Vanta Compliance Gap Analyzer

Problem

Vanta surfaces compliance test failures through a paginated GraphQL API, and the shape it returns isn't something you can plan work off of. Failures sit scattered across tests, evidence, and control mappings, with no single categorized view a remediation owner can actually pick up and run with.

Solution

Built a Python client that paginates Vanta's GraphQL API, pulls the full test inventory, parses the JSON, and sorts failures into a structured dataset ready for remediation planning and downstream reporting.

Impact

• →Turned a paginated, unstructured API feed into a single clean, categorized dataset
• →Retired the manual UI scraping anyone used to do just to find open compliance gaps
• →Output is an analysis ready artifact that downstream pipelines and reporting tools consume directly

Architecture

1. 01A Vanta GraphQL client authenticates and paginates across the full test set
2. 02Raw JSON responses flatten into a tabular schema
3. 03Every failure gets categorized and tagged for remediation planning
4. 04Final output is a structured dataset ready for reporting or pipeline ingestion

Capabilities

• ·GraphQL cursor pagination over the full Vanta test inventory
• ·JSON response parsing and field flattening
• ·Categorization of test failures for remediation planning
• ·Structured CSV or DataFrame output for downstream consumption