PLANS
The complete Trust Management Platform
Vanta for Startups
Everything you need to get compliant with SOC 2 and ISO 27001, fast–and build a security foundation for growth.
Core
Everything you need, and nothing you don't, for first-time compliance.
One compliance framework with easy-to-scope controls
Step-by-step policy builder
Vanta AI, including AI-powered test remediation
Pen test (SOC 2) or internal audit (ISO 27001)
Real-time chat with product and compliance experts
Plus
An automated compliance and trust foundation for ambitious startups.
Everything in Core, plus:
Questionnaire Automation (25 per year)
Popular
Vanta for GRC & Trust Professionals
Centralize, automate, and continuously monitor controls across your compliance, risk management, and customer trust programs, powered by Vanta AI.
Growth
Continuous and AI-powered compliance, risk management, and customer trust for growing teams.
One compliance framework with control customization and continuous controls monitoring
Automated evidence collection
Vanta AI, including AI-powered control, test, and risk mapping
Asset management
Personnel management
Risk management
Vendor inventory
Advanced Trust Center
Questionnaire Automation with 144 questionnaires per year
Report Center
Vanta API and Custom Tests
Role-based access controls and SSO
Popular
Scale
Fine-tuned customization and advanced automation for mature security and compliance environments.
Everything in Growth, plus:
Advanced Questionnaire Automation with 288 questionnaires per year
Report Center customization
Workspaces (3 included)
Custom role-based access controls
SCIM
Additional offerings to streamline security reviews
The fastest way to review your vendors’ security and respond to inbound security reviews, questionnaires, and RFPs.
Vendor Risk Management
Streamline and automate vendor risk management with AI-powered reviews, continuous monitoring and actionable insights.
Key features include:
Automatic vendor discovery
Inherent risk scoring that’s automated and customizable
Procurement request integration to streamline workflows
Automated evidence requests and follow ups
AI-powered security reviews
Tailored remediation plans
Customer Trust Management
Demonstrate your security posture with Trust Center and reduce time spent on inbound security reviews with Questionnaire Automation.
Key features include:
Continuous controls monitoring to demonstrate always-on compliance
Centralized knowledge base for your resources and questionnaire responses
AI-powered responses to security questionnaires
Support for spreadsheet, document, and form-based questionnaires
Automated document access and NDA collection to allow self-service
Popular
Compare features
Vanta’s platform provides guidance for those starting out and flexibility for more mature security and compliance teams.
Compliance
Core
Plus
Growth
Scale
One compliance framework
Pre-built policy template library
Pre-built controls library
AI suggestions to map existing tests and policies to relevant controls
Continuous monitoring of controls
Developer-friendly IaC test remediation instructions
Automated notifications for failed tests
Custom scope for resources, applications, devices, and employees
Custom SLAs
Bi-directional task tracker integration
Personnel policy acceptance tracking
Ability to bring your own auditor
Access to Vanta's auditor network
Executive reporting
Custom executive reporting
Custom tests
Custom fields for controls
Multiple policy approvers
Complete test set for several CIS Benchmarks
Compliance report
Team-based ownership on tests and documents
Personnel
Core
Plus
Growth
Scale
Identity provider group import
Identity provider-controlled scoping
Security awareness training
Personnel onboarding and offboarding
Custom SLAs for personnel tasks
Group-specific onboarding and offboarding
Custom tasks for onboarding and offboarding
Visibility for third-party tool access
Access reviews
Add-on
Personnel report
Assets
Core
Plus
Growth
Scale
Asset inventory of software, hardware, and custom resources
Vulnerability management
Vulnerability history
Vanta Agent for device encryption, lockscreen, and AV monitoring
Vulnerability report
Risk
Core
Plus
Growth
Scale
Risk register and risk assessment
Pre-built risk library, including common risk scenarios and suggested controls
Import for existing risk scenarios and treatment plans
Task assignment and tracking
Risk treatment plans
Risk assessment report
Vanta API risk endpoints
Custom risk scoring dimensions
Custom risk scoring groups
Add custom columns to risk register
Risk report
Vendors
Core
Plus
Growth
Scale
Vendor inventory
Basic vendor security reviews
Track vendor decisions
Automated tests connected to compliance frameworks
Vendors report
Add-on
Add-on
Automatic vendor discovery
Add-on
Add-on
Add-on
Add-on
Automated and customized inherent risk scoring
Add-on
Add-on
Add-on
Add-on
Procurement request integration
Add-on
Add-on
Add-on
Add-on
Vanta Exchange and automated evidence gathering
Add-on
Add-on
Add-on
Add-on
AI-powered security reviews
Add-on
Add-on
Add-on
Add-on
Create remediation plans tailored to residual risk
Add-on
Add-on
Add-on
Add-on
Integrated with Vanta’s risk register
Add-on
Add-on
Add-on
Add-on
VRM Rest API
Add-on
Add-on
Add-on
Add-on
Reporting
Add-on
Add-on
Add-on
Add-on
Questionnaire Automation
Core
Plus
Growth
Scale
Automated questionnaires
Optional add-on: 144 per year
25 per year included Optional upgrade to 144 per year
144 per year
288 per year
Bulk answering for spreadsheets
Add-on
Browser extension for portals and documents
Add-on
Centralized knowledge base
Add-on
Questionnaire collaboration: question assignment and commenting
Add-on
Questionnaire Automation report
Add-on
Add-on
Answer questionnaires based on tags (product, region, industry, etc.)
Add-on
Add-on
Add-on
Approval workflows
Add-on
Add-on
Add-on
Trust Center
Core
Plus
Growth
Scale
Continuous control and test monitoring
Unlimited customer views and user seats
Custom domain
Granular document access control
Analytics
AI-powered chatbot
Customization & branding
Ability for users to subscribe to updates
Trust Center report
Showcase & filter information with custom tags
Add-on
Add-on
Automated access request
Add-on
Add-on
Bi-directional CRM integrations (with Salesforce and Hubspot)
Add-on
Add-on
ROI reporting
Add-on
Add-on
DocuSign integration for NDA sync and collection
Add-on
Add-on
Platform
Core
Plus
Growth
Scale
[integrations_count] integrations
Custom integration development via API
SSO
Pre-built role-based access controls
Event logs
Vanta API
Program overview report
Customize report time frame
Filter reports
Share reports
Customize standard reports
Workspaces
Add-on
3 included
Custom role-based access controls
Add-on
SCIM
Add-on
Team-based ownership of items in Vanta
