticated GRC teams

Combining a breadth of workflows with a depth of automation, Vanta helps your GRC and information security teams scale your compliance program, unify risk management, and streamline security reviews with: 

  • 300 pre-built integrations providing continuous, real-time monitoring of security and compliance across cloud providers, HRIS, datastore providers, and many more
  • Vanta API to build private integrations with internal systems or public integrations accessible by Vanta customers
  • Increased customization for GRC practitioners, including the ability to create custom frameworks and customize Vanta’s built-in automated tests
  • Executive reporting to prioritize and act on the key risks, measure the success of your security program, and easily report the impact to stakeholders (currently in preview)
  • Enterprise-ready capabilities such as Single Sign On, Workspaces, custom Role-Based Access Control, and more

Monitor and mitigate AI risk with NIST AI RMF

As the pace and complexity of AI innovation increases, it’s more important than ever for companies to mitigate the risks associated with the use and development of AI tools. That’s why we’re excited to announce that the NIST AI Risk Management Framework is now available in preview, with general availability to follow in the coming weeks. 

With Vanta’s NIST AI RMF solution, you’re equipped with comprehensive guidance for setting up an AI governance program while having the flexibility to tailor the requirements to your needs. Paired with automated evidence collection and continuous monitoring, Vanta enables teams to innovate with AI technologies while growing trust with customers.

Unlocking additional Vanta AI capabilities

Since introducing Vanta AI last fall, we’ve continued to expand the use of AI within Vanta to further automate tedious and manual tasks so you can manage your security and compliance programs with less work and more confidence. 

Starting today, you can customize the questions Vanta AI uses to analyze security documents within Vanta’s Vendor Risk Management solution, reducing the time and effort to conduct thorough vendor security reviews. 

With AI Data Import for Access Reviews, you can automatically upload user access information from images and PDFs. Now when you perform access reviews for internal tools or on-premises systems that do not have a direct integration with Vanta, you no longer need to manually enter this information. 

Partnering with A-LIGN to scale trust management 

Last but not least, today we’re also announcing our partnership with A-LIGN, a technology-enabled security and compliance partner trusted by more than 4,000 global organizations. 

With Vanta and A-LIGN, customers can now get the best of both worlds—a scalable platform to automate up to 90% of the evidence collection needed to complete a SOC 2 or ISO 27001 audit, and a highly-regarded firm to complete the audit. 

Vanta covers all of A-LIGN’s evidence requirements directly in its platform, ensuring a seamless handoff to auditors. Combining Vanta’s flexible platform with A-LIGN’s broad range of services gives companies of all sizes a scalable solution for growing and evolving their compliance program with maximum efficiency. 

Advancing the future of trust in an AI world

We couldn’t be prouder of today’s milestones and we’re excited to continue building the future of trust by putting customers first, biasing for action, leading with resilience, deciding with frameworks, presuming good intent, and doing what it says on the tin — all in service of our mission to secure the internet and protect consumer data. 

Access Review Stage Content / Functionality
Across all stages
  • Easily create and save a new access review at a point in time
  • View detailed audit evidence of historical access reviews
Setup access review procedures
  • Define a global access review procedure that stakeholders can follow, ensuring consistency and mitigation of human error in reviews
  • Set your access review frequency (monthly, quarterly, etc.) and working period/deadlines
Consolidate account access data from systems
  • Integrate systems using dozens of pre-built integrations, or “connectors”. System account and HRIS data is pulled into Vanta.
  • Upcoming integrations include Zoom and Intercom (account access), and Personio (HRIS)
  • Upload access files from non-integrated systems
  • View and select systems in-scope for the review
Review, approve, and deny user access
  • Select the appropriate systems reviewer and due date
  • Get automatic notifications and reminders to systems reviewer of deadlines
  • Automatic flagging of “risky” employee accounts that have been terminated or switched departments
  • Intuitive interface to see all accounts with access, account accept/deny buttons, and notes section
  • Track progress of individual systems access reviews and see accounts that need to be removed or have access modified
  • Bulk sort, filter, and alter accounts based on account roles and employee title
Assign remediation tasks to system owners
  • Built-in remediation workflow for reviewers to request access changes and for admin to view and manage requests
  • Optional task tracker integration to create tickets for any access changes and provide visibility to the status of tickets and remediation
Verify changes to access
  • Focused view of accounts flagged for access changes for easy tracking and management
  • Automated evidence of remediation completion displayed for integrated systems
  • Manual evidence of remediation can be uploaded for non-integrated systems
Report and re-evaluate results
  • Auditor can log into Vanta to see history of all completed access reviews
  • Internals can see status of reviews in progress and also historical review detail
Logo of incident.io
Incident.io
Logo of Lumos
Lumos
Icepanel logo on a white background.
IcePanel
Epsilon Logo
Epsilon3
The logo for supabase.
Supabase
EasyLLama Logo
EasyLlama
Qualifi Logo
Qualifi
Logo of toku
Toku
FEATURED VANTA RESOURCE

The ultimate guide to scaling your compliance program

Learn how to scale, manage, and optimize alongside your business goals.

DOWNLOAD FOR FREE
Security
8 fundamental AI security best practices for teams in 2025
Security
AI security posture management (AI-SPM): All information in one place
GRC
Turning Chaos Into Clarity: Continuous Security at Scale
Product updates
Vanta Office Hour: Unlock the Power of Vanta AI
Security
8 fundamental AI security best practices for teams in 2025
Security
AI security posture management (AI-SPM): All information in one place
GRC
Turning Chaos Into Clarity: Continuous Security at Scale
Product updates
Vanta Office Hour: Unlock the Power of Vanta AI

Table of contents

No titles!

Share this article

Share this article

Related Resources

Product updates
Blog

New in Vanta | October 2022

This month's update includes our new Risk Management solution, plus updates to System Description, Test SLAs, Event Log tracking, and Custom Tag support.

Company news
Blog

Meet the Team!

Meet Danni—Senior Product Designer, professional problem solver, and cyclist.

How MSPs unlock growth with Vanta’s Service Partner Program
Company news
Blog

How MSPs unlock growth with Vanta’s Service Partner Program

Vanta’s Service Partner Program provides MSPs with essential tools to expand service offerings, accelerate growth, streamline operations, and stand out in a competitive market.

Security
Blog

Create a culture of security from the start

A LAUNCH Jam Session series recap with Christina Cacioppo and Chris Evans of Incident.io.

Related Resources

Company news
Blog
Introducing proactive, AI-powered risk management that breaks the cycle of reactive risk

Unify risk management with Vanta’s AI-powered Trust Management Platform—automate workflows, monitor vendors in real time, and act on risks before they impact your business.

Company news
Events
VantaCon 2025

Join us in person in San Francisco on November 19.

Company news
Blog
Lessons learned from Vanta’s FedRAMP® 20x pilot program

A behind-the-scenes look at how Vanta navigated the FedRAMP 20x pilot.

Company news
Blog
Helping businesses earn and prove trust: Announcing Vanta’s $150 million Series D

Vanta’s mission is to help businesses earn and prove trust. Today we’re excited to announce we’ve raised a $150M Series D to continue building the future of trust.

Company news
Blog
Supercharging Vendor Risk Management: Vanta acquires Riskey

We're excited to announce that Vanta has acquired Riskey to improve security reviews from point-in-time snapshots to continuous, AI-powered assessments.

Vanta has been named as a Leader in the IDC MarketScape: Worldwide Governance, Risk, and Compliance Software 2025 Vendor Assessment.
Company news
Blog
Vanta is a Leader in the IDC MarketScape: Worldwide Governance, Risk, and Compliance Software Vendor Assessment, 2025

The IDC MarketScape assesses the competitive landscape, analyzing qualitative and quantitative criteria to evaluate GRC vendors.

Company news
Blog
Introducing Vanta Trust Maturity Report: Benchmark your security maturity against 11,000+ programs

We’re excited to release our first-ever Vanta Trust Maturity Report to help you benchmark your security maturity.

Company news
Events
Founder to Founder: The Guide to Building a Breakout Startup in the AI Age

Watch our conversation with Christina Cacioppo (CEO and Co-founder of Vanta) and Mario Gabriele (CEO and Founder of The Generalist) on what it really takes to build a breakout startup, with sharp insights and strategies for staying ahead in a market that’s shifting faster than ever.

Vanta earns ISO 42001 certification
Company news
Blog
Vanta earns ISO 42001 certification to demonstrate trustworthy AI practices

We’re excited to announce that Vanta is one of the first companies to earn ISO 42001 certification.

Key takeaways from VantaCon UK
Company news
Blog
Going beyond the standard: Key takeaways from VantaCon UK 2025

During our second annual VantaCon UK, industry leaders discussed the complexities of building trust in the age of AI and regulatory challenges in the EU.

Company news
Events
Zero to success: What we got wrong before we got it right

Join experienced founders as they share key lessons on overcoming early startup challenges and driving growth.

How MSPs unlock growth with Vanta’s Service Partner Program
Company news
Blog
How MSPs unlock growth with Vanta’s Service Partner Program

Vanta’s Service Partner Program provides MSPs with essential tools to expand service offerings, accelerate growth, streamline operations, and stand out in a competitive market.

Get compliant and build trust—fast

Request a demo
G2 Badge 2025 - Best Software | Top 50 Governance, Risk, & Compliance ProductsG2 Badge 2025 - Best Software | Top 50 Security ProductsG2 Badge 2025 - Best Software | Top 100 Best Software Products