.svg)
The new security question answerer agent is now available through the agents menu.
This agent is equipped to help you answer certain security questions about your organisation through the content that you have configured in Cyberday. These questions can for example be questions from vendor security questionnaires or common auditing questions, so that you can be prepared for questions about your ISMS or find some gaps that you may have missed in configuring your ISMS.
When answering your question, the assistant will also give you links to the done tasks in your ISMS it referenced, as well as suggesting tasks that may need more attention or tasks that are not active yet but could be.
You can now utilize the AI assistant to write guideline suggestions for you, or add training content like examples and skill tests to existing guidelines.
When adding guidelines to a theme you can now choose 'Add guideline with AI' to open the guideline writer agent. Here you can either enter keywords or text to base a guideline on, or let the AI write multiple guideline suggestions for you based on the theme. When creating multiple guideline suggestions in this way you also get a preview of the guidelines it has created and you can select which ones you'd like to add. These guidelines can also always be edited manually afterwards too.
When creating training content for existing guidelines you can also now draft content with AI in the training content tab. Here the AI will create example cases and skill test questions based on the content of the guideline and you can then choose which content to draft. 🚀
There are now two new AI assistant features designed to help with risk analysis and treatment.
The risk analyser provides a detailed explanation of the risk and what it means to your organisation. It can explain what the risk means, when the risk has the highest impact and when a risk is particularly likely. In some of these explanations the risk analyser may also explain why the risk is more likely or impactful on your organisation based on the ISMS profile.
The risk treatment suggestor is designed to provide a better look into what different steps you can take to treat a risk. It suggests a few treatment options and also provides links to relevant tasks so that you can work on treating the risk straight away.
We are also currently working on the upcoming risk identifier, which will help you in "change and theme-based risk assessments", to identify new risks that would be relevant for the scope of this assessment. 🚀
As a festive gift this holiday season we have completely overhauled and improved the Development ideas board! 🎁
This development ideas board, found in the Community section has always been a good place to share your ideas of improving the Cyberday app with other people in the community and our team as well. But now it has gotten better!
Ideas have been now split into just 3 categories: AI assistant wishes, core feature ideas and framework suggestions. We also reworked the front page of the dev ideas board to show new or 'hot' ideas; ideas that have been getting a lot of attention through comments or votes. The vote limit has also been increased to 100, so you no longer have to be so frugal with voting on ideas you think are good. On each idea there is also now a small voting feed where you can see the activity of votes on posts.
With this rework of the ideas board we have also improved the way that we will handle your ideas, meaning that our communication and interaction with the community there will be clearer and more frequent.
Happy holidays and we look forward to hearing more of your ideas! 🎄
Cyberday now includes 10 new frameworks:
These can all now be located and searched for in the frameworks page.
For more information, read our blog post about these new frameworks.
We have slightly overhauled and improved the visual design of the main documentation page.
Now the different documentation items are sorted into their respective type categories on one page, which makes finding desired documentation from this page easier.
Additionally, the record documentation lists have received an improved progress bar, which more clearly shows the statuses of items in each list. These more detailed summaries will also show anywhere a record documentation list is linked (e.g. to a report).
The mass drafting feature for drafting multiple policies to the ISMS is now also available from the what's next? page (this was previously only available on the onboarding page).
Now if you have several policies with no content, you can choose to quickly draft several of them at a time with AI, which will mark task completion and add process descriptions to tasks in those policies based on your organisation's ISMS profile.
Note that this feature is not for creating finalized versions of all of your tasks. These should be reviewed when adding your assurance information to the tasks, for example.
In addition, policy pages have gotten a minor visual overhaul, now displaying a progress chart at the top of each page next to the assurance information.
During the last month we have made quite a few fixes to bugs new and old, as well as implemented some smaller features that were requested.
Fixes:
Small features:
Nowadays, when a new Cyberday account is created, the first step we encourage the user to do is to fill their ISMS profile.
This profile filling can be smoothly done by just giving your website domain for the AI assistant, and reviewing the results yourself.
Now existing users can do the same through Settings -> ISMS profile. AI filling is available, when you go to edit your ISMS profile. See the screenshot below.
The main objective of the ISMS profile is to offer better context for Cyberday's AI assistant. It uses the ISMS profile to make suggested best practice content more relevant for your organization (e.g. when you're writing a description for a task or drafting a policy through the AI assistant).
If you choose to evaluate a policy in Cyberday by giving an existing document for the AI assistant, you'll now see better results before finishing the evaluation.
The AI assistant will copy the found citations from the document to the corresponding task's as their process description.
You'll see this appear on the evaluation view like this:
If your ISMS includes policies that don't yet have any active tasks in them, our AI assistant can help you create a baseline for the policies.
You can have the AI assistant carry out the evaluation based on an existing document, or have it draft you the baseline policy based on best practices and your ISMS profile.
If you choose the "Draft with AI" method, you'll see a summary of the selected tasks, statuses and written descriptions, and will need to confirm the result before any changes happen in your ISMS content.
When your ISMS has more data and better actual descriptions about how you implement different tasks, you can get a lot of value from the policy reports.
You can now also hide the "requirement text" on policy reports, using the settings on left menu. This can be useless information, especially when your own process descriptions are well-defined.
During this week, we published a larger set of fixes to smaller issues / bugs. These included e.g. topics like:
If you had reported some issue for our team, we're aiming to let you also know personally about their fixing. 👍
We just published the first version of Cyberday's AI assistant. We'll be continuing development of the assistant now continuously. 👍
Read more about the AI assistant:
💡 You can vote and present any own ideas for AI assistant's development inside Cyberday on Community > Development ideas, on AI assistant idea group.
Mass-edit functionality is now available on the main table views in Cyberday.
You will be able to select multiple items (e.g. tasks, guidelines or documentation items) at once and implement generic actions for them, incl.:
Mass-edit will be first visible on most used views, e.g. documentation tables (data systems, risks, etc.) and main Tasks and Guidelines pages.
💡 This development idea has been one of the most wished on Development ideas -forum inside Cyberday Community.
