Vanta report: AI-powered trust management will help close security compliance gaps

Key Takeaways:

– Many businesses lack visibility and compliance in terms of security, putting their infrastructure and future at risk.
– A survey by Vanta found that 67% of businesses need help with their level of visibility and compliance, and only 4 in 10 rate their visibility as strong.
– Security compliance gaps can lead to slower sales and loss of clients, particularly in the areas of identity and access management.
– Security teams are often short-staffed and spend significant time on manual compliance workflows, reducing their ability to work efficiently.
– Automation can help improve security and compliance, saving valuable time for security teams.
– Vanta offers an AI-powered platform to centralize and automate security management, but transparency and ethical implementation are important.
– Vanta’s Trust Center is a new platform that allows customers to showcase their security and compliance posture, building trust and streamlining security reviews.
– Financial services, insurance, and banking firms use security compliance data to gain trust and protect valuable client relationships.
– The Trust Center reduces deal cycles by 30% and allows organizations to grow their business faster.
– Vanta focuses on protecting security compliance as a valuable asset, as it is essential for managing risks and gaining trust from clients.


VentureBeat presents: AI Unleashed – An exclusive executive event for enterprise data leaders. Network and learn with industry peers. Learn More

Most businesses are flying blind regarding security and compliance, putting their company’s infrastructure, customers and future at stake. 

Despite their best efforts, 67% say their level of visibility and compliance need help. Only 4 in 10 rate their visibility as strong. Widening security gaps leaves more attack surfaces unprotected, making the lack of security compliance a liability that slows down everything from sales cycles to attracting investors.  

These stark findings are from Vanta’s State of Trust Report 2023, released today. The report provides an in-depth analysis uncovering global trends in security, compliance and the future of trust. Vanta interviewed 2,500 security, risk and trust management professionals across five continents. 

Glaring security compliance gaps jeopardize future business

Most troubling is how glaring — and growing — security compliance gaps can lead to slower sales and loss of clients over time. These gaps are in the most vulnerable areas of a business, starting with how identities are managed and protected. That’s the goldmine that attackers are after because once they control identities, they control the company.

VB Event

AI Unleashed

An exclusive invite-only evening of insights and networking, designed for senior enterprise executives overseeing data stacks and strategies.


Learn More

“The data exposes fundamental gaps, leaving companies vulnerable,” said Jeremy Epling chief product officer overseeing Vanta’s engineering, product and design.

Notably, 39% called out identity and access management (IAM) as a particular blind spot.

A good reason to automate trust management with AI: protecting identities and how they are managed, which happens to be attackers’ favorite system to exfiltrate data from and take control of first.

Vanta’s survey results reflect a staggering number of compliance blind spots across organizations globally, compounded by short-staffed security teams forced to burn valuable time on manual security compliance workflows. 

The findings also reveal limited risk visibility and too heavy reliance on manual compliance processes, reducing security teams’ ability to do their work efficiently. Enterprises need new methods to automate and improve their security. Compounding the urgency is ever-evolving global regulation and the growing time-suck of complying with increasing standards.

Closing compliance gaps manually isn’t working 

Manually-based compliance tasks take valuable time away from security teams, who should focus on higher-priority and more urgent tasks to ensure the security posture of their organizations. 

Vanta’s survey found that security teams spend 7.5 hours per week on compliance. It’s understandable that many organizations are deprioritizing compliance efforts due to the substantial time required. But while this temporary relief is appealing, delayed adherence stifles market expansion.

“Static compliance processes slow companies down tremendously,” said Diego Susa, head of engineering at feature management software company Unleash (a Vanta customer). “Automation is essential with today’s threats.”

More than three-quarters (83%) of respondents say they are increasing their use of automation (or plan to). They report that automating tasks could save two hours per week — more than 130 hours annually.

Vanta told VentureBeat that its goal is to help every business centralize and automate security management by relying on the scale of their AI-powered platform. However, the company argues that transparency remains critical as AI risks persist. Over half of leaders worry AI may erode trust without sufficient explainability. Ethical implementation is mandatory, even when chasing efficiency gains.

“Organizations urgently need more efficient methods to improve security as risks multiply,” said Vanta CEO Christina Cacioppo. “Automation through trust management platforms can help overcome these hurdles.”

In a world short on trust, security compliance is king 

Vanta’s launched of its new Vanta Trust Center today shows they’re reading the market well. The platform serves as a single destination for customers to showcase their security and compliance posture, build trust and streamline security reviews.

Contracts, purchase orders, partnerships, company mergers, acquisitions and financing rounds depend on a proven security posture. Vanta designed and launched the center to support customers’ need to communicate in real-time, further strengthening their security postures.

VentureBeat has found that financial services, insurance and banking firms are using security compliance data during quarterly reviews with their biggest clients to gain a greater share of wallet. Security compliance data provides immediate legitimacy to a business and is used to protect the most lucrative client relationships financial services companies have. 

“Our goal is to build trust with our customers and partners by demonstrating our commitment to data protection measures,” said Adam Rebhuhn, security compliance manager at payments company Modern Treasury. “Vanta’s Trust Center lets us communicate our real-time security status transparently, reducing the need for lengthy questionnaires and differentiating us in a competitive market.” 

Vanta claims the Trust Center reduces deal cycles by 30%, enabling organizations of all sizes to grow their business faster. The Trust Center combines the unique strengths of Trustpage and Vanta, making it easier than ever for customers to unify their security program management and accelerate the security review process, all from within Vanta.

“With one in eight companies falling at the very first hurdle of proving trust to customers and prospects, organizations need a simple yet powerful solution to showcase their security posture,” said Epling. 

He continued: “Vanta Trust Center is made for this moment, coupling Trustpage Trust Centers’ superior workflows and customization features with Vanta’s real-time security monitoring and intuitive interface. Trust Center helps all companies — from scale-ups to leading enterprises — maintain customer trust with an advanced combination of functionality, customization, integrations and workflows to proactively demonstrate security posture and manage security reviews.”  

Protect security compliance like the asset it is 

Vanda’s successful track record of reading the market and customers need can be attributed to its focus on protecting security compliance like the asset that it is. 

Cybersecurity and compliance have never been more of a business imperative than they are today. They are essential to managing and containing risks while persuading the largest clients to stay with them and trust their security posture. 

VentureBeat’s mission is to be a digital town square for technical decision-makers to gain knowledge about transformative enterprise technology and transact. Discover our Briefings.

Source link

AI Eclipse TLDR:

A recent report by Vanta highlights the significant security and compliance gaps that many businesses are facing. The report, based on interviews with 2,500 security professionals, reveals that 67% of businesses feel their level of visibility and compliance needs improvement, with only 4 in 10 rating their visibility as strong. These gaps in security and compliance can lead to slower sales and loss of clients over time, particularly in vulnerable areas such as identity and access management (IAM). Attackers often target these areas to gain control of a company. The report also highlights the limited risk visibility and heavy reliance on manual compliance processes, which hinders the efficiency of security teams. To address these issues, Vanta recommends automating trust management with AI to protect identities and improve security. The company’s new Trust Center platform aims to help businesses showcase their security and compliance posture, build trust, and streamline security reviews. By automating tasks, organizations can save time and improve their security posture. However, it is important to ensure ethical implementation and maintain transparency in AI systems to avoid eroding trust. Overall, Vanta’s report emphasizes the urgent need for more efficient methods to improve security and comply with evolving regulations.