This article is updated on a regular basis. Select the Follow button at the top-right of the page to be notified of changes to this article via email. You can also follow any of the What's New sections to be notified of newly published articles in those sections.
| Description | Effective Date |
|---|---|
| Ratings Tree – Filtering within the SPM app. | 28-AUG-2023 |
| Exposed Credential Findings – The Domains field no longer include expired domains. It includes only the currently active and owned domains. | 28-AUG-2023 |
| Risk Remediation Plan – Available for Patching Cadence. | 24-AUG-2023 |
| Add Assets – Available for Group Admins. | 11-AUG-2023 |
| Cloud Infrastructure for AWS – Navigation available in Attack Surface menu. | 08-AUG-2023 |
| Attack Surface Analytics – Exposure insights. | 04-AUG-2023 |
| Emerging Security Event – Card available in the My Company Dashboard. | 02-AUG-2023 |
|
27-JUL-2023 |
| Infrastructure Tags – Tags are inherited by a child asset from its parent asset. | 16-JUL-2023 |
| Vulnerability Catalog Report – Replacing Vulnerability Catalog page, use this report to get all vulnerabilities that are tracked in the Bitsight platform. | 12-JUL-2023 |
| Cloud Infrastructure for AWS – Set up AWS Orgs. | 07-JUL-2023 |
| Risk Remediation Plan – Each supported risk vector shows their weight in the rating so you can strategize on which risk vectors to focus on. | 26-JUN-2023 |
Power BI – SPM updates, including:
|
15-JUN-2023 |
| Ratings Tree – See subscription type. | 15-JUN-2023 |
| Financial Quantification – Added Deductible and Coverage Limit lines to the Exceedance Probability graph, providing context to your insurance deductible and coverage through the lens of financial risk. | 08-JUN-2023 |
| Ratings Tree – Grab and scroll to navigate the Ratings Tree. | 08-JUN-2023 |
| Performance Summary Report – Configured peer group reflects the sub-industry and unique services filters. | 30-MAY-2023 |
| Saved filter sets – Enabled for the Service Providers and Products pages in Continuous Monitoring and Cyber Insurance apps. | 25-MAY-2023 |
| Peer Analytics – Moved from Dashboards to Peer Comparison. Both navigational options will be available for some time. | 16-MAY-2023 |
|
12-MAY-2023 |
| Attack Surface Exposure Report – See confirmed or suspected vulnerabilities associated with the assets of a given organization. | 05-MAY-2023 |
| Classic Bitsight App deprecated for all except Cyber Insurance users. | 02-MAY-2023 |
| Company Relative Risk Report – Review a company's relative risk and past Bitsight Security Rating performance. | 02-MAY-2023 |
| Domain Infrastructure and Network Infrastructure reports deprecated. Use the Infrastructure report instead. | 30-APR-2023 |
| Underwriting Guidelines – Choose the minimum grades for each risk vector that can be used to compare against a company’s risk vector grades. | 28-APR-2023 |
Cloud Infrastructure for AWS
|
26-APR-2023 |
| Dynamic Reports – Set up Custom Views. | 06-APR-2023 |
| Infrastructure – Add or report missing assets to your infrastructure. The source of added assets are considered to be “customer-provided.” | 31-MAR-2023 |
| Public Disclosure Alerts – Continuous Monitoring includes subsidiaries of your subscribed companies. | 23-MAR-2023 |
| Executive Report – Get a high-level overview of your company’s cybersecurity posture and present it to non-technical and executive stakeholders, including company leadership, board members, investors, and shareholders. | 14-FEB-2023 |
| Folders – Manage folders in the SPM application. | 07-FEB-2023 |
| Infrastructure Report – Get an overview of your CIDR blocks, IP addresses, and domains attributed to your organization. | 21-DEC-2022 |
| Ratings Tree – Redesigned to improve functionality. | 30-NOV-2022 |
| Vendors CSV Download – Consolidated Managed and Monitored vendors to provide a holistic approach to vendors. Use the Connection Type column to filter between the 2 types of vendors. | 24-NOV-2022 |
| Filter Sets – Available for Findings. | 21-NOV-2022 |
| Vulnerability Detection – Detect vulnerabilities within the Continuous Monitoring and Security Performance Management apps. | 16-NOV-2022 |
| My Company Dashboard – Subscriptions card. | 15-NOV-2022 |
| Filter Vendors by Requirement Due Date - As a VRM paid subscriber, filter your vendors by the due date of the requirements assigned to them. | 14-NOV-2022 |
| Findings – Hostnames are now included in Desktop and Mobile Software findings details | 03-NOV-2022 |
| Bitsight for 4th Party Risk Management – User interface improvements. | 01-NOV-2022 |
| Financial Quantification – Learn more about the methodology behind our financial quantification model. | 17-OCT-2022 |
| Notification Emails – Notification emails for Insurance and National Cybersecurity of new vulnerabilities. | 10-OCT-2022 |
Additional data in Netskope Scans – See more data elements to assist you in making informed decisions:
|
27-SEP-2022 |
| Financial Quantification – Save a quantification draft. | 14-SEP-2022 |
| Filter Vendors by Requirement – As a VRM paid subscriber, filter your vendors by the requirements assigned to them. | 13-SEP-2022 |
| Bitsight available in the Trust Score – Applicable to all TPRM paid subscribers. Admin users can set the weight % from the “Scoring” menu inside “Settings”. | 13-SEP-2022 |
| Performance improvements – We significantly improved the loading time at opening the details of a vendor to increase the efficiency in the TPRM process. | 12-SEP-2022 |
| Approval cycle in the Vendors CSV – Approval cycle column added to the CSV file that can be downloaded from the Connections page. | 12-SEP-2022 |
New features in Netskope Scans
|
01-SEP-2022 |
| Risk Remediation Plan – Desktop Software and Mobile Software risk vectors now supported. | 25-AUG-2022 |
| Bitsight Badge – New configuration options added. | 22-AUG-2022 |
| 4th Party Relationships – Improved certainty levels (formerly “confidence level”) of 4th party relationships defined by Bitsight. | 16-AUG-2022 |
| Netskope CCI/CCL on Scans – We added the integration of Netskope CCI and CCL indicators to the Scans page. It is designed to help you comprehend the impact of using a cloud app and its inherent risk in relation to your security standards. | 12-AUG-2022 |
| Subscription Modifications – Unsubscribe from multiple companies at once. | 10-AUG-2022 |
| Self-Attested Compliance Panel – Share key frameworks that your company maintains or complies with on your Bitsight profile. | 27-JUL-2022 |
| Power BI Connector – Share your My Company’s or primary’s Bitsight Security Rating with your customers, prospects, and stakeholders. | 25-JUL-2022 |
| Bitsight VRM Findings CSV – Get a CSV file by email of more than 1000 findings so you can continue using the application in the meantime. | 22-JUL-2022 |
| Bitsight Badge – Generate a step-by-step plan to help you prioritize and address findings with the end goal of reaching an A risk vector grade. | 18-JUL-2022 |
| Expiration date not mandatory for Certifications – Upload some documents that don't expire (like a SOC report) without having to complete their expiration date. | 06-JUL-2022 |
|
Invite users of your already connected Customers As a Beacon paid subscriber, invite users of your already connected Customers to review your Security Profile in ThirdPartyTrust. You can also invite users via api using the Add/Invite a Customer Contact endpoint. |
05-JUL-2022 |
| Netskope integration Discovered Vendors – We launched a new direct integration with Netskope to discover unknown vendors with access to your network and allow you to add them to your managed inventory and overall TPRM process. | 27-JUN-2022 |
| Risk Remediation Plan – Generate a step-by-step plan to help you prioritize and address findings with the end goal of reaching an A risk vector grade. | 23-JUN-2022 |
| Audit Trail on Marked as complete – See the history of changes in the "Marked Complete" feature on the Requirements tab inside a Vendor's Profile | 17-JUN-2022 |
| Enable Access Program – You can now CC the introductory email to additional recipients. They don’t need to be part of the recipient’s organization or have access to the Bitsight platform. They do not receive an activation email. | 15-JUN-2022 |
| Bitsight VRM Internal notes available in Findings CSV – All the internal notes added to the findings are available in the downloaded CSV file. | 06-JUN-2022 |
| Top Navigation Bar – New "skip to main content" button allows keyboard and screen reader users to bypass navigation. | 20-MAY‑2022 |
| Application Switcher – Now supports expected browser context menu actions, such as “open in new tab.” | 20-MAY‑2022 |
| Bitsight VRM Findings impacting Monitored Vendors – When you create a Finding to a Monitored Vendor the Trust Score number of points is reduced according to your settings, just like Managed Vendors. | 19-MAY-2022 |
| Tiering and Life Cycle Stages – Now available to all Continuous Monitoring customers. | 18-MAY‑2022 |
Bitsight VRM All company info endpoint – Returns the is_company_setup parameter instead of isCompanySetup. |
06-MAY-2022 |
| Control Insights – Now supports CIS v8. | 03‑MAY‑2022 |
| Financial Quantification – Cancel a Financial Quantification run or rerun. | 19‑APR‑2022 |
| Bitsight VRM See Vendors' Comments – See the notes field (which was also renamed to "Comments") in all the artifacts provided by the Vendor. | 19-APR-2022 |
Bitsight VRM Comments vs Internal Notes – Changed the wording to differentiate and clarify the 2 type of notes that you can find inside the platform:
|
18-APR-2022 |
| Bitsight VRM Compliance Mapping for RiskRecon – Companies that have a RiskRecon API key can see the "Compliance Mapping” on the Monitored Vendors profile. This contains information about all the surveys and questions that are mapped by RiskRecon and have information about the vendor. | 18-APR-2022 |
| Filter Sets – Save sets of filters for your Companies List | 13‑APR‑2022 |
| Change Log – Download as a CSV. | 11‑APR‑2022 |
| Alert Sets – Alerts sets and new tabs (Tiers and Folders & Alert Sets). | 01‑APR‑2022 |
| Financial Quantification – April 2022 updates now available (version 22.1). | APR-2022 |
| Bitsight VRM Findings Field Rename – The Target Date field renamed to Will Remediate by to be more explicit about what it contains. We've also added a tooltip with an explanation for vendors on how to fill that date. | 31-MAR-2022 |
|
Bitsight VRM Vendor Categories Renamed - Monitored & Managed We have changed the nomenclature, evolving to an industry way of referring to assessing vendors:
|
17-MAR-2022 |
| Findings – New searchable fields: Application Name, App Version, Certificate Issuer, Certificate Serial Number, Details, Domain, Product, Server Type, Server Version, & Transport Method. | 08-MAR-2022 |
| Web Application Header Findings – The downloadable CSV always includes Cache-Control, Content-Security-Policy, Strict-Transport-Security, & X-Content-Type-Options details. | 03-MAR-2022 |
Bitsight VRM & Beacon Audit Trail - Review Pending Invites/Shared Requests
|
01-MAR-2022 |
| Bitsight VRM Findings Reporting, Tracking, & Resolving Vendors Gaps – Create findings on artifacts marked as Not Available. Create findings on all artifacts, even on those marked as Not Available by your vendors. | 01-MAR-2022 |
| Bitsight VRM Findings Performance – Improved loading time of the list of findings, looking for a specific finding with the search box and accessing a finding from a questionnaire. | 01-MAR-2022 |
Audit Trail - Invites/Shared Requests History:
|
23-FEB-2022 |
| Downloadable PCAP – Download a packet capture (PCAP or libpcap) containing the raw forensic evidence for Botnet Infections. | 11-FEB-2022 |
| Bitsight VRM Questionnaires – UX improvement in the way questionnaire categories are shown in both questionnaires from Security and Vendor Profiles. The complete category name is displayed. | 08-FEB-2022 |
| Beacon Audit Trail Invites/Shared Requests History – View who accepted the share request. | 02-FEB-2022 |
| Bitsight VRM Sales Operations Role – Sales Operations role for Beacon paying customers and permissions by access level. | 01-FEB-2022 |
| RiskRecon Scan – Bitsight VRM interface matches the RiskRecon Portal to provide a seamless experience. | 20-JAN-2022 |
| Rating Related Risks – Quickly assess your risk of a ransomware or data breach incident, in relation to the Bitsight Security Rating. | 13-JAN-2022 |
| Company Info – The Relationship Details panel has been combined with the Company Info panel. | 13-JAN-2022 |
| Bitsight VRM Internal Business User Role (TPRM Only) – Internal Business User Role has been updated to meet our customer’s requests and needs from this role, ONLY available for paying TPRM Customers. Learn about this role and Permission by Access Levels… | 13-JAN-2022 |
| Findings – Text searches with matches are highlighted when using the Search bar at the top-right to search findings. | 10-JAN-2022 |
| Collaboration – Recipients now have the SPM Application as their primary experience when gaining access to the Bitsight platform. | 15‑DEC‑2021 |
| Rapid Underwriting Assessments – Now available by default in the Insurance UI. Users have the option to download this report in PDF format and can also track usage via the Platform Usage report. | 15‑DEC‑2021 |
| Control Insights – On-demand data generation for companies without Control Insights data already. Updated messaging when waiting for data to generate. | 19‑NOV‑2021 |
| Benchmarking & Attack Surface Analytics – Adjusted presentation of the Benchmarking and Attack Surface Analytics features. | 18‑NOV‑2021 |
| Collaboration – Updated error messages during collaboration via the Enable Access Program (EVA/ECA). | 18‑NOV‑2021 |
| Exposed Credentials Download – The fields available in the download file for Exposed Credentials have been expanded to include Exposure Date, Observation Date, and Breached Site, along with Account. | 17‑NOV‑2021 |
| Peer Analytics – General Performance Improvements. Reduce timeouts on the findings and assets downloads, speed up Peer Analytics page load times. | 17‑NOV‑2021 |
| Continuous Monitoring Application – Optimized navigation for Third Party Risk Management (TPRM) workflows. | 11‑NOV‑2021 |
| Control Insights Executive Summary Report – Scheduling now available & accessible via the Reports page. | 10‑NOV‑2021 |
| Notifications – Notifications may be removed after one year. | 08‑NOV‑2021 |
| Favicon – Identify the application you’re using from your browser tab. | 05‑NOV‑2021 |
| Control Insights Executive Summary Report – Concisely share your organization’s control current evaluation and history with your stakeholders. | 01‑OCT‑2021 |
Bitsight VRM Questionnaire Versions
|
01-OCT-2021 |
| Color Themes & Dark Mode – Apply color schemes to display and view the Bitsight platform. | 22‑SEP‑2021 |
| Peer Analytics – New Rankings: FTSE 100 & FTSE TWSE Taiwan 50 Index. | 21‑SEP‑2021 |