Released Q1 2021
RiskRecon Domain Ratings Widget
Get instant visibility to outside-in security posture ratings for your entire portfolio. Provides quicker visibility into threat activity and context based and clear remediation strategies.
Record Future Threat Intelligence Widget
CyberGRX partnered with Recorded Future to provide Customers and Third Parties insights on risk severity based on threat intelligence collected from the dark web, social media and breach monitoring. Comprehensive security intelligence against potential risks by monitoring for key indicators including data leakage, incident reports, domain abuse, email security, vulnerable infrastructure, web application security, dark web attention and Breach Intelligence and monitoring.
Threat Profiles In Framework Mapper
CyberGRX will continue to report on major breach events that may be relevant to our users. In addition, we have mapped the controls most likely to be impacted by these events and provided that mapping the in Framework Mapper component in the Vendor Profile Page. Now, Customers can see how risks that exist in their vendor ecosystem may be impacted by most recent breach events.
Validation Results In Platform
Validation results will display on the Vendor Profile Page for applicable third-parties. These results will also be accessible by the Third-Party users on the Results tab of the Assessment Dashboard. This component will list all controls evaluated during the Validation Phase for T2-Remote and T1 assessments, along with the resulting findings.
Auto Validation Findings In Platform
Users can now view Auto Validation Findings in-platform for Tier 2 and Tier 1 assessments. Auto Validation cross-checks interdependencies between security controls to identify if the effectiveness or existence of one control is likely to negatively impact the effectiveness of another based on the answers provided. These findings highlight any inconsistencies or contradictions within the assessment answer set and allows Customers and Third Parties to quickly derive insights from the results.
Expanded Validation Coverage to Tier 2-Remote Orders
Validation phase for Tier 2-Remote assessments will now review up to 50 controls rather than 30 controls. This changes aims to increase the coverage and data fidelity made available by Tier 2 assessments.
Third Party In-Platform On-Boarding Resources
The Assessment Dashboard now provides Third Parties with two new resources to help them get started in the CyberGRX Platform and point them to features and help resources available that aim to enhance their assessment progress.
Maturity Questions View
To increase visibility to raw assessment content, users now have a quick and easy way to access the Maturity Questions for each Control Group along with a third-party’s answers and comments provided. Users can access this content by clicking “view answers” under the Maturity Score dials located on the Vendor Profile Page and the Results tab.
Non-Validated Results for Tier 1
Customers will now receive non-validated assessment data for Tier 1 orders. This aims to deliver value to Customers faster and allow them to continue derive insights about their vendor and their ecosystem even when the validation phase is ongoing.
Validation Pending UI Indicators on Vendor Profile Page
Customers will now see an orange banner on the Vendor Profile Page along with alerts on the multiple results-components when that Third Party is still in the validation process and only non-validated results have been released.
Events-based Alerts and Notifications Center
The CyberGRX platform now has a notifications sidebar! Along with recent work to automate alerts and notifications that are prompted by platform events, users can now see those recent alerts and notifications by clicking the bell icon in the top-right side of their account. This icon will have an orange dot when there are unread notifications.