June 11, 2024

New in Vanta | June 2024

Written by

Rachel Fossum

Product Marketing

Reviewed by

Accelerating security solutions for small businesses
‍

Tagore offers strategic services to small businesses.

A partnership that can scale
‍

Tagore prioritized finding a managed compliance partner with an established product, dedicated support team, and rapid release rate.

Standing out from competitors
‍

Tagore's partnership with Vanta enhances its strategic focus and deepens client value, creating differentiation in a competitive market.

Over the past month, the Vanta team launched new product capabilities, including:

‍

Automated e1 assessments for enhanced security in partnership with HITRUST
General availability of the ISO 9001 standard
Five new integrations
Improved Vanta UI to help locate and act on data
Trust Center updates: Hidden resources and the ability to link multiple Trust Centers
A new AI risk module in the Vanta training library

‍

Vanta partners with HITRUST to automate e1 assessments

We're thrilled to announce our partnership with HITRUST®, making Vanta the first automated compliance solution for the HITRUST e1 Assessment and a reseller of the HITRUST MyCSF platform.

‍

‍

This partnership addresses the increasing demand for verified security and compliance, especially with rising data breaches in healthcare. Vanta’s HITRUST e1 Certification offers third-party verified assurance of comprehensive security measures, simplifying compliance with 44 new controls, 72 automated tests, and extensive document templates.

‍

For more information or to get started, join our upcoming webinar on June 18th, or reach out to your account executive or customer success manager.

‍

ISO 9001 for comprehensive quality management now available

ISO 9001, a globally recognized standard for quality management, is now available within the Vanta platform. Integrating ISO 9001 into Vanta provides a seamless way for organizations to implement robust quality management processes, enhancing performance and customer satisfaction. With Vanta's comprehensive tools and automated workflows, achieving ISO 9001 certification is easier than ever, allowing you to focus on delivering exceptional value.

‍

‍

Learn more here.

‍

Automate even more of your compliance program with new integrations

Over the past month, we launched five new integrations: Strike, NordPass, AwareGO, Vansec, and Prancer. With NordPass and Vanta, you can now track access within their business password manager.

‍

Explore all of our integrations and let us know about additional ones you need.

‍

‍

Introducing Vanta’s new UI

We are excited to announce our new user interface (UI), which is designed to make it easier to find and act on data and information in Vanta.

‍

To give customers who joined prior to May 31, 2024, extra time to get used to the new UI, you can opt in or out of it from today until July 1. Look for the blue banner at the top of your Vanta UI and the link under “Settings.” Starting July 1, the new UI will be the only available interface.

‍

‍

For more information on the new UI, check out this Help Article and explore the new interface.

‍

Trust Center Updates: Resource visibility and linking multiple Trust Centers

We are excited to announce two new features for Trust Centers: “Shareable” visibility for sensitive documents and a Trust Center linking feature for companies with multiple companies.

Some documents are too sensitive to be public. That’s why we’ve introduced a new visibility option called "Shareable" visibility for Trust Centers. This feature allows you to hide documents from your public Trust Center while still sharing them externally. Set this visibility in the Knowledge Base that powers the Questionnaire Automation and Trust Center products, giving you more control over your shared resources.

‍

Check out this Help Article for more information about visibility options for Trust Center.

‍

‍

For companies with multiple Trust Centers, we've added a feature that links all your Trust Centers together. Previously, buyers had to find each Trust Center URL independently, making it difficult to access comprehensive security information. Our new Trust Center picker consolidates access within a single interface, enhancing the user experience. Prospects and buyers can easily navigate between Trust Centers using a dropdown menu in the header, providing a seamless experience.

‍

To learn how to link your Trust Centers, read this Help Article.

‍

‍

These updates ensure you can manage sensitive documents securely and provide an improved navigation experience for your prospects and buyers.

‍

New AI Risk module in Vanta's training library

We've expanding our security and privacy training library with a new AI Risk Training module. This module is designed to help customers meet NIST AI RMF and ISO 42001 requirements. It provides an overview of AI terms, emerging laws, regulations, and key principles.

‍

‍

Customers can preview the content from the Checklists page on the Vanta platform. This module, available exclusively within Vanta, makes it easier for customers to implement supported AI governance frameworks.

Read more about Vanta’s Vanta's approach to AI risk and secure code training.

Access Review Stage	Content / Functionality
Across all stages	Easily create and save a new access review at a point in time View detailed audit evidence of historical access reviews
Setup access review procedures	Define a global access review procedure that stakeholders can follow, ensuring consistency and mitigation of human error in reviews Set your access review frequency (monthly, quarterly, etc.) and working period/deadlines
Consolidate account access data from systems	Integrate systems using dozens of pre-built integrations, or “connectors”. System account and HRIS data is pulled into Vanta. Upcoming integrations include Zoom and Intercom (account access), and Personio (HRIS) Upload access files from non-integrated systems View and select systems in-scope for the review
Review, approve, and deny user access	Select the appropriate systems reviewer and due date Get automatic notifications and reminders to systems reviewer of deadlines Automatic flagging of “risky” employee accounts that have been terminated or switched departments Intuitive interface to see all accounts with access, account accept/deny buttons, and notes section Track progress of individual systems access reviews and see accounts that need to be removed or have access modified Bulk sort, filter, and alter accounts based on account roles and employee title
Assign remediation tasks to system owners	Built-in remediation workflow for reviewers to request access changes and for admin to view and manage requests Optional task tracker integration to create tickets for any access changes and provide visibility to the status of tickets and remediation
Verify changes to access	Focused view of accounts flagged for access changes for easy tracking and management Automated evidence of remediation completion displayed for integrated systems Manual evidence of remediation can be uploaded for non-integrated systems
Report and re-evaluate results	Auditor can log into Vanta to see history of all completed access reviews Internals can see status of reviews in progress and also historical review detail