Change Log

---

CIS SecureSuite Platform, v1.1.0

Release Date: June 25, 2025

Application

Windows Installer

• During update, the installer no longer fails with a “java.lang.NullPointerException" error at the Preparing Configuration stage.
• The installer now accepts valid email formats only.
• The validation rules of the First Name and Last Name fields for creating the CIS SecureSuite Platform Admin during installation now matches the application's validation rules for those fields:
  • No spaces
  • No symbols: ^!@#$%^&+=<>:;|~
  • String required
• All accounts created during installation now have the same password requirements.
• The installer informs users exactly how an entered password does not meet the password requirements.
• Text, links, and images have been edited or updated based on Member feedback.

Login

• After multi-factor authentication (MFA) is set to required, users will now be prompted to set up their preferred mobile authenticator.
• The login screen features the new theme.

Home

• The Controls section no longer has a line under the title, making the section consistent with the Benchmarks section.

Benchmarks

• Selecting the Target System button multiple times in quick succession no longer adds multiple target systems.
• In the Add Target System window, leaving the Primary ID field blank now prevents the target system from being added.
• Descriptions for the various reports have been updated for clarity and accuracy.
• Long column headers in difference reports no longer overlap.
• The unread messages count next to Inbox no longer disappears after going to Organizations or Admin even though unread messages still exist.

Controls

• On the Assessment Summary page in a Controls assessment, filters now have a Select All option.
• CSF 2.0 mappings are now supported. Select CSF 2.0 as one of your preferred mappings in My Profile > Controls to make them appear in the Safeguard View of Controls assessments.
• Selecting a task on the Calendar page in a Controls assessment now takes the user to that task's Safeguard View instead of showing a 404 error.
• Selecting the Add Comment button multiple times in quick succession no longer adds multiple comments.
• When entering comments on a Safeguard, a warning is now displayed when the comment reaches 250 characters, and additional characters cannot be entered.
• The History tab in the Safeguard View accurately shows scores of 1 (0-20%).
• The subject line of email notifications now shows “SecureSuite Platform” instead of “CSAT Pro.”

Admin

• In the Edit Email Settings window, all required input fields no longer accept only a space character as a valid entry.
• In the Edit Email Settings window, the error messaging is now appropriate for all fields.
• On the System Settings page, several fields that should not have been missing are now available:
  • Dropdown for Primary Target System ID Type
  • Score range input for Benchmark assessments
  • Text box in the Directories section
  • Dropdown in the Control Version section
• On the Email & Login Settings page, MFA can be configured.
• In the Edit User window, a user’s MFA can be reset.
• In the Add Organization and Edit Organization windows, an organization logo can now be added. The logo will appear on the organization’s Organization Info page, org. chart, and the first slide of board-level slides.
• In the Create Organization and Edit Organization windows, the red error message at the footer of the window is aligned to the left and no longer floats outside of the window when the browser window is narrow.
• Page descriptions now inform users if a page applies only to the Controls or Benchmarks part of the application.
• All instances of the acronym “IDP” have been corrected to “IdP.”

Other

If Keycloak goes down when a user is logged in, a user-friendly message informing them of the issue is displayed.

Documentation

• Added instructions for MFA:
  • Configure MFA
  • Set up and log in with MFA
  • Reset MFA
• Added instructions for adding an organization logo.