You can now invite colleagues from outside your security team to collaborate on questionnaires, providing business owners with visibility for vendor follow-ups and enabling input from contributors across departments. These users can view questionnaires, receive status updates, participate in reviews, and communicate internally through messages.
To learn more, see How to send security questionnaires in UpGuard Vendor Risk.
APRA CPS 230 questionnaire
We’ve added a new security questionnaire to assess an organization’s adherence to the Australian Prudential Regulation Authority's (APRA) Prudential Standard CPS 230 Operational Risk Management. CPS 230 ensures that APRA-regulated entities effectively manage operational risks to maintain the resilience of critical operations. This questionnaire covers all APRA-regulated entities' requirements, including key principles, risk management framework, roles and responsibilities, operational risk management, business continuity, and service provider arrangements.
Product detection and scanning improvements
We’ve introduced new product detections in BreachSight and vulnerability detection across our platform:
- CUPS product & version detection
- CUPS CVE-2024-47176 vulnerability detection
- GeoServer product & version detection
- Apache OFBiz product detection
Other improvements
- The SIG Lite questionnaire has been updated to make document upload requests conditional
- This release includes a number of bug fixes