317 results found
-
When viewing the linked documents for a particular Requirement Statement, each document should show the date that it was linked .
When viewing the linked documents for the Requirement Statements, each document should show the date that it was linked without having to go through the document repository especially in situations where we request for additional evidence from the assessor. From some assessments I have done so far, I noticed the assessors do not make reference to the newly linked documents so we have to go to the repository to check the date for all documents to see if any was added outside their testing period. This would really help to save time during QA review.
6 votes -
Please allow the CSF tool recognize the " ' " character in controls when searching.
When searching for controls the ' character is not read and therefore returns no results for controls with that character in the control language.
3 votes -
Copy mapping from evidence items to others.
When uploading evidence for controls often one piece of evidence is used for multiple controls or there are multiple evidence items supporting the same control stage (policy, procedure, implemented). The ability to copy the mapping from one item to another would be a huge time saver.
4 votes -
Combine HIPAA Compliance Pack Spreadsheets
Combine the spreadsheets in the HIPAA compliance pack into one spreadsheet.
2 votes -
Change Versions on Custom Assessment Library
custom assessment library
2 votes -
Reset button pop up help
Pop up help on dashboard "reset" button
1 vote -
import system facility
Auto import from excel system and facility information instead of having to double entry into MyCSF one by one manually.
3 votes -
Inheritance Expiration
Indicate when an inheritance is going to expire in less than XX days.
Be able to identify in MyCSF analytics which requirements are inherited (customer view) and if any are expiring in less than 180 days.3 votes -
Show % coverage of authoritative source when creating a targeted assessment
When creating a targeted assessment, MyCSF should show a percentage of the coverage of the authoritative source's requirements provided through the targeted assessment.
1 vote -
Publish changelog and alert when the CSF is changed, but version number not incremented
When changes are made to the CSF, but the version number is not bumped, a changelog should be published and assessors and subscribers should be alerted. Currently subscribers often create spreadsheets of requirements for internal use as they prepare for their next assessment.
Sometimes, for a variety of reasons, the assessment object may get refreshed or even deleted and recreated. If a change has occurred to the CSF that didn't bump the version number, the subscriber will end up with an assessment object that doesn't 100% align with their preparation efforts. This is usually not discovered until well into the…
5 votes -
Control mapping to authoritative source in report
The assessment report should have an option to include the mapping to an authoritative source.
5 votes -
On Org Home page view, place an "Inheritance" badge icon next to assessment(s) published for External Inheritance
Similar to the Certification badge icon, create and place new "Inheritance" badge on Org Home page to quickly identify which of the assessment(s) listed have been published for External Inheritance with a hover-over pop-up dialogue box with either of the following content: "Enabled on [Effective Date]" or "Disabled on [Effective Date]".
8 votes -
Update Inheritance percentage selection box
Customers lose visibility of the percentage number displayed in the inheritance request box when changing the browser zoom. Update display characteristics to dynamically change text size so a number is always present regardless of zoom. Zoom from 75% up to 150 percent should be supported.
2 votes -
Document Upload Alert
Can the tool be updated to send alerts to assessors with access to the assessment when documents are uploaded?
8 votes -
KABAN View
Have the box turn green in each of the phases as they are completed. If something comes back and moves it to a lower phase make it red, the next phase should be highlighted in a new color.
2 votes -
Inheritance Approval Table enhancement
Field Update
- Please add "Response Date" column in the table to analyze our SLA matrix
- "Filter" : Please provide "Select All" checkbox so that by unchecking it we can select the required filter, right now, all fields and data items are marked in "Filter", it takes time to deselect every one of them.
- Show total count for "All" like you have count specified for other fields e.g. "Approved (3000), Rejected (40)...et.c2 votes -
Inheritance Request Dynamic Dashboard
Adding a Dynamic Dashboard for Analysis purpose which can include options to create a dynamic / real time dashboard for Cloud Service Providers as well as Subscribers including but not limited to the following -
- Month wise Inheritance Requests received
- Subscriber wise IRs received
- Status Report (Created | Approved | Rejected | Cancelled ...etc.)
- Realtime Trend analysis to show increase / decrease in IRs.For Subscriber -
- Realtime status report for their requests (Approved , Rejected ...etc.)Also a feature of Automated notification to CSPs and Subscribers on a
weekly / Monthly / Yearly basis…3 votes -
Add some way to identify when a control is required to be sampled.
Peer the test plan requirement, is there any way within MyCSF where the assessor can note this is SAMPLED requirement, so then the client does not submit evidence that cannot be used since the control request sampling?
19 votes -
Automatic Update upon CAP completion
Provide option to automatically update MyCSF score related to CAP (Policy/Procedure/Implementation) for all requirements related to CAP upon selection of "completed" stage.
3 votes -
Standardize role names
Update the role names under Names and Security. As assessors we are often assigned "Assessment Lead" rather than "Assessor". "Subscriber" is used elsewhere to identify those being assessed (e.g., Subscriber Comments). The identifiers should be consistent across the platform. Thanks.
3 votes
- Don't see your idea?