This article is updated on a regular basis. Select the Follow button at the top-right of the page to be notified of changes to this article via email. You can also follow any of the What's New sections to be notified of newly published articles in those sections.
Description | Effective Date |
---|---|
Jira Integration – Allows users to integrate the SPM application and Jira, creating Jira tickets directly from the Findings Table. | 10-DEC-2024 |
Operational Technology Exposure Intelligence – Highlights operational technology (OT) risk and provides global visibility of exposed industrial control system (ICS) devices across supported protocols. | 27-NOV-2024 |
TLS/SSL Certificates & TLS/SSL Configuration Findings – Details on TLS/SSL Certificates and TLS/SSL Configurations findings. | 27-NOV-2024 |
Data Residency – Specify your operational region for storing, processing, and managing your Vendor Risk Management and Trust Management Hub data. | 30-OCT-2024 |
Risk Remediation – Use the Risk Remediation forecast to create a forecast using your RRPs. | 29-OCT-2024 |
Findings – Most findings are no longer sampled. Companies with over 10 million findings still have sampled findings. | 29-OCT-2024 |
Security Performance Management application – Re-organized the menu. | 28-OCT-2024 |
Anecdotes.ai – Manage compliance programs by automating evidence collection, providing real-time insights, and allowing easy customization of frameworks and controls. | 24-OCT-2024 |
Company Overview & Executive reports localized into Japanese [ja]. | 23-OCT-2024 |
Company Overview & Executive reports localized into German [de] and Spanish [es]. | 16-OCT-2024 |
Executive Summary – A detailed, cumulative report that provides a holistic view of the vendor portfolio. | 15-OCT-2024 |
Public Disclosures Risk Category – DNS incidents are now separated into incidents and findings based on how they're detected. | 01-OCT-2024 |
Financial Quantification – New Results Comparison view. Results delivery is now automated. | 24-SEP-2024 |
SPM Alerts – New SPM alerts experience, including multiple new alert types. | 17-SEP-2024 |
Assessments – Assessments are now available in the Security Performance Management application. | 09-SEP-2024 |
Vulnerability Detection – Incorporated Exploit Prediction Scoring System (EPSS), which estimates the likelihood that a software will be exploited. The higher the percentage the more likely it is to be exploited. | 09-SEP-2024 |
Findings – Infrastructure tags are displayed in its own column instead of being below each finding. | 06-SEP-2024 |
Peer Analytics – Compare Patching Cadence performance with your peer group. | 19-AUG-2024 |
Artifacts – 'NATF Energy Sector Supply Chain Risk' added to questionnaires. | 05-AUG-2024 |
Assessments Overview – A comprehensive view of your assessments, providing insights into the top 5 results for upcoming, ongoing, and completed assessments. | 05-AUG-2024 |
Forecasting – Forecast Patching Cadence findings. | 10-JUL-2024 |
My Company Dashboard – Exposure metrics. | 01-JUL-2024 |
Email Preferences – Be notified when a company you're monitoring is deactivated. | 20-JUN-2024 |
Artifacts – ISO 27001:2022 questionnaire available as an artifact. | 19-JUN-2024 |
Email Preferences – New Vulnerability Notifications available for all subscription types. | 04-JUN-2024 |
Portfolio Dashboard – Vendor Discovery card added. | 29-MAY-2024 |
My Company Dashboard – Vendor Discovery card added. | 08-MAY-2024 |
Requirements – Add [Assessment Setup ➔ Requirements] and view [Vendor Profile ➔ Requirements] alternate requirements in the Vendor Risk Management application. | 30-APR-2024 |
In-App Guidance – Tutorials for completing tasks in the Bitsight platform. | 25-APR-2024 |
Underwriting Guidelines – Include exposure data (vulnerabilities & vulnerability groups). | 23-APR-2024 |
Data Vault – Get underlying data behind Bitsight Security Ratings without the Cyber Insurance application. | 22-APR-2024 |
Subsidiary Improvement – Patching Cadence risk vector added to Subsidiary Improvement plan. | 11-APR-2024 |
Risk Analytics – New color them option added to the Risk Analytics page. | 11-APR-2024 |
Vendor Risk Management Application – Internal Questionnaires page. | 08-APR-2024 |
Continuous Monitoring Findings – Filter by multiple assets.
|
12-MAR-2024 |
Filter Sets – You can now create filter sets for multiple assets in the CM and SPM apps. | 12-MAR-2024 |
Provisional Ratings – Once mapped, auto-subscribing is a 1-step process down from 2, just like Bitsight curated ratings. | 06-MAR-2024 |
Emerging Security Events card:
|
MAR-2024 |
Connections – Add vendors in bulk. | 29-FEB-2024 |
Infrastructure data quality & collection improvements:
|
08-FEB-2024 |
Vulnerability Groups – classifies vulnerabilities in Vulnerability Detection based on common frameworks and events, to make zeroing in on the correct exposures easier and provides a more acute way of prioritizing which vulnerabilities to prioritize remediation or outreach on. | 31-JAN-2024 |
Vendor Risk: Overview – Collaboration panel replaced with Asset Geolocation panel. | 05-Feb-2024 |
Knowledge Base:
|
29-JAN-2024 |
Findings – Tag assets from the Findings Table. | 18-JAN-2024 |
Financial Quantification – Major update adds frequency, annualized risk, and peer comparison capabilities. | 16-JAN-2024 |
Risk Analytics: Risk Vectors Overview – Get a breakdown of the 13 risk vectors with cybersecurity incident data from the Marsh McLennan study. | 09-JAN-2024 |
Benchmark Groups – Group companies for benchmarking. They have the same metrics and are interchangeable with peer groups. | 06-DEC-2023 |
Risk Analytics – Filter by tiers or folders. | 06-DEC-2023 |
Web Application Security Risk Vector – TLS Errors on Page Resource Fetch assessment deprecated. | 05-DEC-2023 |
Vendor Discovery – automatically surface your vendors in the Continuous Monitoring application. | 04-DEC-2023 |
Risk Analytics – An industry-first portfolio view into third-party vendor risk. Contextualize and prioritize risk insights from a third-party ecosystem. | 28-NOV-2023 |
Filter Sets – Bitsight filter sets.
|
24-OCT-2023 |
Findings – Download up to 100,000 rows of findings data. | 17-OCT-2023 |
Assets – Directly tag individual assets from the Assets page. | 13-OCT-2023 |
Findings – The Impacts Risk Vector Grade field indicates whether or not a finding currently impacts a risk vector grade. Filter findings that currently impact or no longer impact risk vector grades. | 13-OCT-2023 |
Microsoft Azure Sentinel Integration – Bring Bitsight data and tools into existing security program workflows in Sentinel. | 11-OCT-2023 |
Client/Vendor Access Program – Cyber Insurance clients can register for the Client/Vendor Program. | 12-SEP-2023 |
Vendor Risk: Overview – Released. | 08-SEP-2023 |
Vulnerability Catalog – No longer available. Users should now use the Vulnerability Catalog report. | 30-Aug-2023 |
Infrastructure: Attribution & Assets – No longer available. All data is available on the Infrastructure page. | 30-Aug-2023 |
Infrastructure – Released. | 30-Aug-2023 |
Findings – Use rolled up ID as a finding identifier. | 30-AUG-2023 |
Ratings Tree – Filtering within the SPM app. | 28-AUG-2023 |
Exposed Credential Findings – The Domains field no longer include expired domains. It includes only the currently active and owned domains. | 28-AUG-2023 |
Risk Remediation Plan – Available for Patching Cadence. | 24-AUG-2023 |
Add Assets – Available for Group Admins. | 11-AUG-2023 |
Cloud Infrastructure for AWS – Navigation available in Attack Surface menu. | 08-AUG-2023 |
Attack Surface Analytics – Exposure insights. | 04-AUG-2023 |
Emerging Security Event – Card available in the My Company Dashboard. | 02-AUG-2023 |
|
27-JUL-2023 |
Infrastructure Tags – Tags are inherited by a child asset from its parent asset. | 16-JUL-2023 |
Vulnerability Catalog Report – Replacing Vulnerability Catalog page, use this report to get all vulnerabilities that are tracked in the Bitsight platform. | 12-JUL-2023 |
Cloud Infrastructure for AWS – Set up AWS Orgs. | 07-JUL-2023 |
Risk Remediation Plan – Each supported risk vector shows their weight in the rating so you can strategize on which risk vectors to focus on. | 26-JUN-2023 |
Power BI – SPM updates, including:
|
15-JUN-2023 |
Ratings Tree – See subscription type. | 15-JUN-2023 |
Financial Quantification – Added Deductible and Coverage Limit lines to the Exceedance Probability graph, providing context to your insurance deductible and coverage through the lens of financial risk. | 08-JUN-2023 |
Ratings Tree – Grab and scroll to navigate the Ratings Tree. | 08-JUN-2023 |
Performance Summary Report – Configured peer group reflects the sub-industry and unique services filters. | 30-MAY-2023 |
Saved filter sets – Enabled for the Service Providers and Products pages in Continuous Monitoring and Cyber Insurance apps. | 25-MAY-2023 |
Peer Analytics – Moved from Dashboards to Peer Comparison. Both navigational options will be available for some time. | 16-MAY-2023 |
|
12-MAY-2023 |
Attack Surface Exposure Report – See confirmed or suspected vulnerabilities associated with the assets of a given organization. | 05-MAY-2023 |
Classic Bitsight App deprecated for all except Cyber Insurance users. | 02-MAY-2023 |
Company Relative Risk Report – Review a company's relative risk and past Bitsight Security Rating performance. | 02-MAY-2023 |
Domain Infrastructure and Network Infrastructure reports deprecated. Use the Infrastructure report instead. | 30-APR-2023 |
Underwriting Guidelines – Choose the minimum grades for each risk vector that can be used to compare against a company’s risk vector grades. | 28-APR-2023 |
|
26-APR-2023 |
Dynamic Reports – Set up Custom Views. | 06-APR-2023 |
Infrastructure – Add or report missing assets to your infrastructure. The source of added assets are considered to be "company-provided.” | 31-MAR-2023 |
Public Disclosure Alerts – Continuous Monitoring includes subsidiaries of your subscribed companies. | 23-MAR-2023 |
Executive Report – Get a high-level overview of your company’s cybersecurity posture and present it to non-technical and executive stakeholders, including company leadership, board members, investors, and shareholders. | 14-FEB-2023 |
Folders – Manage folders in the SPM application. | 07-FEB-2023 |
Infrastructure Report – Get an overview of your CIDR blocks, IP addresses, and domains attributed to your organization. | 21-DEC-2022 |
Feedback
0 comments
Please sign in to leave a comment.