Vanta Compliance Gap Analyzer

Problem

Vanta surfaces compliance test failures through a paginated GraphQL API in a shape that isn't directly usable for planning work — failures are scattered across tests, evidence, and control mappings, with no single categorized view that a remediation owner can act on.

Solution

Built a Python client that paginates through Vanta's GraphQL API, pulls the full test inventory, parses the JSON responses, and categorizes failures into a structured dataset ready for remediation planning and downstream reporting.

Impact

• →Converted a paginated, unstructured API feed into a single clean, categorized dataset
• →Eliminated the manual UI-scraping approach to identifying open compliance gaps
• →Produced an analysis-ready artifact that downstream pipelines and reporting tools consume

Architecture

1. 01Vanta GraphQL client authenticates and paginates across the full test set
2. 02Raw JSON responses are flattened into a tabular schema
3. 03Each failure is categorized and tagged for remediation planning
4. 04Final output is a structured dataset suitable for reporting or pipeline ingestion

Capabilities

• ·GraphQL cursor pagination over the full Vanta test inventory
• ·JSON response parsing and field flattening
• ·Categorization of test failures for remediation planning
• ·Structured CSV / DataFrame output for downstream consumption