April 23, 2024

Celebrating international momentum at our first-ever VantaCon UK

Written by

Reviewed by

Accelerating security solutions for small businesses
‍

Tagore offers strategic services to small businesses.

A partnership that can scale
‍

Tagore prioritized finding a managed compliance partner with an established product, dedicated support team, and rapid release rate.

Standing out from competitors
‍

Tagore's partnership with Vanta enhances its strategic focus and deepens client value, creating differentiation in a competitive market.

We’re thrilled to host our first-ever VantaCon UK in London today, bringing together security leaders, AI experts and investors, and Vanta customers to discuss where the future of trust is headed. It’s especially exciting to be here, just 18 months after Vanta went global with the opening of our EMEA headquarters in Dublin and APAC headquarters in Sydney.

‍

Since then, we’ve seen incredible momentum in Europe and around the globe. Our international team has grown almost 300% year over year, and we’re continuing to expand our global footprint this year with the addition of a local presence in London.

‍

We’ve also made product investments to meet the compliance and security needs of our international customers, including opening our EU data centre, localising product capabilities, and launching support for Cyber Essentials and ISO 42001.

‍

Vanta success stories from the UK and beyond

From leading startups like incident.io to established enterprises like checkout.com, almost one in four Vanta customers is now headquartered outside the US. Vanta has also become the trusted choice for AI innovators, and we’ve more than doubled our base of AI customers this past year, including Robin AI and Stability AI — both headquartered here in London.

‍

As we continue to accelerate our international momentum, we’re excited to see how customers build and prove trust with Vanta. Here are a few of our favorite success stories.

‍

Audiostack saves hundred of hours while deepening trust with customers

Founded in 2019 in London, AudioStack is a generative AI company that is powering a new generation of audio creation. As part of the company’s growth, the company has been investing in meeting the needs of enterprise and scale-up organisations. Part of this investment is up-leveling the business’ security and compliance strategy to demonstrate trust amid concerns around the impact of AI.

‍

“Being an AI company requires us to build an even deeper level of trust because this technology is largely unknown. We need our customers to see us as a trusted partner to help them implement this,” says Peadar Coyle, CTO & Co-Founder of AudioStack.

‍

With Vanta, Peadar was able to quickly complete AudioStack’s SOC 2 Type I attestation just three short months after purchasing Vanta. He’s also able to automate access reviews.

‍

"We’ve probably saved around 80-100 hours across the board by using Vanta,” says Peadar. “Access Reviews used to take me 10 hours to do manually, and now it takes 30 minutes, and is much less error-prone.”

‍

Read AudioStack’s success story

‍

Sitoo uses Vanta to achieve compliance in over 20 countries

Sitoo is a cloud-native Point of Sale (POS) and Unified Commerce Platform that helps global fashion and lifestyle retailers create positive shopping experiences every time and everywhere. Because of the confidential customer data they process, they needed to assure customers that their data is secure and that they are compliant across the various frameworks and requirements in each country.

‍

Within seven months of signing on with Vanta, Sitoo achieved ISO 27001 certification. Not only that, but Vanta was able to address international challenges through Vanta Custom Frameworks.

‍

With Custom Frameworks, Sitoo has been able to build over 20 custom frameworks to manage and maintain their compliance requirements for each of their global markets efficiently. Furthermore, overlapping controls could be reused, helping Sitoo save additional time when it comes to creating new frameworks.

‍

“Creating custom frameworks has been a great value-add for us while working with multiple countries with various cash register laws. Vanta Custom Frameworks has helped us in organizing the compliance content,” says Magnus Sparf, CISO at Sitoo.

‍

Read Sitoo’s success story

‍

Pigment streamlines security reviews with Vanta

Pigment’s aim is to help companies make better decisions and adapt to change. Most businesses make critical strategic decisions based on inaccurate, incomplete, or siloed data. Pigment provides a single source of truth for their data, where all teams can easily collaborate in real-time and which is flexible enough to adjust to a complex, changing landscape.

‍

With Vanta, Pigment has kickstarted their security practice and achieved SOC 2 Type I and Type II in less than a year. They also use Vendor Risk Management to automate security reviews for over 100 vendors.

‍

“We have an ever-growing and ever-changing list of vendors; we need to stay on top of them while having finite resources. Vanta helps us prioritise our risk management rationally," says Quentin Berdugo, CISO at Pigment.

‍

“Vendor Risk Management helps me stay on top of all of our vendors and see at a glance which ones need an updated review. I’ve also started using the Discovery tab to check whether any shadow vendors or shadow IT are being used within our company.”

‍

Read Pigment's success story

‍

Diving into future of trust in an AI world

We look forward to seeing everyone today at VantaCon UK, featuring speakers from Google DeepMind, Financial Times, Proofpoint, Sequoia Capital, Checkout.com, incident.io, Evervault and more. To learn more about VantaCon UK, visit events.vanta.com/vantaconuk.

Access Review Stage	Content / Functionality
Across all stages	Easily create and save a new access review at a point in time View detailed audit evidence of historical access reviews
Setup access review procedures	Define a global access review procedure that stakeholders can follow, ensuring consistency and mitigation of human error in reviews Set your access review frequency (monthly, quarterly, etc.) and working period/deadlines
Consolidate account access data from systems	Integrate systems using dozens of pre-built integrations, or “connectors”. System account and HRIS data is pulled into Vanta. Upcoming integrations include Zoom and Intercom (account access), and Personio (HRIS) Upload access files from non-integrated systems View and select systems in-scope for the review
Review, approve, and deny user access	Select the appropriate systems reviewer and due date Get automatic notifications and reminders to systems reviewer of deadlines Automatic flagging of “risky” employee accounts that have been terminated or switched departments Intuitive interface to see all accounts with access, account accept/deny buttons, and notes section Track progress of individual systems access reviews and see accounts that need to be removed or have access modified Bulk sort, filter, and alter accounts based on account roles and employee title
Assign remediation tasks to system owners	Built-in remediation workflow for reviewers to request access changes and for admin to view and manage requests Optional task tracker integration to create tickets for any access changes and provide visibility to the status of tickets and remediation
Verify changes to access	Focused view of accounts flagged for access changes for easy tracking and management Automated evidence of remediation completion displayed for integrated systems Manual evidence of remediation can be uploaded for non-integrated systems
Report and re-evaluate results	Auditor can log into Vanta to see history of all completed access reviews Internals can see status of reviews in progress and also historical review detail