With Vanta, users can create custom frameworks and leverage Vanta's library of tests and evidence for your organization's security program.
Creating a Custom Framework
- From the left-hand navigation panel, select Frameworks
- The Frameworks page will showcase current progress for frameworks your organization is adhering to, and provide additional information for Vanta's available frameworks.
- From the Frameworks page, select + Add framework.
- Complete the information from the pop-up modal
- When uploading files, keep the following information in mind:
- The column names must be in the format of Section ID, Section Name, Section Description, Parent Section ID, and Control IDs.
The column values are validated against the following:
- Section ID: must be non-empty and unique
- Section Name: must be non-empty and unique.
- Section Description: no restrictions
- Parent Section ID: Must point to another section ID
- Control IDs: The IDs of the custom controls to list under this section
Note: Capitalization differences are allowed. No extra white space is allowed. All columns are required, but Section Description, Parent Section ID, and Control IDs can be empty. Controls can be mapped to sections later on manually. In error messages, row and column numbers count starting at 1.
- Once the information has been completed, select Next
- From here, you will be asked to preview the framework.
- Select Import
- The new custom framework will now be a tile available for viewing, editing and monitoring from the Frameworks page
Adding Additional Custom Controls
- From the Frameworks page, find the custom frame you would like to edit and select View Details
- Select +Add control
- Choose from the list of available custom controls the ones which you would like to add to your custom framework
- For every control, you must select the control and then select add.
Removing a Control from a Custom Framework
- From the Framework, select View "x" Controls
- Select the three dots, and choose delete