Ability to link an analytics chart and view it in the 6clicks home dashboard area

Ability to link different data objects from across the 6clicks platform to projects & playbook for audit planning, improved resilience and incident playbooks, and more.​

• New user interface and task management user experience.​
• Link Projects & Playbooks tasks to data objects across key modules, including audits and assessments, risks, issues and incidents, registers, controls and third parties.​
• Report on projects & playbooks natively and via BI tools, including Power BI.​
• Access projects & playbooks via the Custom Workflow Builder and 6clicks Developer API for bespoke workflows and integrations.​

QBA Assessment scope definition by linking to register items e.g. Assets, other custom register items
QBA Results page: Ability to link to other available content across the platform

Everything required to support PCI-DSS v4.0

1. Authority creation​
2. Assessment template creation​
3. ROC template creation​

Empower admins to create smart, dynamic RBA assessments by defining rules that drive how custom fields behave - based on the context of each compliance requirement, control, or answer.

Display condition
“Show a field only for certain compliance requirements or control types.”
Example:

• Field: “Encryption Type”
• Condition: Display this field only when the Requirement section = Data Security
• Result: This field won't appear for irrelevant controls, reducing noise.

Focused on presenting the information in an efficient way.​
​1. Table grid changes – Configurability, Ordering, Sorting, Filtering​

1. Better performance during response collection
2. Side panel simplification​
3. Assessment scope definition (linking register items to assessment)​
4. Linked data tab to support all the linked data across the application​

Module: Risk Workflow
Capability: Ability to check for conditions before entering a particular stage

Improving the UX around creation of risk assessments

Easily find and filter linked items using improved semantic and fuzzy search capabilities across registers, assessments and other content types.

Supports intuitive search for related data such as controls to provisions, provisions to provisions, and assessments to controls/provisions, register items to other linked data

To enhance the Risk Assessment section by allowing users to define custom formulas, instead of being limited to the default MAX formula currently available. This would greatly improve flexibility and allow for more accurate or tailored risk scoring and other risk calculations like severity, risk value, residual risk, etc. based on our specific needs, at least arithmetic operations for now.

eg- Severity of an event = Impact 1 + Impact 2 + Impact 3
Risk Value = Service Value * Severity * Likelihood

Authorities/provisions linked to a control are not reflected in the audit report. Extend audit report fields to include authority chapters that have been linked to the controls.

An overview of all audits cannot be exported. Allow for exporting to Excel (like the overview of risks and issues).

An overview of all control sets cannot be exported. Allow for exporting to Excel (like the overview of risks and issues).

External audit report cannot be attached to an audit/assessment (outside of the Response, just in the Overview). Allow upload of one PDF outside of the Response section (in the Overview).

Task due date reminder cannot be set to recurring; one condition must be created for each recurrence, resulting in never-ending conditions. Allow for recurring conditions under Notifications.

Once there are enough risks/issues/audits that there is more than one page of these items, clicking into an item from page 2 onwards and then on "Back" will always bring you back to page 1, not the page you were previously on.

When the Status of a Task is changed (e.g., reverted to New) by someone other than the Task Owner, the Task Owner is not notified. Send notification as soon as Task Status is changed.

We’re introducing automation for reassigning items when a user is deleted. You’ll be able to configure a default user for such scenarios — particularly useful in SSO and user group-based spoke assignments use-cases.

New button to reassign all items from one user to another, directly from the Users page.

When I add a new assignee to a treatment plan for a specified risk, they should automatically be added as access members of the risk. This will allow them to review the context of the risk and their respective treatment plan. The same process should apply to any registers or tasks.

The new risk dashboard is a welcomed addition. I find it almost useful. A few improvements will make it fully useful:
Risk Dashboard tab:

• Additional filter: Risk Assessment Label, Risk Owner
• A widget/report that shows risks closed within a chosen period (this will require a relevant filter).
  Risk Assessment tab
• Additional filters: Risk Domain, Risk Tag, Risk Owner
• Change “Matrix Rating” to “Risk Rating”
  Treatment Plan tab
• Additional filters: Risk Domain, Risk Tag, and Risk Rating, Risk Assessment Label, Risk Owner

As discussed with Ryan & Cindy, We are using '6Clicks' Risks Registers Dev API. However, we have found out that there are few columns/fields missing and Ryan has confirmed back saying they are missing and needs to raise a 'Feature requests' from our end. Here are the missing columns we needed into this API are as follows:

'Access Members',
‘Control Name 1’ ,
'Control Owner'
'Control Owner 1'

If I am an administrator of a hub and I am within a spoke that I am an advisor for, I should be able to see support links within the spoke environment. There are some situations when trying to report a bug, where I actively have to navigate away from the bug to the hub level just so that I can open the reporting mechanism. By this point, I have lost my reference point to the bug, limiting the information I can provide. It is also a disruptive workflow when looking to consult the Knowledge Base when implementing something at the spoke level.

Currently to edit lists within custom fields, users must double click the correct field row. Conscious that every other modification to a field has a UI element, I think an additional ribbon option, such as 'modify field attributes' or an addition of a clearly clickable element to modify attributes of a custom field would be a great improvement to minimise user confusion and maintain consistency with other UI elements.

You should be able to rearrange the ordering of fields within a widget.