Scott Holden Joins Vanta as Chief Marketing Officer
Holden brings 20 years of marketing expertise in product-led growth and enterprise scale to Vanta.
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
Bret Taylor of Sierra: How to sell to Enterprise Companies as an AI Startup | Frameworks for Growth
In this episode of Frameworks for Growth, Vanta CEO Christina Cacioppo sits down with Bret Taylor, Co-founder and CEO of Sierra, to discuss the evolution of technology, from the early days of cloud at Salesforce, to enterprise-ready AI companies—plus cultural lessons from companies like Google and Facebook, and what it takes to launch successful AI startups today. Bret shares insights from decades at the forefront of tech innovation—including his time as co-CEO of Salesforce and CTO of Facebook—offering advice for founders navigating today’s market and tomorrow’s challenges.
Why measuring your security maturity matters (And how we do it at Vanta)
Security maturity means different things to different organizations, but the one constant is that it needs to be structured. By consistently assessing where you stand and where you need to go against a solid framework, you're able to take what seems like an impossible goal and break it down into achievable and actionable checkpoints that actually move the needle. The key to making this work isn't just having the right framework but making sure the right stakeholders are involved in the process.
HIPAA violations in 2025: Staff mistakes and vendor blind spots
HIPAA violations don’t always come from malicious attacks or headline-making data breaches. More often, they stem from everyday mistakes, like misdirected emails and vendors that aren’t as secure as they seem. Even small slip-ups can expose protected health information (PHI) and invite major consequences. In today’s complex compliance landscape, those mistakes are alarmingly common.
Streamline audit workflows with the Vanta + Fieldguide integration
Audits are hard enough. Chasing down duplicate evidence across systems shouldn’t be part of the process. We’re excited to announce we’ve joined Fieldguide’s open ecosystem, the industry-leading AI-powered platform built for top global CPA firms and enterprise-focused audit providers. This integration is designed to reduce friction, eliminate redundant work, and help both companies and auditors complete reviews more efficiently with streamlined communications.
Essential Eight framework: A comprehensive guide to compliance
In 2010, the Australian Signals Directorate (ASD) developed a set of prioritised threat mitigation strategies to provide cybersecurity guidance to government agencies and organisations. Over time, eight of those strategies proved to be the most effective and were formalised into the Essential Eight (E8) framework, officially published in 2017.
Vanta Unveils Trust Maturity Report Benchmarking Security Programs Across 11,000+ Organizations
New data shows AI adoption, risk assessments, and leadership alignment drive security maturity, but budget challenges persist at every stage.
A 7-step Essential Eight compliance checklist
Implementing Essential Eight (E8) is mandatory for in-scope organisations, such as government agencies, critical infrastructure providers, and other non-corporate Commonwealth entities (NCEs). Even if your organisation isn’t scoped by the framework, aligning with E8 is recommended because it outlines the baseline requirements for defending against cyber threats.
Introducing Vanta Trust Maturity Report: Benchmark your security maturity against 11,000+ programs
Security is no longer just part of running a business—it’s the backbone of building customer trust. But there’s no one-size-fits-all approach to building a reliable and scalable security program. Every organization—regardless of size, industry, or region—faces unique challenges that shape its security needs and investments. Customers often tell us they want more tools to benchmark their programs against industry peers and best practices.
Vanta is a Leader in the IDC MarketScape: Worldwide Governance, Risk, and Compliance Software Vendor Assessment, 2025
Vanta's AI-powered trust management platform centralizes key program areas, reduces manual efforts with automation, and continuously monitors your GRC program to drive measurable business impact. Recently, Vanta was named a Leader in the IDC MarketScape: Worldwide Governance, Risk, and Compliance Software Vendor Assessment 2025 (Doc # US53615325, June 2025). The IDC MarketScape assesses the competitive landscape, analyzing qualitative and quantitative criteria to evaluate GRC vendors.