Recent development in Cyberday

Subscribe for our newsletter and you'll receive a digest of new product updates weekly. Newsletter also includes a list of most important cyber security news and upcoming free webinars.
Kiitos! Klikkaa vielä saamaasi vahvistuslinkkiä (sähköposti otsikolla "Vahvista sähköpostiosoitteesi") ja uutiskirje saapuu jatkossa sähköpostiisi.
Valitettavasti jotain meni pieleen. Voit olla yhteydessä
small improvement
September 8, 2023

Date filtering for documentation tables

In all documentation tables, you can now use three important date fields and the desired year to filter items.

The related date fields are:

  • Item's original creation date
  • Date of previous change
  • Date of previous status change

This will e.g. help you filter our "incidents happening in 2022" or "improvements progressed during 2023".

new feature
September 8, 2023

Report version log improvements

Now you can switch to view a previous version of the selected report by clicking on the selected version from the version log. In the future, we will bring in monthly status reports into Cyberday, where this is a particularly important feature.

At the same time, other clarifications were made to the left menu section of reports.

small improvement
September 8, 2023

Displaying non-conformity types clearly

Non-conformities are important items in your ISMS which are especially managed in relation to internal audits. Non-conformities can be major, minor or morely "improvement potential".

All related places now display this vital type information better, so you can focus your attention on the most severe non-conformities.

new feature
August 25, 2023

AD-syncing or unit-employee connections

You can now fetch units from AD and get current Cyberday users synced to the selected units. All AD groups are available to be used for syncing.

Find this feature from the new Edit structure -page.

new feature
August 25, 2023

New Edit organization structure -page

You'll find a new page on the left menu, Organization -> Edit structure.

This page can be used to divide your organization into relevant units. Units are meant for e.g. delegating guidelines in a more targeted way. We're also developing a feature currently, where the implementation of a task can be separately delegated for selected units. This can be relevant in situations, where e.g. 2 clearly separate branches of your company have very different processes.

small improvement
August 18, 2023

Updates to SharePoint file picker

We rebuilt part of the SharePoint file linking logic, because the previously used ready-made libraries worked too in a too unstable way.

The feature of linking external files now works the same as it did before, but should fail a lot less. Also now you can complete the whole process inside Teams desktop app too, and don't need to jump to the browser Teams side. 👍

August 18, 2023

Link multiple participants to tasks

You can now connect multiple users to a single tasks, similarly as for documentation items previously.

You can use this feature e.g. when you have a large organization and need input from multiple units, or when you have e.g. a separate partner responsible for the technical implementation of a task, but your owner keeps the overall responsibility.

"Tasks you're participating in" will show up on the Taskbook for all users, but with a smaller emphasis than the tasks where you're the actual owner.

small improvement
June 16, 2023

Summary: Cyberday content update v46

We regularly update Cyberday's content templates so that they remain in line with different security requirements and general good practices. Now it was time for the content update v46, during which we updated our documentation templates with numerous customer-wished improvements.  

Changes are mostly "small but important". This update small summaries about the most notable changes.

Extended documentation card for system providers and personal data processors

We added the following sections:

  • Does the partner belong to the supply chain of the services we offer?
  • How critical information does the partner process?
  • Ability to influence the content of the contract? (small, average, high)
  • Kuinka vaikeaa kumppanin korvaaminen on? (helppo, vaikea, mahdoton)
  • How is the partners cybersecurity level verified? (via certifications, own monitoring actions or in no way)

The changes are intended to help identify critical partners and ensure that for important partners we have sufficient evidence gathered of their information security level.

In the future, we will create more features for monitoring partners, through which you can e.g. send information security questionnaires to desired partners.

Extended documentation card for other security requirements

We improved the management of other security requirements with the following additions:

  • Connected customers
  • What measures are taken to fulfill the requirement?
  • Connected tasks
  • Connected assets in the ISMS

With the help of these additions, it is possible to more clearly document, for example, additional commitments given to individual customers or own quality requirements - and related measures and other items in the management system.

Extended documentation card for units and sites (previously offices)

Additions were made to the documentation cards of the units and sites, which will be included in the new "Organizational structure" page in the future. Through this page, you can more precisely define which units and sites your organization is made up of. Units can also be classified according to their nature (department, team, subsidiary, etc.) and into main units vs. sub-units.

New section for joint controllers on data store documentation

Important small addition on the data store documentation cards:

  • Is the processing of the data decided together with another organization?
  • If it is, the joint controller(s) in question must then be named

New optional Support-question on data systems

We added an optional question on the data system card:

  • How do users get support for using the system?

Topics related to user support can be addressed under the question.

new feature
June 9, 2023

New frameworks: NIS2 and SOC 2

We are just publishing 2 new frameworks to Cyberday! 

NIS2 sets the baseline for cybersecurity measures, supply chain security and reporting obligations across critical industries, such as energy, transport, health, food, waste, public administration and digital infrastructure.

SOC 2 specifies how organizations should protect customer data from e.g. unauthorized access, security incidents or other vulnerabilities. It is developed by the American Institute of Certified Public Accountants (AICPA) and is especially popular in the USA.

small improvement
June 9, 2023

Choose reports included in report sharing views

Previously, when sharing reports from Cyberday, the listing was formed directly based on the selected framework and "starred" reports.

Now you can also choose another way for sharing reports, where you can freely pick the reports to be included. This method also supports all report types, i.e. you can also include list or item reports you have created yourself, as well as for example visual reports.

small improvement
May 19, 2023

Internal audits by Cyberday themes

Some organizations run their own ISMS in Cyberday based on several different requirement frameworks.

In these situations, internal auditing separately for each framework can become an unnecessarily heavy process.

Now Cyberday also supports a operating method where audits can be targeted at selected Cyberday themes. In this way it is possible to audit, for example, 4 themes per year and achieve full coverage (12/12) for the internal audit of the ISMS every 3 years. 👍

small improvement
May 12, 2023

Improvements to Cyberday Academy

We're going to be investing more and more on better help and support materials, which will guide you forward in your Cyberday usage, no matter if you're just getting started, already nicely running or an advanced ISMS admin looking for continuous improvement.

To support this, we renewed the concept in Cyberday Academy a bit. All Academy content is now categorized under topics like "risk management", "ISO 27001", "personnel security" or "getting started", so you can find just the right collection of different kind of materials you need. We also added an own left menu for the Academy, so you can easily navigate to all content. Menu lists the topics, but also the different content formats - help articles, video courses and blog articles. Academy will now regularly start getting new content updates.

So choose your topic or preferred learning type, and start learning with us. 🎓

small improvement
May 12, 2023

Small improvements to embed-type reports

We improved the usability of embed-type reports (e.g. privacy notices), which are designed to be embedded into your public websites to serve customers / other stakeholders publicly.

Now e.g. the scrollbar is more clearly visible but also matches your selected theme color, so it should nicely look like a natural part of your website.

Any wishes for further improvements are highly encouraged. 👍

new feature
April 28, 2023

See upcoming frameworks and influence

Our team will start maintaining a list of upcoming new security frameworks both within Cyberday app and on the website.

As a user of Cyberday, you can influence our priorities by upvoting the frameworks that are important for you with short justifications.

Check out the current listing >>

new feature
April 21, 2023

File linking from SharePoint

You can now pick files from your SharePoint environment related to all the items in Cyberday (tasks, guidelines, documentation). These can be, for example, policy documents related to the task, process drawings describing the connections of a data system, PowerPoint instructions related to staff guidelines, or contracts related to the system provider's card.

To start using the feature, you must fill in the appropriate SharePoint site information under Organization settings in the Settings-page so we know where to retrieve the files from. 👍