/ Uncategorized

ASCERTIS Release 2.4

ASCERTIS Release 2.4

ASCERTIS Solutions is pleased to announce the latest release of the ASCERTRIS Assessment engine.  The following features have been incorporated.

 MULTIFACTOR AUTHENTICATION

Previously the application relied on complex passwords which needed to be changed every 6 months.  The latest version includes Multi-Factor Authentication (MFA) in addition to password.  This feature is implemented via Google Authentication or Authy.  Upon downloading either application, If the user decides to implement this feature a QR code will be presented which will generate a 6-digit OTP code.  The user enters the code on the OTP line.

Alternately if a user wants to implement MFA via Short Message Service (SMS), the user enters the phone number for which the SMS is to be sent.  Upon this selection, when the OTP feature is invoked a 6-digit password will be sent via SMS to the phone number entered by the user.

Control Type Tagging:

Users can now identify the type of control that is being implemented in the environment.  There are 4 control types:

  1. Common Control – A control that is managed by the organization that can be inherited by one or more of the organization’s information systems.
  2. Inherited Control – A control that is managed by an outside organization that can be inherited by one or more of the organization’s information systems.
  3. Hybrid Control – A control that is partially implemented by an outside organization and partially implemented by the organization’s owners. It can be inherited by one or more of the  organization’s information systems.
  4. System Specific Control – Controls that are unique to a system.

Control types will be reflected in the System Security Plan.

Color Coding of Controls in CMMC Maturity Level Module

Controls are now color coded to indicate if requirements are being satisfied.

  • Green Color Bubble – All requirements in the control are satisfied.
  • Gray Color Bubble – Some of the requirements in the control are satisfied.
  • Red Color Bubble – None of the requirements in the control are satisfied.

Why Choose ASCERTIS Solutions

ASCERTIS Solutions can conduct a security assessment of a small business in a week and provide a roadmap for your company to implement a cyber defense strategy that fits your budget.  Trained security professionals can be hired on a part-time basis to fill the role of Chief Cyber Security Officer (CISO) to assure that your roadmap is implemented in a timely and cost-effective fashion. 

If interested, please contact assessments@ascertis.solutions.