-
Notifications
You must be signed in to change notification settings - Fork 253
CSET 8.0.0 Release Notes
chrisfinco edited this page Jul 21, 2021
·
1 revision
Planned release on September 2016
- CSET Version 8.0 included a revised, cleaner user experience, with additional assistance to help users select their standards, determine security assurance levels, and prepare for an assessment. It also includes four new standards, four new components, the ability to build custom questionnaires, and the ability to collect discoveries on questions.
- The tool's design was refreshed with a greater focus on content and new-user guidance, including:
- Reorganized assessment workflow to better represent assessment stages.
- Enhanced process guidance and streamlining from assessment start to finish.
- Greater use of embedded help information and definitions.
- Clearer question display, including display of supplemental information directly with questions, helping teams to better focus on individual question details.
- New standard recommendations based on user's self-identified industry and other organizational characteristics and allow custom sorting and filtering of standards.
- Separated subcomponents (such as the network diagram) into their own windows.
- Added functionality to allow users to resume a previous assessment where they left off.
- Added the ability for users to create, export, and import their own custom questionnaires based on questions and standards provided within CSET, allowing teams to specialize their assessment for specific purposes.
- Added four new components to the network diagram
- Added the ability for teams to record discoveries associated with questions and to assign any follow-up needed to specific individuals via the new CSET Contact Manager.
- National Institute of Standards and Technology (NIST) Special Publication 800-171. Protecting Controlled Unclassified Information in Nonfederal Information Systems and Organizations.
- Council for Internet Security (CIS) Critical Security Controls Version 6, The CIS Critical Security Controls for Effective Cyber Defense.
- U.S. Department of Health and Human Services (DHHS) Health Insurance Privacy and Accountability Act (HIPAA) Security Rule
- Defense Information Systems Agency (DISA) Control Correlation Identifier Specification V2 Release 0.1