Vanta Surges Past $300M ARR Amid Rising Shadow AI Risks in Corporate America

Vanta, a San Francisco-based security and compliance firm, has achieved a remarkable milestone by surpassing $300 million in annual recurring revenue (ARR), tripling its revenue in just two years. This surge is driven by the growing challenge companies face in managing unauthorized AI tools adopted by employees without security oversight.

As shadow AI tools like ChatGPT, Claude, and Cursor proliferate across workplaces, Vanta’s continuous monitoring solutions have become indispensable. The company now supports over 16,000 customers, including major tech players, while navigating a rapidly evolving risk landscape that demands innovative security strategies.

Vanta’s Meteoric Growth Amid a New Security Challenge

Since its founding in 2018 by CEO Christina Cacioppo and engineer Erik Goldman, Vanta has grown into a powerhouse in the governance, risk, and compliance sector. With a current valuation of $4.15 billion and backing from top-tier investors like Sequoia and Goldman Sachs, the company’s ARR has tripled in two years, fueled by a 60% year-over-year customer growth rate.

The Shadow AI Phenomenon Disrupting Corporate Security

Vanta’s own research reveals that 70% of companies now grapple with shadow AI—employee-adopted AI tools that bypass security reviews. Large language models (LLMs) are flagged as critical risks 52% more often than traditional SaaS applications. Alarmingly, employees reinstall banned AI tools like ChatGPT, Claude, and Cursor up to 1,000 times annually, creating a persistent security headache.

“There’s this push-pull going on at an actually really broad scale,” said Christina Cacioppo. “Executives demand AI transformation while security teams scramble to assess what’s already on the network.”—Christina Cacioppo, CEO of Vanta

Why Continuous Monitoring Is the Key to Managing AI Risks

Cacioppo emphasizes that continuous monitoring is essential to balancing innovation with security. As AI tools rapidly evolve and expand, organizations must maintain real-time visibility to mitigate risks effectively. This approach has been central to Vanta’s accelerating growth and increasing net revenue retention, which has remained above 100% for the past two years.

Looking Ahead: Vanta’s Vision for Sustainable Growth

With the governance, risk, and compliance market valued at $65.2 billion, Vanta is poised to extend its leadership. While speculation about an IPO swirls, Cacioppo remains focused on building a long-term sustainable company rather than chasing short-term milestones. The company’s trajectory underscores the critical role of security in the AI-driven future of work.