Roles Page
Roles are set permissions related to managing your security and compliance program that can be assigned to users within the Vanta platform. They ensure that users have access to only what they need to complete their work.
Roles within Vanta
Employee (Default role) | The default role assigned to users brought in manually or through an IDP. This role can only complete their assigned onboarding tasks, and has no other access or insight into the Vanta platform. |
Collaborator | Access to items where they are assigned as an Owner |
Admin | Full access to everything in Vanta |
Editor | Full access to everything in Vanta except for sensitive employee data and API tokens |
Auditor | View-only access to everything except for evidence management. Auditors can accept or reject evidence. |
View-only Admin | View-only access to everything in Vanta. |
Trust Admin |
|
Trust Collaborator (previously Sales Admin) |
|
Custom Roles | Custom Roles can be created to assign specific permissions to a role. |
For a more in-depth look into the functionality of role within Vanta, view our Users and Permissions Guide.
User Permissions Page
The User permissions page in Vanta allows you to assign or edit a user's role within the platform. The role assigned dictates the user's permissions within the platform.
Assign Roles
From the top right-hand corner, select Settings (gear icon)
Choose the User Permissions Tab
Select the Your Organization Tab
To assign a user a role within Vanta, click the + Add User button (if you don't see these options, you do not have Admin permissions within Vanta)
You can choose the appropriate person from user profiles created by the connected identity provider, or manually invite them using a company email address.
Select the role you want to assign to this user.
If you need to edit a user's role, you can search for their name and adjust the role using the drop-down menu.
To revoke a user's permissions, click the three-dot menu button and select Revoke Role.
This will downgrade the user to an Employee user. Employee users appear on the People page.
Assigning Access to Objects
Once users have been given the appropriate roles, you can start assigning ownership of specific objects within Vanta.
Only Owner-level Access can be set.
Please note: A user must have Collaborator or higher permissions to be assigned to a specific object.
You can manage access through the Manage Access modal on any object’s detail page (look for a “Manage Access”) where object-level roles are enabled. From there:
View current owner
Change owner—If you have sufficient permissions (e.g., Admin or existing Owner), you can unassign the current owner or give another user the Owner role on the object.
Owners will also be visible and editable from the owner column (Tests, Risks, Access).
Please note: Currently, the manage access modal does not appear on Risks, Risk Tasks, and Systems within Access Reviews.