Vanta is a trust management and compliance-automation platform. It connects to a company's cloud and SaaS systems to automatically collect evidence, continuously test security controls, and prepare audit-ready packages for frameworks like SOC 2, ISO 27001, HIPAA, and GDPR. It also offers vendor risk management, trust centers, and AI agents that review evidence and answer security questionnaires.

Who is the CEO of Vanta?

Christina Cacioppo is the co-founder and CEO of Vanta. She started the company in 2018 after experiencing the painful, manual SOC 2 process while leading Dropbox Paper, and previously worked as an investor at Union Square Ventures. She co-founded Vanta with Erik Goldman, who has since left the company.

How much has Vanta raised and what is it worth?

Vanta has raised about $504 million in total funding since 2018. Its most recent round was a $150 million Series D in July 2025 led by Wellington Management, which valued the company at $4.15 billion — nearly double its $2.45 billion valuation from a year earlier. The company remains privately held and has not announced IPO plans.

How big is Vanta in revenue and customers?

As of April 2026, Vanta reported roughly $300 million in annual recurring revenue, up about 69% year-over-year, and more than 16,000 customers. It employs around 1,000 people and counts about 60% of the Forbes AI 50 — including companies like Snowflake, Samsara, Ramp, and Cursor — among its customers.

Who are Vanta's main competitors?

Vanta's closest competitor is Drata, with other rivals including Secureframe, Sprinto, Thoropass, and Hyperproof in compliance automation, plus broader GRC and trust platforms like OneTrust. Competition centers on framework coverage, depth of continuous monitoring, AI capabilities, and pricing — especially for smaller teams where lower-cost alternatives compete on value.

Security & Compliance Automation (GRC)

What is Vanta?

Trust management platform that automates security compliance (SOC 2, ISO 27001, HIPAA) and continuous monitoring.

Category: Security & Compliance Automation (GRC)
Headquarters: San Francisco, California
Founded: 2018
Employees: ~1,000
Total funding: ~$504 million
Valuation: $4.15 billion (Jul 2025)

What is Vanta?

Vanta is a San Francisco-based trust management platform that automates security and compliance work — collecting evidence, mapping it to controls, and continuously monitoring an organization's systems so companies can achieve and maintain certifications like SOC 2, ISO 27001, HIPAA, and GDPR. Founded in 2018, it has become the category leader in compliance automation, reporting roughly $300 million in annual recurring revenue and more than 16,000 customers as of April 2026.

Vanta replaces the slow, manual, consultant-heavy process of getting audit-ready with software that connects to a company's cloud infrastructure and SaaS tools (AWS, Azure, GCP, Okta, GitHub, and 400+ integrations) to automatically pull evidence, run continuous tests against controls, flag gaps, and prepare audit packages. As of April 2026 the company reported approximately $300 million in ARR — up roughly 69% year-over-year — having grown from $10M to $100M in two years, then to $200M in another 15 months, and to $300M just nine months after that. It serves more than 16,000 customers including Snowflake, Samsara, Ramp, Cursor, Duolingo, and Mistral AI, and counts about 60% of the Forbes AI 50 (whose members carry a combined market cap of roughly $560 billion) as customers.

The platform now spans 35+ compliance frameworks and layers in an 'agentic' AI capability (Vanta AI) that reviews evidence, drafts security-questionnaire answers, cross-maps controls across frameworks, and increasingly monitors 'shadow AI' usage inside customer environments — a fast-emerging risk Vanta says makes large-language-model tools 52% more likely to be flagged high-risk than traditional SaaS. Backed by Sequoia, Craft Ventures, CrowdStrike, Y Combinator, J.P.

Morgan, Goldman Sachs, and Wellington Management, Vanta was valued at $4.15 billion in its July 2025 Series D and employs roughly 1,000 people worldwide. Its core pitch is that automation cuts the cost and time of compliance to a fraction of traditional audit-and-consultant approaches, positioning Vanta as the system of record for proving security and trust.

Sources:Vanta — Crosses $300M in ARR (Apr 2026)Fortune — Vanta hits $300M ARR (Apr 2026)

What does Vanta offer?

Vanta sells a trust-management platform spanning automated compliance, continuous monitoring, risk and vendor management, trust centers, and AI-powered agents.

Compliance Automation· Core
SOC 2· Framework
ISO 27001· Framework
HIPAA· Framework
GDPR· Framework
PCI DSS· Framework
Continuous Monitoring· Core
Vendor / Third-Party Risk Management· Risk
Risk Management· Risk
Trust Center· Trust
Access Reviews· Security
Questionnaire Automation· Sales Enablement
Vanta AI / AI Agents· AI
AI Governance / Shadow AI Monitoring· AI
400+ Integrations· Platform

Sources:Vanta — Product Vanta — Crosses $300M in ARR (Apr 2026)

How does Vanta make money?

Vanta is a B2B SaaS company that sells annual subscriptions to its compliance-automation platform, priced primarily by company size and the number of frameworks and add-on modules a customer needs, with audit fees handled separately by partner auditors.

Revenue comes almost entirely from recurring subscriptions tiered by headcount band (e.g., 1–50, 51–200, 201–500, 500+) and product edition rather than pure per-seat licensing. Pricing is quote-based and not publicly listed, but market research consistently puts the entry 'Core' plan at roughly $10,000/year for a single framework, a 'Plus' tier around $15,000–$30,000, 'Growth' starting near $30,000, 'Scale' reaching up to ~$80,000, and 'Enterprise' above $80,000 with custom pricing; each additional compliance framework typically adds about $5,000/year. Importantly, Vanta's subscription does not include the third-party audit itself — independent auditors in Vanta's partner network charge a separate ~$10,000–$40,000+, while Vanta's value proposition is that its automation reduces total compliance cost to a fraction of fully manual, consultant-led approaches.

Growth is driven by land-and-expand dynamics: customers typically start with SOC 2, then add ISO 27001, HIPAA, vendor risk management, trust centers, and AI-governance modules, pushing implied ARR per customer to roughly $19,000 by April 2026 (up from about $17,000 in mid-2025). The model compounds through net revenue retention — which Vanta says has stayed above 100% and risen every quarter for two years — alongside a fast-growing mid-market and enterprise motion and a tailwind from 'shadow AI' adoption that is creating new demand for AI risk monitoring, all of which helped Vanta accelerate its growth rate for four consecutive quarters into 2026.

Sources:Vanta Pricing 2026 — SoftwareReviews/SmartSuite Sacra — Vanta revenue, valuation & funding

Who leads Vanta?

Vanta is led by co-founder and CEO Christina Cacioppo, supported by a C-suite spanning product, finance, security, and marketing. The company refreshed its finance leadership in 2026, naming ex-Calendly CFO/COO John McCauley as Chief Financial Officer.

Christina CacioppoCo-Founder & CEO2018–presentFormer Dropbox (led Dropbox Paper) and Union Square Ventures investor; built Vanta from a spreadsheet prototype into a $4B+ category leader.
Erik GoldmanCo-Founder (former)2018–~2020Ex-Dropbox software engineer who co-founded Vanta and built its early product before departing the company.
John McCauleyChief Financial Officer2026–presentJoined June 2026 from Calendly, where he was CFO and then COO; succeeds David Eckstein, who left in early 2026.
Jeremy EplingChief Product Officer2023–presentOversees product, engineering, and design; previously VP of Product at GitHub (Actions, Codespaces, npm, Packages).
Jadee HansonChief Information Security Officer2024–presentEnterprise security veteran (formerly Code42) who owns Vanta's own security and GRC program and informs product direction.
Scott HoldenChief Marketing Officer2025–presentJoined July 2025 from Brex; 20 years of SaaS marketing leadership at Brex, ThoughtSpot, and Salesforce.

Sources:BusinessWire — John McCauley joins Vanta as CFO (Jun 2026)BusinessWire — Scott Holden joins Vanta as CMO (Jul 2025)

Who are Vanta's decision-makers?

How do you contact Vanta's leadership?

Vanta's email pattern is first.last@vanta.com (used by roughly 87% of employee addresses per email-intelligence providers; the company also uses first-name and first-name-plus-last-initial variants). The personal addresses below follow that verified format but are not individually published or confirmed, so treat them as best-guess pattern matches rather than verified inboxes. For official outreach, use press@vanta.com or support@vanta.com.

Email formatfirst.last@vanta.com

Christina CacioppoCo-Founder & CEOchristina.cacioppo@vanta.com
John McCauleyChief Financial Officerjohn.mccauley@vanta.com
Jeremy EplingChief Product Officerjeremy.epling@vanta.com
Vanta Press / MediaPress & Media Relationspress@vanta.com

Sources:RocketReach — Vanta email format Vanta — Contact / Company

How much funding has Vanta raised?

Vanta has raised about $504 million in total since 2018 and was last valued at $4.15 billion in its July 2025 Series D led by Wellington Management — nearly double its valuation from a year earlier. The company remains privately held.

Vanta started lean, raising a roughly $3 million seed in 2018 after going through Y Combinator and notably operating profitably in its early years. In 2021 it raised a $50 million Series A led by Sequoia Capital at an approximately $500 million valuation. In June 2022 it raised a $110 million Series B led by Craft Ventures (with Sequoia, Y Combinator, and others) at a $1.6 billion valuation, vaulting it to unicorn status, then added a roughly $40 million Series B extension in October 2022 that brought in strategic investor CrowdStrike Ventures at the same $1.6 billion mark.

In July 2024 it raised a $150 million Series C led again by Sequoia Capital at a $2.45 billion valuation, joined by Growth Equity at Goldman Sachs Alternatives, J.P. Morgan, Atlassian Ventures, Craft Ventures, CrowdStrike Ventures, HubSpot Ventures, Workday Ventures, and Y Combinator. Most recently, on July 23, 2025 Vanta closed a $150 million Series D led by new investor Wellington Management at a $4.15 billion valuation — a more than 69% jump in twelve months — bringing cumulative funding to approximately $504 million.

Its investor base spans Sequoia, Craft Ventures, Y Combinator, CrowdStrike, J.P. Morgan, Goldman Sachs, and Wellington, and while it has fueled IPO speculation, Vanta has made no public commitment to going public as of mid-2026.

Sources:BusinessWire — Vanta raises $150M Series D (Jul 2025)CNBC — Vanta valued at $4 billion (Jul 2025)

How much has Vanta raised?

How did Vanta get here?

From a 2018 Y Combinator startup automating SOC 2 to a $4B+ trust-management leader by 2025–2026.

2018Founded in Y CombinatorChristina Cacioppo and Erik Goldman start Vanta to automate the painful SOC 2 compliance process; raise a ~$3M seed.
2021$50M Series ASequoia Capital leads at a ~$500M valuation as compliance automation takes off.
Jun 2022$110M Series B at $1.6B (unicorn)Craft Ventures leads; a ~$40M extension in October adds CrowdStrike Ventures at the same valuation.
Jul 2024$150M Series C at $2.45BSequoia leads again with Goldman Sachs and J.P. Morgan; ARR around $100M and AI features expand.
Jul 2025$150M Series D at $4.15B + acquires RiskeyWellington Management leads; days earlier Vanta buys Israeli AI risk-monitoring startup Riskey to power continuous vendor risk.
Apr 2026Crosses $300M ARR16,000+ customers and ~1,000 employees as 'shadow AI' demand accelerates growth ~69% year-over-year.

Sources:Vanta — Acquires Riskey (Jul 2025)Vanta — Crosses $300M in ARR (Apr 2026)

Who are Vanta's competitors?

Vanta competes mainly with other compliance-automation and GRC platforms, led by Drata, plus Secureframe, Sprinto, Thoropass, and Hyperproof.

DrataVanta's closest head-to-head rival; trust-management platform known for polished UX and deep continuous monitoring.
SecureframeCompliance automation across SOC 2, ISO 27001, HIPAA, PCI, and GDPR, often pitched on price/value for smaller teams.
SprintoCompliance automation focused on cloud-native startups with entity-level, active-controls monitoring.
ThoropassCombines compliance software with in-house licensed audit delivery, supporting 30+ frameworks under one roof.
HyperproofGRC and continuous-compliance platform aimed at larger enterprises managing many frameworks at scale.
OneTrustBroad trust/privacy/GRC suite competing on the governance and enterprise risk end of Vanta's market.