Audit Readiness
Prepare your team and documentation for audits with Vanta’s built-in tools and guidance.
Restrict Auditor Permissions in Vanta
Compliance Standards Library
Reference control mappings and requirements across supported security frameworks.
Vanta and HITRUST MyCSF API Integration
SOX IT General Controls (ITGC)
Microsoft Supplier Security & Privacy Assurance Program (SSPA)
AWS Foundational Technical Review (FTR)
Minimum Viable Security Product (MVSP)
NIST 800-171
NIST CSF (Cybersecurity Framework)
ISO 27701
ISO 27017
ISO 27018
ISO 27001
Understanding an ISO Internal Audit
ISO 27001:2022 Frequently Asked Questions
Open Finance Data Security Standard (OFDSS)
US Data Privacy
NIST 800-53
PCI Requirement Changes
PCI 4.0 Frequently Asked Questions
UK Cyber Essentials & Australian Essential 8
ISO 42001 AI Management System (AIMS)
Integrating Climate Change Considerations into your ISMS following the ISO 27001 2024 Amendment
HITRUST CSF
Understanding the Differences Between NIST CSF 1.1 and 2.0
Framework Control Sets (CIS: Center of Internet Security)
Migrating from FedRAMP v4 to v5
FedRAMP r5 Control Sets
FedRAMP
How to Appoint an Article 27 Representative for GDPR
Framework Control Sets (SOC 2 Trust Services Criteria)
Checklists
Step-by-step guides and task lists to help you stay organized and complete key compliance workflows efficiently.
How will your Auditor use Vanta?
Audit Readiness Checklist
Vanta Onboarding Checklists
Security and Compliance: Industry Topics
Insights and guidance on broader industry standards, regulations, and best practices.
ISO/IEC 27001:2022 ISMS Management Review Checklist
How to Approach Your Incident Response Plan in Vanta
Conducting Annual Performance Reviews
What Should be in Scope for Vendor Reviews?
RTO (Recovery Time Objective) and RPO (Recovery Point Objective)
Gap Assessments
Cyber Insurance
Frequently Asked Questions: SOC 2 Bridge Letter
Security Posture Best Practices
Follow expert recommendations to maintain and improve your security and compliance stance.
SOC 2: Year Two Security Tasks
Device Monitoring in Vanta
Background Checks in Vanta
Frequently Asked Questions: Audits
Migrate from ISO 27001:2013 to ISO 27001:2022
Missing information on Access Page for HubSpot
Vanta Guide to SOC 2: Type I & Type II
Using Groups
Getting Started with ISMS 11: Statement of Applicability
Turning on Microsoft Defender Antivirus
Encrypting Your Computer Hard Drives
Understanding Policies
Security Awareness Trainings
Configure Screen Lock on MacOS Devices
Configure Screen Lock on Windows Devices
Whistleblower Anonymous Fraud Reporting in Information Security
Audits
Manage your audit timeline, share evidence with auditors, and track progress toward certification directly within Vanta.
Alternative Compliance Paths
Audit Evidence
Adding and Managing Auditors in Vanta
Where to see observation window for your audit
Managing Auditor Views (Beta)
Audit Preparation: Pre-Observation Touchpoint
Audit Preparation: Initial Touchpoint