Continuous Compliance
Learn to continuously manage your compliance through Vanta
Security and Compliance: Industry Topics
-
What Should be in Scope for Vendor Reviews?
When conducting vendor reviews for SOC 2 and ISO 27001, you should focus on vendors that ar...
-
RTO (Recovery Time Objective) and RPO (Recovery Point Objective)
What is RTO? RTO (Recovery Time Objective): RTO is the maximum acceptable amount of time th...
-
Security Frameworks
Security Frameworks Security frameworks are structured guidelines, best practices, and sta...
-
Gap Assessments
What are Gap Assessments? A gap assessment identifies the differences, or "gaps," between ...
-
Cyber Insurance
Cyber insurance is a type of insurance that helps protect businesses and individuals from t...
-
Frequently Asked Questions: SOC 2 Bridge Letter
What is a bridge letter? A SOC 2 bridge letter, or gap letter, can be used to vouch for yo...
Access
-
How to Initiate an Access Review for Tools not Integrated with Vanta
For more information about plan types and capabilities, see Vanta's pricing page Access re...
-
Access Reviews: System Reviewer Role
For more information about plan types and capabilities, see Vanta's pricing page With Van...
Vulnerabilities
-
Automatically Reopen Vulnerabilities when a Fix is Available
Regardless of fixability status, Vanta will pull in all vulnerabilities detected from a vul...
-
Vulnerability Status: Managing Scenarios and Errors
Scenario What is Visible Suggested next steps A scanned asset with no vulnerabil...
-
Deactivate Vulnerabilities until a Specified Date
Vanta now allows to ignore or pause vulnerabilities until a specified date. This is helpful...
-
Deactivate Monitoring for a Vulnerability
Navigate to the Vulnerabilities Page in Vanta From the Findings by Vulnerability tab or Vu...
Audits
-
Adding and Managing Auditors on your Account
Adding an Auditor to Your Domain From the top right-hand corner, select Settings (gear ico...
-
Where to see observation window for your audit
Administrators can view their observation period by navigating to the Audits page, located ...
Inventory
-
Bulk Upload Custom Inventory Items
Inventory items that exist outside of the services you have integrated in Vanta can be manu...
-
Assigning Group Ownership to Inventory Items
With custom ownership functionality, Vanta users can enter any value as an inventory owner ...
-
Tracking Inventory in Vanta
Creating a complete inventory list is a significant first step to a successful compliance p...
Vendors
-
Auto-Requesting Evidence from Vendors
For more information about plan types and capabilities, see Vanta's pricing page Vanta now...
-
Vendor Risk Management Settings
For more information about plan types and capabilities, see Vanta's pricing page Security ...
-
Vanta & ZIP Integration: Vendor Risk Management
For more information about plan types and capabilities, see Vanta's pricing page This inte...
-
FAQs: Vendors
How do I think about this section of the product? The Vendors page is where you will revie...
-
Collecting Vendor Documents with a Private Link
When performing a security review on a vendor, you may need specific documentation to compl...
-
Vendor Risk Management
For more information about plan types and capabilities, see Vanta's pricing page With the ...
Risk Management
-
FAQs: Risk Assessments
A risk assessment is a process that companies use to find and understand possible problems ...
-
Risk Assessment Report
For more information about plan types and capabilities, see Vanta's pricing page With Vant...
-
Risk Management Customization
For more information about plan types and capabilities, see Vanta's pricing page Risk Man...
-
Creating a Risk Snapshot
Note: Only available for users with Admin access Create a Snapshot Snapshot records your r...
-
Update Risk Assessment to Risk Management
Vanta has created a new tool within the platform to help your team better manage risk withi...
Controls
-
Delete all Custom Controls
Deleting all Custom Controls From the left-hand navigation panel, select Controls From ...
-
Custom Notes for Controls
With Vanta's notes for controls feature, users can add notes to controls to allow for bette...
-
Creating Custom Controls
Creating Custom Controls From the Controls Page, select +Add Control Select + Add Custom...
Policies
-
Policy Writing Resources
Creating effective policies is essential for ensuring consistency, clarity, and compliance ...
-
Creating Policies with Policy Builder
Vanta’s Policy Builder is a policy creation and editing tool that helps you quickly create ...
-
Policy Templates Updated: November 2023
Vanta released updates to a number of Policy Templates in November 2023: 01-ISMS Scope of ...
-
Commenting in the Policy Editor
Vanta now supports commenting on any policy document using our in-product Policy editor! Us...
-
V2 Policy Migration
Vanta is excited to offer customers our updated policy stack. This comprehensive new pack i...
-
Adding Custom Notes to Policies
Adding Custom Notes to Policies From the left-hand navigation panel, select Policies Op...
Documents
-
FAQs: Navigating the Latest Documents Updates
What has changed? Previously: You added files one at a time to a document. As soon as the ...
-
Audits Page
The Audits Page in Vanta is your one-stop location for all things related to your complianc...
-
Marking Custom Documents as Sensitive
In Vanta, you can mark custom documents as sensitive to restrict access to owners, Admins, ...
-
What is a Security Questionnaire?
A security questionnaire is a tool used to assess an organization's security posture and pr...
-
Adding Custom Evidence
Add a Custom Document Click Add Document in the top right-hand corner of the Documents pag...
-
Recurring Document Updates
Leverage Vanta's document recurrence functionality to keep all of your documents up to date...
Tests
-
Updated Tests Functionality
Vanta has recently updated the Tests page to improve functionality and streamline access to...
-
CIS Foundation Benchmarks Available in Vanta
For more information about plan types and capabilities, see Vanta's pricing page CIS Bench...
-
Tracking Incident Management and Resolution Tickets in Vanta: Jira
Vanta can track tickets you use during and after incidents to help provide evidence of your...
-
Remediating Cloud Tests with Terraform
Vanta provides instructions to help customers remediate tests. When remediating Cloud tests...
-
Vanta & Vouch Cyber Insurance
Vanta now offers Vouch cyber insurance within our platform. From Vanta, you can apply for i...
-
Creating Custom Tests
For more information about plan types and capabilities, see Vanta's pricing page With Cust...
Reports
-
Vanta Reports
For more information about plan types and capabilities, see Vanta's pricing page Vanta off...
Vanta Trust Center
-
Public Trust Center Docs in VRM
The Public Trust Center Docs feature is available in the VRM Pro plan, designed to simplify...
-
Connecting Trust Center & HubSpot
For more information about plan types and capabilities, see Vanta's pricing page Trust Ce...
-
Collaborating on Questionnaires
Vanta Questionnaire Automation provides various tools for your cross-functional teams to co...
-
Trust Center NDA: DocuSign
For more information about plan types and capabilities, see Vanta's pricing page With Van...
-
Questionnaire Automation for Multi-product Organizations
For more information about plan types and capabilities, see Vanta's pricing page As an orga...
-
Adding Vanta Trust Center to your G2 Profile
Trust Center users can now connect their Trust Center to their G2 profile to share security...