Release Notes January 2021
- CMMC Standards Module
- POA&M Functionality
- 162 Handbook Assessments
- Knowledge Base
New Features and Enhancements
CMMC Standards Module – Existing dashboard data and assessments can now be viewed through the lens of the CMMC Standard as well as the NIST 800-171, the Cybersecurity Framework, and the NIST Manufacturing Profile.
Updated POA&M – Full-featured project management functionality has been added – including task assignments, notifications, customizable approver lists, interim solutions, direct mapping to one or more requirements, and automatic assessment status updates.
Improved Layout for the 171, CSF, and Manufacturing Profile Dashboards – Interface refinements help users more clearly understand requirements, assess and monitor status, and manage cybersecurity policies and procedures to achieve business objectives.
New Integrated 162 Handbook Assessments – In-tool access to references from both the NIST 800-53 Standard and the 162 Self-Assessment Handbook have been added.
New Knowledge Base – Growing online documentation to improve access to cybersecurity best practices.
New Account Dashboard Page – Displays status, tasks, standards and documentation.
In-tool 3rd Party Assessment & Certification Capabilities – Manage and conduct formal 3rd party CMMC cybersecurity assessments within the Dashboard.
Enterprise Accounts – For IT Security Consultants and Prime Contractors
Risk Management and Supply Chain Readiness – Support for improved supply chain risk management and contingency planning, compliance collaboration, and oversight – to facilitate concrete, actionable measures for reducing risk and liability and for meeting certification requirements as they are released.
Integration of 3rd Party Education and Training – Working with 3rd party businesses and education institutions, the team will be developing an integration for cyber-risk management training. For businesses, it means access to on-demand workplace training in support of the immediate implementation of cyber-risk management processes. For education institutions, it means the Dashboard can be integrated with in-class learning – providing students a deep-dive into relevant cybersecurity standards.