A number of updates and bug fixes have been released for our Developer API and Power BI connector. These changes appear automatically on the existing endpoints and you do not need to update your Power BI connector.
Custom fields are now returned for risks, issues, and third parties.
Bug fix: foreign-key fields marked as nullable in the schema now return null instead of nil-uuids (00000000-0000-0000-0000-000000000000) when a value is not present
In addition to the API improvements, the browser page titles displayed in the web application have now changed to include the full page title in all cases.
We've released a new administration module for customizing system notifications.
This includes the ability to:
Customize email subject and body templates using dynamic templates
Disable/enable emails and in-app notifications
Customize the cadences at which reminder emails are sent, both before and after a due date
Find out more at Custom Notifications.
We’ve updated permissions to improve task management and clarity around Risk Treatment Plan (RTP) access along with introducing a new setting in the Administration area
Permissions
My tasks
Users with this permission can access the "My Tasks" menu for streamlined task management
My tasks > Risk treatment plan
This permission enables users to view and respond to all RTPs assigned to them
Linked data within RTPs (e.g., Risks, Controls) is displayed based on each user’s permissions for greater data security and relevance
New custom email address settings
Admins can now set a custom email address directly within 'Administration > Settings > Customization' tab
At the Hub level, this settings allows the custom email to be set as the default for all spokes. Spokes with their own specified email will override the Hub default.
We are excited to introduce a powerful new update to the Issues module: Issue Workflow. This enhancement brings greater flexibility and control to how you manage and track issues across your organization.
Key Highlights:
Create and define custom workflows: You can now build and tailor workflows to meet your specific issue management needs. Define unique stages and transitions that fit your processes.
Transition issues through stages: Seamlessly move issues through stages such as New, Triage, In Progress, and Completed for enhanced tracking and visibility.
Customizable transitions: Configure how issues transition from one stage to another, ensuring alignment with your organization’s processes and workflows.
Organize workflow stages: Easily organize, edit, and reorder stages, giving you full control over the complexity and order of your issue manageme: If you’ve used our Risk workflows, you’ll find the new Issue Workflow setup familiar and easy to configure.
To learn more, please refer to the following 6clicks knowledge articles:
We’re excited to announce two major enhancements to Hailey AI, designed to further improve risk identification and compliance mapping efficiency.
Risk and issue generation from assessment responses: Hailey AI can now help you identify, draft, and categorize risks and issues from both questionnaire-based and requirement-based assessment responses. This feature links risks, issues and third-parties to assessment responses, offering automatic suggestions and improving efficiency.
Enhanced compliance mapping: The compliance mapping feature has been overhauled for faster and more precise authority-to-control and authority-to-authority mappings. The update also includes an improved user experience with better feedback and visibility during the mapping process.
Plus, automatic deactivation of aged accounts: The Max days of user inactivity before deactivating setting is now available for administrators to automatically deactivate a user who has not logged in for a specified period of time. For full setup information, refer to the Security administration knowledge article.
We are excited to announce the inclusion of Microsoft Defender for Cloud in 6clicks' suite of Continuous Control Monitoring (CCM) integrations. With this powerful addition, users can enhance their cloud security posture by leveraging automated control tests and real-time monitoring.
Key updates include:
Integration with Microsoft Defender for Cloud: Users can now automate control tests with Microsoft Defender for Cloud to continuously monitor cloud-native applications and identify potential security issues.
Automated recommendations: Gain instant, actionable recommendations from Microsoft Defender for Cloud to remediate control test failures and strengthen security compliance.
Streamlined evidence collection: Automatically log test results and remedial actions, simplifying compliance documentation and issue tracking.
Enhanced visibility: Access comprehensive insights into your security posture with 6clicks’ reporting, including detailed test results and Microsoft Defender for Cloud’s recommendations.
Automatic test polling: Trigger polling of test results for all auto-monitored controls and receive notifications when new results are logged.
To learn more, please see our announcement blog for a full feature overview, and our knowledge base article for setup instructions.
We’re pleased to announce several new updates, including the release of risk relationships, along with additional enhancements to Hailey Assist and Issue registers.
Risk relationships
Risk relationships enable you to define and visualize how individual risks relate to each other, providing enhanced visibility into your risk environment to improve decision-making and strategic planning. Key capabilities include:
A newly designed linked data side panel in risk details, creating a more friendly and streamlined user experience when linking data to risks.
The ability to link risks to one another, including a new link risk modal that visually depicts the relationship as you’re linking.
Three types of relationships between risks: parent, child, and related. The risk register includes three corresponding columns for these linked risks.
Reporting on risk relationships within 6clicks' native reporting module and via Power BI.
Access to risk relationships through the Developer API.
To learn more about risk relationships, check out the blog here and the knowledge base article here.
Additional enhancements
Hailey Assist search: Additional search results have been added along with the main response, helping you find other relevant information quickly and efficiently.
Issue register bulk updates: Users can now select multiple issues and update fields such as Description, Due Date, Issue Owner, and custom fields in one streamlined action.
Our latest update has just been released, including a layout refresh for Risk overview page, and a host of improvements to our Developer API:
Added support for custom attributes.
Removal of redundant fields in the Issues API.
Improved consistency between the UI and API behaviour.
Introduction of a new API for associating risk treatment plans.
Improved CCM test and responsibility linkages via the API.
These updates ensure a more reliable and consistent experiences for developers and users working with 6clicks.
We’ve made the following improvements to the 6clicks platform:
Added filters, custom fields, and values to the "Performance distribution (control tests)" report for better customization.
Removed inactive tenants from the Team Name dropdown at login.
Removed the rate limit on the login OTP endpoint when no SMS is sent.
Enabled sharing of reports via email in the Analytics module. Learn more via this article.
These changes aim to improve your user experience and streamline platform functionality.
We've enhanced the management of linkages between external compliance requirements and controls in 6clicks. Now, when a new version of a framework, standard, or regulation is downloaded, your existing controls are automatically linked.
Key improvements include:
Automatic updates: Control linkages are updated to reflect new versions of your external compliance requirements.
Enhanced visibility: Linkages are shown in control linked-data sections and within RBA assessment tabs.
Background processing: New versions of your external compliance requirements are processed in the background when downloaded, with user notifications upon completion.
Deletion handling: Deleting a linked framework, standard, or regulation removes associated linkages, maintaining data integrity.
These improvements ensure continuous, up-to-date compliance without any disruptions to your control mappings.
We are proud to announce our new control testing feature, designed to enhance your ability to monitor and document the performance of your controls. This capability simplifies the process of ensuring that your controls are functioning correctly, allowing you to quickly identify and address any issues.
Key features:
Create and manage control tests: Easily set up tests to check if your controls are working as intended. These tests will help maintain oversight of control effectiveness.
Link tests across controls: Avoid duplication by linking a single test to multiple controls where applicable, streamlining your testing process.
Record pass/fail results: Log the outcomes of your tests, with each result automatically recorded and displayed in your control set, providing a clear view of control performance.
Access past test results: Review and manage historical test outcomes, ensuring you have a comprehensive log of control effectiveness over time.
Link responsibilities to tests: Associate specific responsibilities and tasks with tests to provide a nuanced view of control effectiveness, even when tasks are completed but controls fail.
Insights tab: Visualize test coverage and success rates, offering a clear, graphical summary of control performance.
New linked data view: Access linked data in published mode via intuitive icon tiles, improving navigation and usability.
Control testing reports: Three new control testing reports are now available in our Analytics module, providing advanced insights into test results and trends.
Developer API: New API endpoints are available to integrate control testing functionality with your existing systems and workflows.
For detailed instructions on utilizing these features, please refer to the 6clicks knowledge base.
Here's a summary of the latest update to 6clicks, including our new login experience and updates to the Developer API:
Enhancements:
Improved login experience with a cleaner, refereshed design and streamlined workflow.
MFA and SSO admin configuration enhancements.
Developer API changes:
Creation functionality has been extended to all modules.
Full Tag support is now available across all modules.
Requirement-based Assessment support has been introduced.
Users can now create assessments directly from templates.
Detailed control responsibilities information.
The full API catalog is accessible under the Integrations > Developer API menu.
Fixes:
API calls now follow application validation logic, ensuring items are not created or updated into invalid states.
We are excited to announce a major upgrade to our Reporting and Analytics module, bringing enhanced usability, new export options, extended reporting capabilities, improved performance, and additional features designed to provide a more seamless and efficient user experience.
Enhancements:
Streamlined UI for easier content type filtering.
Set 'My Favourites' as the entry page for personalized access.
Improved Dashboard canvas resizing and Browse Page functionality.
New export options: Dashboards to XLS with separate tabs, and comprehensive PDF exports.
Support for advanced reporting features like Calculated Fields and Grouped Data in Freehand SQL Views.
New predefined date periods for more flexible filtering.
Fixes:
Enhanced technical improvements for drill-through reports with hard-coded filter values.
We are excited to announce our new capability, which enables you to send assessments in bulk to your entities, business units, or clients. In the context of 6clicks Hub & Spoke, this means you can now select an assessment to send to Spokes without leaving the Hub.
Key features include:
A shiny new "Send Assessment" button in the Audits & Assessments module at the Hub level
The ability to select a question-based assessment (QBA) template to send to Spokes
The ability to filter and select the Spokes that will receive the assessment
The ability to view and edit assessment respondents for each Spoke
A new activity log at the assessment template level tracking the status of each assessment sent to the respective Spokes
For a quick overview of this new functionality, check out this blog post, or learn how to use this feature in our Sending out assessment templates to spokes in bulk knowledge base article.
We are thrilled to announce that Hailey Assist, our new AI-powered chat assistant, has been enabled for all customers globally!
Here are the key points you need to know:
UI changes and new dashboard
Upon logging in, you will notice a refreshed look with our new dashboard. The updated interface is designed to enhance your experience, making navigation smoother and more intuitive.
For a detailed overview of these changes, please refer to the Hailey Assist overview knowledge base article.
Hailey Assist moves to public beta
We are excited to transition Hailey Assist into public beta, making it accessible to all our customers. This feature aims to streamline your workflow and improve productivity through advanced AI capabilities.
Read more about this significant update in our Hailey Assist moves to public beta announcement article.
Please note this change will not impact any data in your team environment.
We are confident that Hailey Assist will provide you with valuable support and enhance your overall experience with our platform. Should you have any questions or need assistance, our support team is ready to help.