Your Top Five Cyber Risks in Five Clicks with the Free Cyber Risk Analysis

FREE RISK ANALYSIS
Request Demo

The team at CyberSaint is thrilled to announce the latest additions and updates to the CyberStrong solution. To start off, we’ve made it easier to create an assessment and risk register from Asset Groups. Additionally, we’ve implemented revisions to benchmarking related to the NIST CSF and bulk update of compliance notes. 

The blog below provides more details about the latest updates to CyberStrong. 

CyberStrong Compliance Hub 

Create an Assessment from Asset Group

Now that we have implemented Asset Groups within CyberStrong, users need a way to launch an assessment to assess the controls on the selected Asset Group. 

From an Asset Group, CyberStronger users can create an assessment and link it to the Asset Group. 

Enter the following fields to create an assessment: 

  • Name (required)
  • Owner (optional)
  • Framework (required)
  • Maturity Model (optional)
  • Teams/OU (required)
  • Document Storage Location (optional)
  • Tags (optional)
  • Notify team members (optional)




Note: The frameworks and Teams/OUs must exist to create an assessment. The assessment is linked to the OU to which the Asset Group is linked. Advanced framework filtering based on Asset Group attributes or tags is out of scope.

Bulk Update Compliance Notes

CyberStrong clients can add Compliance Notes to the Bulk Update fields in Assessments as follows:

  1. From a selection of controls, select Compliance Note.
  2. Enter the Compliance Note in the field.
  3. Update the controls.

Note: Compliance Notes are for controls only. Annotations and POAMs are excluded from this. 

Industry Benchmark - CSF Category

Previously, we added Industry Benchmark data to the NIST CSF Function on the Home page and the NIST CSF Maturity graph on the Executive Dashboard, but not the NIST CSF Category on the Home page.

Now, CyberStrong users can access Industry Benchmark data to NIST CSF Categories on the Home page. The settings are based on the industry selections from the Home page.

CyberStrong Risk Hub

Create Risk Register from Asset Group

Since CyberStrong users can leverage Asset Groups, they need a way to create a risk register and assign risk scenarios to that Asset Group. 

Now, users can create a Risk Register from the Asset Group level. CyberStrong Users can assign risk scenarios and link them to the Asset Group.  Risks can be added by Industry Risks or a bulk selection of risk templates. 








Note: Only NIST 800-30 risk registers are currently supported. Risk Register is linked to OU that the Asset Group is linked to. 




Search By Risk Register 

CyberStrong users who leveraged multiple risk registers needed a simple and easy way to select risk scenarios from specific risk registers. Currently, in remediation projects, there is no way to search for or filter by risk register—you can only filter by risk scenario and risk type.

Now, clients can add a risk register search filter to remediate project creation, as shown in step 2: Risk Scenario Content.


Adjust Years for Industry Risks 

Before this update, CyberStrong Users could only select a look-back period of 10 years for Industry RIsks. Now, clients can select shorter ranges for look-back periods to reflect more current risks. 

Clients can change the look-back period from the default 10 years to as low as 3 years. Once set, the value will be passed to the Industry Risks endpoint, which will return updated results.


Note: The default setting is 10 years; you can only integer values from 3 to 10 years. The updated risk values are processed on the next batch run, typically the next day.

You may also like

How to Leverage the FAIR Model ...
on December 19, 2024

In light of the Colonial Pipeline cyberattack, measuring risk is on everyone’s minds. However, quantifying risk is often not easy. So many factors go into determining and ...

Kyndall Elliott
How to Effectively Communicate Top ...
on December 9, 2024

Effective cybersecurity reporting is more important than ever for CISOs, CIOs, and other security leaders in today's complex threat landscape. Reporting isn’t just about sharing ...

November Product Update
on November 27, 2024

The CyberSaint team has been working hard to deliver the latest updates to streamline and improve our customers’ user experience and address their top-of-mind challenges. We’re ...

Putting the “R” back in GRC - ...
on December 5, 2024

Cyber GRC (Governance, Risk, and Compliance) tools help organizations manage and streamline their cybersecurity, risk management, and compliance processes. These tools integrate ...

October Product Update
on October 17, 2024

The team at CyberSaint is thrilled to announce the latest additions and updates to the CyberStrong solution. To start off, we’ve made it easier to create an assessment and risk ...

Transforming Cyber Risk ...
on October 12, 2024

In today’s complex cyber landscape, managing risks effectively isn’t just about identifying threats—it’s about understanding their impact and knowing how to prioritize ...