Documentation

Ignyte Assurance Platform is a SaaS Governance, Risk, and Compliance (GRC) software application used as a cloud-based network discovery platform that inventories your connected IT and OT environments. Asset inventories are the building blocks to any attack surface reduction and incident response program. That’s why our platform will help you accurately identify and monitor your IT assets – so you can always know what’s on your network. Integrating with Ignyte’s Asset API keeps your asset inventory current and scans on-target.

Download Ignyte API documentation for offline use

Quick start

  • Review the glossary: The Glossary covers terms you will want to know.
  • Explore the API: The API focuses on Assets as a key driver of risk assessments and ensuring alignment of assets to requirements and continuous monitoring.
  • Our Platform: The Release Notes help you explore our product and its capabilities.

Glossary

As you read through the documentation, you will see commonly used terms. These are the definitions of each to familiarize yourself with ahead of time.

API Key

The application programming interface (API) key the alpha-numeric code used to identify and authenticate an application or user. API keys are available through your instance of the platform.

GET

GET is used to retrieve data from a server at the specified resource. Making a GET request to the specific endpoint should return a list of all assets.

POST

POST is used to send data to a server to create/update a resource.

Leveraging the API

Ignyte provides one primary APIs as well as integration-specific endpoints:

  • The Asset API provides Get, Post, and Delete capabilities to asset data.

To get started, you will need an API key. The API key are generated from the Ignyte Assurance Platform Tenant Settings page.
Note that the API requires a Software license.

Once you have the API key, your REST client should use it with the Authorization: Bearer standard header to authenticate.

Please see our GITHUB page for more information about our API or go directly to the Swagger documentation for details on the individual API calls.

The application programming interface (API) key the alpha-numeric code used to identify and authenticate an application or user. API keys are available through your instance of the platform.

GET is used to retrieve data from a server at the specified resource. Making a GET request to the specific endpoint should return a list of all assets.

Platform Release Notes

v8.0 – Obadiah

2023-03-31

  • Technical upgrade release.

v7.11 – Amos

2023-02-13

  • Under Custom or Micro framework builder, a feature to add multiple test cases for a single control.
  • Added the ability to upload multiple test case attributes through Excel upload on Import Control Response. 
  • When editing a Custom or Micro framework, under the Organize tab, there is an enhancement in editing control functionality pop-up window.   
  • Additional features in the POA&M custom fields configuration from Advanced Configuration in Edit System to show or hide fields.

v7.10 – Joel

2023-01-18

  • The Vendor List view allows users to access and observe the Vendor Stage and Vendor Criticality information.
  • The feature enables the inclusion of “N/A” as a selectable answer option for both types of answers in Criticality assessment questions.
  • The system has the capability to notify the Vendor Risk Analyst, once the Assessment is sent to the POC admin.
  • In the Configure Classification area, the feature prevents users from selecting the same Vendor Assessments to Vendor Criticality Range.
  • An auto select feature of the Assessments was added in Send Assessment window as per Criticality of the vendor.
  • The ability to show Progression overtime graph for individual streams is now available.
  • The ability to add a new system status for a CMMC level 6 framework-based system was added.
  • When View History of an Assessment is opened, a new feature is added to retain the highlighting on the selected Assessment.
  • In Enable Inheritance under Settings, the character limits were increased to 5000 for the Inheritance Name and Purpose fields.
  • Additional success messages appear now when editing Vendor Settings.

v7.9 – Hosea

2023-01-10

  • The ability to view bulk control comments in a downloadable Excel template is now available for a System.
  • Drag & Drop file functionality was implemented in Document Management folders.
  • A feature was added to apply an Inheritance between two NIST 800 171A systems, including its linkage, attributes, controls, and the ability to add scales. Also, the auto-exchange of artifacts and latest comments for linked systems, as well as the visibility of default scales in the configure attributes section of inheritance.

v7.8 – Daniel

2022-12-22

  • The ability to export Vendor issues to Excel was added.
  • ”View History” link available to view the history of a Policy while Reviewing /Approving.
  • Added feature to configure default and custom fields for POA&Ms in every compliance system.

v7.7 – Ezekiel

2022-11-21

  • Additional folder option for Policy Management is available in the Document Management area.
  • New widgets for Vendor analytics, Issues, and Assessments.
  • Implemented the ability to search for Controls when mapping with Sub Framework system records.
  • Unmapping feature added to Custom SoR.
  • Ability to reorder fields for the Vendor Module lists in both Assessments & Assessment Results.
  • Comments can be saved as “Draft” now in Requirements table view under a control.
  • A new view is available on the Manage Vendors page.
  • SCAP Assets under Assets has two mappings now, manual and auto-mapped based on CCID matching.
  • The search filter under Policy Management has been enhanced.
  • There is a new tab in User Management to easily view users with Vender Management related roles.
  • More flexibility has been added to the Configure Vendor Stages within Vendor Settings.
  • Micro and Custom Framework related improvements.

v7.6 – Lamentations

2022-10-21

  • Enhanced automation around the creation of a Vendor POC admin
  • New POC Assessments Dashboard to view all assigned assessment on one screen
  • Expanded visibility of activity history to the question level in Track Assessment Details

v7.5 – Jeremiah

2022-10-14

  • Additional configuration feature is available to Criticality Assessment Questions
  • Feature to organize criticality assessment questions along with other information
  • Enhancement made to the display on the Assess Criticality screen
  • Customization of risk weightage available in Settings area

v7.4 – Isaiah

2022-09-20

  • New Dashboard widgets related to the Vendor Management Module are available for use.
  • A feature was added to allow users to save draft comments in requirements under a control.
  • New configuration option to default the stage of a newly created vendor to ‘Onboarding’ and to customize the stage names.
  • Default primary scales were added to the micro framework builder for new micro frameworks.
  • The columns visible on the Vendor Issues page were modified to include ID and Question columns.
  • Overdue assessment can be conditional flagged as not deletable.
  • Enhanced search functionality added to the Vendor Issues page.
  • From the Assessments page, clicking on the number of issues value redirects the user to a filtered view of only the associated issues.
  • The ability to upload artifacts and associate it to a Vendor and a specific folder was added in Document Management.

v7.3 – Song of Solomon

2022-08-23

  • Additional nuances made to the Vendor Management microservice.
  • Enhanced the comment and bulk operations editor to allow for bold, italic, and underline formatting.
  • Associated options for Coverage and Effectiveness are now visible and display in system scales in Edit or Add Custom Framework mode.
  • Changed the display name in the SCAP tab results drop-down to show the stream name for ease of selection.

v7.2 – Ecclesiastes

2022-08-05

  • Added the ability to have default primary scales for a new custom framework being created in Custom Framework Builder flow.
  • Additional updates made to the Vendor Management microservice.

v7.1 – Proverbs

2022-07-21

  • Default guidance & custom guidance is viewable in the Requirements Table View and exportable.
  • Additional updates made to the Vendor Management microservice.
  • Ability to edit all of the attributes of the NIST RMF Rev.4 system scales in the Compliance system.

v7.0 – Psalms

2022-06-15

  • Updated entire Vendor Management microservice.

Older Platform Release Notes

v6.1 – Esther

2022-05-12

  • Added bulk upload to Response Builder. Now, you can save time by uploading a large volume of responses to any cybersecurity framework.
  • Manage the list of existing Responses: edit, archive, delete.
  • Review the edit history in the Response Builder to monitor previous changes applied to the Responses in any framework.
  • Display the Responses in the comments area of each recently assessed control by default both in the list and table view options.
  • Automatically change the status of POA&M according to the Control Status.
  • Receive an email notification for successful Rumble data scans with their synchronization statuses.

v6.0 – Nehemiah

2022-04-28

  • Ability to set custom notifications individually or in bulk for SoR fields based on certain conditions and frequency.
  • Ability to create POA&M custom fields, manage such fields and specify mandatory status.
  • Improved Assets interface by adding different sub-tabs for better categorization, and the ability to distinguish manually and automatically mapped SCAP Assets.
  • In the Compliance module, you can now edit the last added comment both in the list and table views.
  • Added bulk reset values option to the controls assessment.
  • Implemented a number of changes to improve the user interface and experience:
  • Consolidated the Excel export file to only show the latest comment in the Requirements column.
  • The widget showing the Assessed control percentage piechart is now taking into consideration only active or enabled controls for the system.
  • Deficiencies are now sorted in the descending order in POA&M Excel export

v5.9 – Ezra

2022-04-19

  • Scales and statuses have been standardized across all new CMMC systems. Additional activity tracking within artifacts is now displayed. This allows for more insight into artifact history and user activity.
  • Custom options may now be added within Categorize for any compliance system containing the Categorize option. This increases the flexibility of categorization.
  • Additional values including “Partially Compliant” and “Unknown” are now available for selection in the Projected Status drop-down within a compliance system’s Mapping Intelligence. This enables a more accurate account of the control’s implementation.
  • Controls are now highlighted on mouse hover, increasing assessment ease.
  • Compliance system scales may now be set with the same weight. This allows the user to define equally weighted implementation statuses if desired.

v5.8 – 2 Chronicles

2022-04-11

  • SCF mappings can now be modified for each line item in the Risk & Threat sub-frameworks. This allows more control over each item in the sub frameworks.
  • SCF controls have been auto-mapped for the Risk & Threat Sub-Frameworks. This reduces the configuration time of an SCF system.
  • Existing Inheritance linkages can now be deleted directly from the inheritance list to improve accuracy and functionality.
  • Default scales for both systems are visible in the configure attributes section. This allows the scales to be easily linked or unlinked.
  • New capability to import Multi Line text box data as comma separated items in the Custom SoR upload template. This allows for more data to be uploaded in bulk using the template.
  • The ‘Control Name’ character length has been increased to 250 characters.
  • An additional compliance system widget has been added. This Assessed Controls widget in the System Overview area allows the user to see what percentage of controls have been assessed. This differs from the left widget, which reflects the compliance percentage.

v5.7 – 1 Chronicles

2022-03-18

  • Assets API has been exposed to increase the platform’s ability to integrate with other software.
  • Artifacts can now be inherited to a child SCF system from a parent SCF system. This decreases the maintenance required for two related SFC systems.
  • Suggested Framework Mappings are now shown as a tab within a compliance system’s Requirements. This increases the ability to compare frameworks. It offers visibility into other frameworks which the selected control aligns with.

v5.6 – 2 Kings

2022-03-09

  • Multi-milestone interim completion date functionality has been added to better manage POA&M remediations.
  • New ability to select a value for all preconfigured drop-down fields within the Assets & Custom SoR import template. This allows for faster Asset and Custom SoR data input.
  • The exportable POA&M report now incorporates open and closed deficiency items into one sheet. This increases ease and provides better overall deficiency visibility.
  • An additional status for stalled POA&M items has been added to the POA&M status drop-down.
  • SCAP Data can now be exported into a spreadsheet.This enhancement improves record keeping for machine hardening data.
  • A new capability to notify an external user for asset notifications has been added. This allows non-platform users to be included for better asset management.

v5.5 – 1 Kings

2022-02-25

  • Single Drop-down fields for the Assets module & Sub-Frameworks have been included within settings.
  • Custom SoR permissioning is now available in a compliance system’s Advanced Configuration.
  • Fields can now be dragged and dropped to reorder elements within NIST RMF System Registration
  • NIST 800-171A characterization fields have been added for SSP report generation.
  • New values in the projected status drop-down within SCF Mapping Intelligence are now present. The ability to export mapping data is also now included.
  • Multiple frameworks can now be accessed in Mapping Intelligence as well as a new ability to filter by status.
  • There is a new feature to enable SCAP and Custom SoR view and edit permissions within user management edit.
  • Page numbering has been added to the role management landing page.

v5.4 – 2 Samuel

2022-02-11

  • A feature has been added to System Inheritance which allows for the auto-exchange of two linked system’s Latest Comments.
  • There is a new ability to add single selection drop-down fields within Advanced System Registration.
  • The POA&M Deficiency Report has been updated to include new fields such as responsible POC, resource estimate, changes to milestones, and milestone completion dates. The character limit of the POA&M fields has also increased to 5000. This ensures a complete POA&M Excel export.
  • The ability to generate a System Security Plan (SSP) for NIST 800-171A Frameworks has been added.
  • A new capability to view the changes to a custom filter in a Compliance System has been added.
  • More asset data fields such as End of Life (EoL) have been added to the Assets Module. Additionally, custom fields are no longer updated by integrated connectors.
  • A comment section has been included for all results in the SCAP module.

v5.3 – 1 Samuel

2022-01-27

  • Custom Notifications can now be configured and set for the custom attributes within the Assets module to ensure that any necessary changes for assets are being alerted to the designated individuals.
  • A new Kanban view feature allows for a customizable board to organize compliance systems in the system list in the main Compliance dashboard.
  • Improved capability to configure specific Government-related registration fields and forms for NIST RMF frameworks.
  • Macros, or in other words variables, can now be implemented within a system using the options tab for rapidly changing keywords in the control implementation details.
  • System Inheritance & inheritance rule configuration options for specific compliance frameworks have been placed within the settings configuration to improve efficiency through reciprocity for controls, statuses, and implementation details.
  • Within a compliance system’s requirements, a new filter: “Search by Mapped Framework” has been added to quickly view only mapped controls.
  • A new ability to Map SCAP Assets to controls in any compliance system from the SCAP module, just like standard assets to improve scoping of all assets to compliance.

v5.2 – Ruth

2021-12-29

  • Maintenance Release

v5.1 – Judges

2021-11-18

  • The Secure Controls Framework has been updated to version 2021.2 and now contains 31 additional controls.
  • Paging has been added to Locations, Divisions, Departments, and Business Unit pages.
  • Framework and SubFramework mappings now have the ability to be viewed and turned on or off in a compliance system’s requirements.
  • SCAP assets can now be linked to the Compliance module.
  • SCAP assets also may be linked from the Compliance module.
  • Within the NIST CSF v_1.1 Framework, additional scales for As Is and To Be Maturity, as well as Effectiveness, have been enabled for bulk update.

v5.0 – Joshua

2021-10-28

  • Default risk and threat sub frameworks have been enabled in SCF systems.
  • Ability to link multiple artifacts to a single or multiple controls.
  • SCAP Improvements | Uploading XML’s on Display Screen, XML Deletion, Results Reordering, and Trend Widgets.
  • New Default Status/Scale in CMMC highest maturity level systems.
  • New feature to add Licensed Default Responses/Comments in a control.
  • Custom SoR Bulk Records Updating | Reordering Enhancements.
  • New capability to display only Active Tabs inside the tab customization menu for reordering compliance control panels.

v4.21 – Deuteronomy

2021-10-05

  • Any two Custom SoR or Asset fields may now have their positions swapped with each other within the respective settings area.
  • New ability to map a compliance system to any configured Micro or Custom Framework.
  • Additional attributes have been added to the Define phase of adding a new custom framework.
  • CCI definitions are now displayed when hovering a mouse over the Identities CCI within the SCAP module.
  • New capability to add a comment within any failed SCAP result.

v4.20 – Numbers

2021-09-14

  • Within the Requirements section of the Compliance module, the Timeline feature now displays more insight into actions performed within the platform along with the user who performed the action.
  • POA&Ms can now be created for all accessible controls.
  • All top navigation menu items can be reordered – within the platform navigate to Settings | Organizational Settings | Menu Customization. Icons are also now displayed alongside the menu names.
  • New capability for many-to-many artifact/control mappings.
  • New feature to create Custom SoR widgets based on the name, record type, and count of records
  • Added the ability to create and store tags for the Assets & Custom SoR Modules.
  • Capability to bulk update the Custom SoR Records and Fields.

v4.19 – Leviticus

2021-09-07

  • Updates to the SCF Framework include the ability to filter by Function Grouping and SCL Level. Within each SCF domain, Principal and Principal Intent are now displayed.
  • Control navigation tabs can now be reordered in advanced configuration.
  • Inline editing is now featured in Sub Frameworks, Assets, and SoRs.
  • Pagination has been added for Assets and SoRs.
  • New capability to import custom SoR fields and records from an excel sheet. Easily Save & Map the new custom fields and records.
  • New Feature to add multi-line text boxes within Assets, SoRs & Sub Frameworks.
  • Default fields may now be configured by selecting the gear icon and checking or unchecking the box next to the field name.

v4.18 – Exodus

2021-08-20

  • Ability to upload, manage, and view SCAP data/trends inside the new SCAP.
  • Up to 5 Sub Frameworks can now be configured per instance.
  • Updates to the Secure Control Framework (SCF) include: domain, subdomain, and ID modifications, the addition of a question per control, a new control filter called “function grouping”, control statuses, relative control weighting, and the ability to enable or disable status definitions.
  • ISO 27001:2013 Framework updates include the new capability to select an ISO level and the addition of new controls.

v4.17 – Genesis

2021-08-03

  • New feature to Preview & Download the Artifact linked to a Control.
  • Frequency was added as an attribute under Bulk Operations when assigning an Owner or Operator to a control.
  • The mapped Control Percentages are now shown over Coverage Diagram & Coverage Grid.
  • New ability to enable or disable the Policy Pack option under Advanced Configurations.
  • The Character Limit for all Text Field and Text Areas has been increased.

v4.16

2021-07-20

  • New capability to create different folders inside of the Global Document Management system.
  • Single Sign On has been implemented for Tenants to login to their multiple accounts using the same email ID.
  • A new multi-selection checkbox for the drop-down choices within custom SoR, Asset Type, and Sub Framework settings has been added.
  • Feature included to drag & drop the files or documents from one Artifact folder to any other folder within the same compliance system of record.
  • A Stacked bar chart is now displayed in a system’s ‘Overview’ tab to show the percentage of mapped controls for a selected system across other industry legislations. The mapped controls that are compliant are displayed in green, the non compliant controls are in red, and unmapped controls are shown in gray.

v4.15

2021-07-02

  • Document Management enhancement made that includes artifact collection for custom System of Record (SoR), assets and POA&Ms.
  • Custom System of Record (SoR) improvements include: limit increased from 5 to 10 for the number allowed, UI enhancements, and artifact collection.
  • New Data Types have been added to custom SoR, assets and subframework.

v4.14

2021-06-11

  • Two new Master Frameworks specific to NIST 800-171 and 171A have been added to the Framework Library which helps to understand the maturity level around the emerging CMMC requirements.
  • Added a new artifact type “URL” to provide the ability to link externally hosted information.
  • Custom SoR and Asset Management improvements include: pagination, cell coloring, template importing, and archiving.

v4.13

2021-05-28

  • In the Requirements area, the ability to place the POA&MS section next to the Control Tab has been added.
  • New functionality added under Bulk Operations to group “Status”, “Points Possible” & “Change Assignments” into one group called “Start Assessment”.
  • Wherever the “Color Picker” is featured, the ability to set Default Color throughout the application is now available.

v4.12

2021-05-28

  • The ability to configure a system-level Sub-Framework Menu and Panel has been added.
  • Functionality to add the newly configured Sub-Framework menu is included under the System Overview screen.
  • The ability to add a Control Reference column to the Sub-Framework menu on the System Overview screen is available.

v4.11

2021-05-10

  • NIST 800 -171A Framework updates include the capability to integrate a framework, group frameworks (ex. NIST 800 – 171, 800-171A, Both or Merged), and switch between groups after creating a system.
  • Deficiency and Id fields may now be mapped using the POA&M Panel.
  • Functionality to configure a Framework Mapping option under Advanced Configuration at the Tenant Level has been added. Additionally, Mapped Framework controls can now be shown at the Tenant Level (by Config Manager).
  • Mapped Framework Controls are now shown at the system’s control level.
  • Updates to POA&Ms include the ability to create POA&M Widgets by Status and by the top 10 most deficient controls.
  • The Artifact folder is now able to be shown under the Artifact Requester Configuration Form.

v4.10

2021-04-23

  • Relationships may now be created between Custom Systems of Records.
  • A feature has been added to show color on all of the drop down fields for SoR & Assets.
  • POA&Ms can now be created from the Control Level.
  • New functionality to bulk update the POA&MS record has been added.
  • The ability to show framework specific fields over the gear icon for the Requirements Table View is now present.
  • The capability to show color for the drop down choices for all of the default fields as well as for a particular cell has been included.

v4.09/4.08

2021-03-26

  • The capability to create a Default Folder in Document Management and Default Documents for the CMMC Framework has been added.
  • Attachments can now be uploaded from the POA&MS level inside of the Artifact Folder.
  • Attachments may now be uploaded from the Control Level inside of the Artifact Folder.
  • There is now an improved table view in the Compliance module. This includes adjustable columns and the ability to reorder items.
  • Functionality to bulk export records into an excel sheet for custom SoR is now included.
  • The Relationship Builder on the main screen has been enhanced.

v4.07

2021-03-09

  • POA&M Features added including: the display of custom POA&M Fields under the default field, redirection to a control from the POA&M section of the platform, the display of a newly created POA&M as the name of a control, and a new “IN PROGRESS” status.
  • Functionality to add colored Control Tags in the platform’s Table Views.
  • The Record Type SoR may now be imported using a templated excel spreadsheet.
  • SoR and Assets can now show color for drop down boxes on cells.
  • An option to change the control status from Table View to List View has been added with a gear icon. Additionally, gear icons now enable/disable columns from the Table View.
  • Add/Reorder Requirements updates involve: the section now staying expanded after moving a control, Expand All & Collapse All functionality, and a feature adding a “Shift Up” & “Shift Down” option.

v4.06

2021-02-12

  • New feature to add a timeline for registered deficiencies.
  • Control default weightages can now be modified for all frameworks.
  • New ability to show Table View for the Requirement screen.
  • Control Tags may now be shown from the Requirement List View.
  • Color Coding and percentage descriptions are now displayed over the control UI.
  • Capability for searching and sorting within Tenant Management has been added.
  • Adhoc SoR enhancements have been made.

v4.05

2021-02-12

  • An adhoc SoR (System of Records) has been implemented.
  • A Disable Save button is now present in Asset Fields when no Assets Fields have been applied.
  • The Manage Control panel was renamed to Bulk Operations and a Status column has replaced the previously displayed green dot icon.
  • The Manage Tailoring panel has been renamed to Framework Editor.
  • Manage Tailoring (Framework Editor) and Manage Controls (Bulk Operations) have switched positions in the platform. The navigation list order is now: System CUI, Characterization, Bulk Operations, Framework Editor, Add & Reorder Requirements, User Permissions, and Edit System.

v4.04

2020-12-23

  • Feature to add new customizable columns is now available on the Assets screen.
  • Control Scoring feature added.
  • Users may now add Hyperlinks in the Guidance during bulk upload.
  • In Bulk Control Guidance, an “Add Comment” section enhancement was made.
  • In the Default Dashboard, a “Standard View” uncheck option is now available.
  • Assets Icon improvements have been made.

Older Release Notes

If you are looking for older Release Notes or Module specific material, please contact your account manager or email support@ignyteplatform.com to request additional information.

Ignyte Platform becomes a third-party assessment organization (3PAO), now listed on the FedRAMP Marketplace - Read More

X