We are hiring! Job offers

Back

Changelog

Depending on the configuration of rights and licensing, certain sections and functionalities are restricted or not available.

API

10.0.0

  • It is now possible to obtain an Access-Token through the OAuth2 endpoint /api.php/v1/authorization/token.
  • The new config parameters api_debug_request_logger_uri_filter, api_debug_request_logger_method_filter, api_debug_response_logger_status_code_filter, allows to activate a request and response log only for certain API requests for debugging purposes.

Analysis

10.0.0

  • The derivation of a process / object evaluation was improved.

Calculations

10.0.2

  • The traffic light values are now saved in the calculation kernel and invalid data records are deleted during migration.

Comments

10.0.0

  • The commented value is now displayed in the dialog window.
  • The comment feature has been completely revised from a technical point of view.
  • A comment thread is now marked as “unresolved” by default.
  • A comment can now be submitted using the Enter key.
    • To insert a line break, Shift + Enter can be used.
  • Multiple consecutive comments from a user are now grouped together.
  • The comment feature may be accessed from a form directly.

Confirmations

10.0.4

  • In the dropdown for confirmations, groups now have the option of displaying the associated group members.

10.0.3

  • Technical version bump.

10.0.2

  • Technical version bump.

10.0.1

  • Technical version bump.

10.0.0

  • Technical version bump.

Contracts

10.6.3

  • Legal entities can now be assigned to contractual partners. The import of contractual partners has also been expanded accordingly.

10.6.2

  • Technical version bump.

10.6.1

  • Fixes an error when searching for a business partner without a logo.

10.6.0

  • Adds the possibility to group archived files (if available).
  • Information security protection requirements and BCM RPO/RTO values can be transferred from the processes and IT systems linked to the contract with a single click. If ISMS@ARTEMEON is available, the values are derived from the assets.

10.5.8

  • Technical version bump.

10.5.7

  • The result of the cloud outsourcing check is cached on the facts for performance reasons

10.5.2

  • Fixes a permissions issue in contract registry checks.

10.5.1

  • The new outsourcing type “Outsourcing arrangement” has been added to the quick check scores

10.5.0

  • Inclusion of the optional contract fields.
    • Cost -> Yearly costs (net) planned for next year
    • Duration -> Other Information
    • protection, InfoSec, BCM -> If other sensitive data is processed by the servicer?

10.4.9

  • ”Title” and “Status” fields have been added to contract registry checks.

10.4.8

  • The description on a contract register check has been removed.

10.4.7

  • Fixes an issue where root nodes could not be selected when adjusting a parameterization.

10.4.6

  • Renaming Tab from “Data protection & information security” to “Data protection, InfoSec, BCM”
  • Inclusion of the fields
    • protection, InfoSec, BCM -> RTO (Recovery Time Objective)
    • protection, InfoSec, BCM -> RPO (Recovery Point Objective)
    • protection, InfoSec, BCM -> Comment MTPD (Maximum Tolerable Period of Disruption)
  • Moving Field at Contract
    • MTPD (Maximum Tolerable Period of Disruption)
  • All of the above fields have been brought together under the header “Business Continuity Management (BCM)"
  • "BCM agreement” was added as an additional attachment type at “Reports & Attachments” -> “Contract attachments” -> “Type of attachment”.

10.4.5

  • Inclusion of the field “Outsourcing OU or service recipient” to report “C2-Sub-outsourcing (contracts)“

10.4.4

  • Inclusion of the fields:
    • “Data protection & information security -> Disclosure of secrets protected under StGB §203
    • ”Data protection & information security -> Comment Disclosure of secrets protected under StGB §203
  • ”Disclosure of secrets protected under StGB §203” is only displayed for contracts that are treated as insurance company (VU) for regulatory purposes.
  • The associated comment field is only displayed if “Disclosure of secrets protected under StGB §203” was answered with “Yes”
  • Inclusion of the field “Additional info -> Remote access to or remote maintenance of the client’s systems” on the contract.
  • Inclusion of the field “Additional info -> Comment Remote access to or remote maintenance of the client’s systems” on the contract.

10.4.3

  • Fixes a problem when uploading a logo to a business partner

10.4.2

  • In the report “Notification acc. BaFin (MVP specialist procedure)”, the column “Which institutions, payment institutions or other companies within the scope of consolidation or the institution-related protection scheme use the outsourcing?” is now composed differently.
    • Data origin is now as follows: Contract, additional data, users & locations of service provision, institutions / companies within the scope of the institution-based protection scheme that make use of outsourcing AND institutions / companies within the regulatory scope of consolidation that make use of outsourcing.

10.4.1

  • Inclusion of the field “Additional info -> Comment Objective reasons for delegation” on the contract.
  • Disabled fields “Objective reasons” & “Comment” on the supervisory reporting.

10.4.0

  • Inclusion of the field “Data protection & information security -> Transfer of confidential or sensitive data” on the contract
  • Inclusion of the field “Data protection & information security -> Processing of confidential or sensitive data” on the contract
  • Text adjustment of the options in the “Additional data -> Who approved the outsourcing arrangement?“

10.3.0

  • Inclusion of the field “Data categories (DSGVO)” on the contract
  • Inclusion of the field “Service provider has read rights” in the contract
  • Inclusion field “MTPD” on the contract

10.2.0

  • New field “version” for reporting requirements and contract attachments.
  • Contracts no longer closed on the last day of contracts validity. They are now closed on the next day.

10.1.0

  • Added new field “Business partner is affiliated partner” to business partner.
  • Contracts are grouped by contract type, contract state and product group automatically.

10.0.0

  • Contracts wizard is enabled by default
  • A logo can be uploaded for a business partner, which is then displayed in the search preview, for example.
  • Sub-outsourcing may be created at every level below a business partner.
  • A “short description” was added to sub-outsourcing again.
  • A new contract field “Notifications / KPI Monitoring” was added, through this field it is possible to control the ongoing monitoring.
  • A new action “KPI Rollout” was added, this action adds the contract to the ongoing monitoring process.
  • File uploads are now grouped by assignment.
  • KVG due diligence checklist added as optional checklist for business partners

Dashboard

10.3.0

  • The “Overview” module has been renamed to “Dashboard”.

10.2.1

  • Fixes a bug when generating iCal objects.

10.2.0

  • Bring a little Christmas cheer to your AGP@ARTEMEON dashboard with the new Advent wreath widget. 🎄

10.1.0

  • Technical version bump.

10.0.0

  • The selection dialog for widgets has been completely revised and is called “WidgetStore” now.
  • The dashboard templates are listed directly inside the WidgetStore and new dashboards can be created from those templates.

DevOps

10.0.0

  • It is now possible to use Memcached as cache engine instead of APCu.

Import

10.0.0

  • The user import has been enhanced and now also has fields for username, phone number, mobile number and language of user interface.
  • When the user import gets executed for existing users, their group assignments get cleared and are being reset to those defined in the Excel import file.

Findings

10.1.0

  • You can now search/filter directly for the filter text in the list of all findings without having to open the filter first.

10.0.0

  • Technical version bump.

Flow

10.0.0

  • Invalid status changes are now displayed as deactivated in the status dropdown. A ? symbol to the right of the status change can be used to display further details as to why the status change is not possible.

Frontend

10.1.0

  • AutoComplete fields now have an additional icon next to the keyboard icon that can be used to display a list of available options and select options. For multi-selection fields, multiple options can also be added directly at once via this list.

10.0.0

  • Introducing a new dark mode.
  • In long forms divided by different tabs, the tabs at the top now remain visible when scrolling down. This makes it easier to switch back and forth between the different tabs.
  • The dialog windows that previously opened when there was a possible status change, for example, are now displayed as notifications at the top right.

IRM

10.1.0

  • You can now search/filter directly for the title in the list of potential risks without having to open the filter first.

10.0.2

  • New fields in report “Potential risks IRM”: Legal entities, Owners organizational units

Infosec

10.1.0

  • You can now search directly for the object number and name in both the list of protection needs determinations and the list of security concepts without having to open the filter first.

10.0.17

  • internal update

10.1.16

  • New field on exceptions: “Initial file upload of the exception”

10.1.15

  • Customized confirmation text for the exemption object for the transition from “Exemption created” to “Check exemption”

10.0.14

  • New button to show specification summary in Gap analyses
  • New buttons to adopt the highest damage occurance from linked threats

10.0.13

  • New fields on asset report: Number of superordinate assets, Number of subordinate assets

10.0.12

  • The title and description of vulnerabilities can now be entered on a language-specific basis.

10.0.11

  • New field “Relevant for the following module(s)” added to threats, set to ISMS for existing ones

10.0.10

  • The property “Further information for implementation” can now be maintained for the Infosec specifications.

10.0.9

  • The following new fields have been created for threats: Threat type, Example scenarios, Type of threat source
  • In addition, the following fields for threats can be found under the heading “Source”: ISO/IEC 27005:2022, IT basic protection elementary threats, CITCC (BlueBook)
  • The 6 new fields can also be filled in via the threat importer

10.0.8

  • The current version of specifications can now be activated manually.

10.0.7

  • Added the management of exemptions

10.0.6

  • System relevant Specification Sources can not be edited anymore.

10.0.5

  • internal update

10.0.4

  • internal update

10.0.3

  • New object and list view “Exceptions”

10.0.2

  • In order to standardize the handling of the security concept with the other forms in the system, the fields (apart from the “Overall Comment”) are now generally displayed as required fields. The “Overall Comment”, which was previously marked with “(optional)”, no longer has a corresponding marker.
  • Four new widgets are now available: Potential risks, IRM single risks, PRA in highest PRC per protection target, Status gap analyses/security concepts.
  • In Infosec widgets, only objects in status Released are being evaluated.

10.0.1

  • ”Threats” have been renamed to “Elementary threats”.

10.0.0

  • Technical version bump.

Evaluations

10.2.0

  • You can now search/filter directly for the filter text in the lists of all evaluations and your evaluations without having to open the filter first.

10.1.0

  • The “Delete MEP confirmation” action was relocated into the “Show more” menu.

10.0.0

  • When creating a new evaluation, the evaluation can now be taken from one of the last 5 entries under “Fill in KPI/KRI evaluation”.

LDAP

10.0.1

  • Fixes an issue where the system could not automatically synchronize with the LDAP interface.

10.0.0

  • Technical version bump.

Messaging

10.2.0

  • Improved performance when accessing the list of messages.

10.1.0

  • You can now search/filter directly for the content of the messages in the message list without having to open the filter first.

10.0.0

  • Technical version bump.

Object Designer

10.0.1

  • Improve internal performance by cache updates

10.0.0

  • The criteria assignment in the object designer has been technically and visually revised from the ground up.
    • Basically, fewer complete page reloads are now required, which improves the general user experience.
    • The individually assigned criteria are now visually better separated from each other.
    • The tree with available criteria is converted to an accordion.
    • Pending changes to criteria can now be reset.
    • Caution!: The function to assign criteria via drag-and-drop has been removed. Please use the checkboxes to select criteria and then assign them.

Object Repository

10.0.10

  • In the object hierarchy a maximum of 100 additional data records can now be loaded by using the button

10.0.9

  • Existing IT systems can be deleted during import by using the cleaner

10.0.7

  • A new object “Regulatory function type” was added to the object repository

10.0.6

  • It is now possible to assign legal entities to a business process

10.0.1

The following changes have been made under “IT Systems”:

  • The Type field has more selection options.
  • A new field has been added: Assigned legal entity

10.0.0

  • There is a new option to configure a rating calculator for a specific checklist.
  • The 4-eyes safe change mode, relevant when editing or creating new objects in the object hierarchy (disabled by default) was removed from the platform. All changes are logged in the changelog.
  • A new criterion “Opening question” was added, this criterion shows or hides subsequent criterions based on the configured answer.
  • The titel of business processes can be specified in additional languages defined via the languages module.

Report Generator

10.0.0

  • The Report Generator has been completely revised technically and optically.
  • Fields can now be shown and hidden via a dialog window.
  • Up to three fields can now be “pinned”. These are then sticky on the left hand side of the screen, even if you are working with large reports and scroll to the right.
  • Large reports can now be scrolled horizontally by “moving” the area with the mouse using drag-and-drop (similar to scrolling on a smartphone).
  • For text fields it is possible to select a comparison operator.
  • Certain permissions can be configured per report.
  • The Field “report object” was renamed to “report template”.

Risk Analysis

10.4.1

  • In the “Question Yes/No with comment” risk template, the “Mandatory comment” field has been added, so that it is possible to set a comment as the mandatory field.

10.4.0

  • Added basic connectivity to bcm module

10.3.0

  • When editing a risk analysis, the relevant contract data (Time criticality of the outsourced process, confidentiality, Integrity / Authenticity, Availability) can be displayed via a button now. This functionality is only available for risk analyses with a linked contract.
  • The assessment view of individual risks is saved at an automatic interval

10.2.0

  • The Sub-Outsourcing frequency calculation was adjusted, we now use automatically the frequency from the parent risk analysis. Customers with a custom calculation logic are not affected by this change.

10.1.0

  • Customers of the AGP standard version can obtain new acknowledgements in the approval process of a risk analysis from the ‘final review’ status, without having to go through the entire approval process again. The authorised users to be involved can be freely defined. Previously obtained acknowledgements remain unaffected.

10.0.1

  • An average annual loss potential threshold can be defined in the risk matrix, above which the risk analysis is classified as material.

Search

10.2.0

  • By default, the search is performed with a wildcard at the end of the search term. For a full-text search with a wildcard at the beginning and end of the search term, the a* symbol can be clicked.

10.1.0

  • It is now possible to select text on the page and then use the global keyboard shortcut CTRL + K (CMD + K on the Mac) to open the search with the selected text prefilled directly.

10.0.0

  • The global search now understands simple mathematical tasks and calculates them.

Structure Visualizer

10.1.0

  • A grid background has been added to the visualization to make it clear that the entire canvas is moving.

10.0.0

  • Implementing of a module to display linked processes like e.g. Outsourcing sub-contracting chain

Summary

10.1.0

  • The section headings now display “collapse” or “expand” on the right to make it clear that the sections can be expanded or collapsed.

10.0.0

  • The Status Flow Graph in the summaries was redesigned and optimized technically.

System

10.7.0

  • You can now search/filter directly for the name of a user or group in the user list and the group list without having to open the filter first.

10.6.0

  • In the menu there is now the option to collapse all (expanded) modules together.

10.5.3

  • Adjust database indexes for MySQL and MariaDB

10.5.2

  • The message queue can now be executed and debugged using an explicit “system:trigger-consumer” command.

10.5.1

  • Fixes a problem when uploading an avatar image to a user account.

10.5.0

  • In the user settings you can now specify, which theme (light / dark / system) the AGP@ARTEMEON should be displayed with. Previously this was limited to the operating system settings.

10.4.0

  • If single sign-on is not available, the last logged in user is now cached and pre-filled when you log in again, so that only the password needs to be entered.

10.3.2

  • Technical version bump.

10.3.1

  • Removed unneeded old fields from the user model.

10.3.0

  • Removed old code.

10.2.0

  • Removed old code.

10.1.0

  • It is now possible to upload a custom profile avatar, which gets displayed in several places across the system.

10.0.0

  • Introducing a new Form Zen mode.
    • The Zen mode hides all fields that are not mandatory or have not been filled out.
    • The Zen mode can be switched on using the button in the header (two horizontal lines).
    • The Zen mode can be switched off again using the button in the header (several horizontal lines).
    • In addition, the Zen mode can be switched via the search, for example by searching for “zen”.
  • The input field for selecting a user has been completely revised technically and optimized in terms of user-friendliness.
    • In the course of this, the “user browser” has also been removed. Instead, you now get an “on-focus” preselection in the form of an AutoComplete dropdown.
  • The process input field has been completely technically revised and optimized in terms of user-friendliness.
    • The delete button has been removed. It is now sufficient to simply remove the content of the input field.
    • The “Process Browser” has been removed. Instead, you now get an “on-focus” preselection in the form of an AutoComplete dropdown.
  • The dropdown menus have been completely technically revised and can now be navigated using the keyboard.
    • The arrow keys can be used to jump through the menu items.
    • The active menu item can be selected with Enter or Spacebar.
  • The “destructive” actions (such as “Delete”) in the “Show more” dropdown in the lists are now sorted at the bottom by default and are also visually separated from the other actions with a separator line.
  • Fields that can be maintained in several languages, the individual fields are now displayed together in tabs. By selecting a language, the corresponding field is displayed.
  • The list filters have been optically revised system-wide.
    • The filters are now opened in a slide-over.
    • Active selected filters are displayed above the list.
    • All lists whose filter includes a “Title” field now show a search bar above the list, which can be used to search for the title directly.
  • The manual sorting in lists (if available) can now be reset using a corresponding button.
  • In selection fields where users can be selected, the own user (if possible) is now displayed in the first position initially.
  • The prompt for unsaved changes in forms has been optimized.
  • The message inbox has been reworked and now opens in a slide-over.
  • In the users list, the “Reset password” action has been moved to the “Show More” dropdown.
  • The modals for group assignments of users and member assignments of groups have been completely revised technically and optically.
  • The fields for changing the password have been moved to a separate dialog window that can be accessed via the edit user screen.
    • The current password is now also requested in the new dialog window.
    • When assigning a new password, feedback is given directly whether the entry complies with the password guidelines configured in the system (e.g. password length or number of lower case letters).

Tasks

10.1.0

  • You can now search/filter directly by title, comment and organizational unit in the list without having to open the filter first.

10.0.1

  • Technical version bump.

10.0.0

  • Technical version bump.

Tiny URL

10.1.0

  • The handling of the so-called TinyURLs has been improved.
    • After the call you will now be redirected to the original URL.
    • The TinyURL now contains more URL parameters from the original URL.

10.0.0

  • Technical version bump.

Tasks

10.3.0

  • The list of tasks has been extended by displaying the “Open since” column and sorting by creation date.

10.2.0

  • The “Open Tasks” widget from the Dashboard module has been moved to the new Tasks module.

10.1.1

  • The tasks that were previously located in the Dashboard module have been migrated to the new structure in the Tasks module.

10.1.0

  • A new entry for tasks has been added to the menu. The menu item also shows the number of open tasks.

10.0.2

  • The structure of the task has been enriched with additional internally required data.

10.0.1

  • The structure of the task has been enriched with additional internally required data.

10.0.0

  • New tasks module, the old implementation in the module dashboard has been removed and rewritten from scratch.
  • Performance of the tasks widget was improved significantly.

Workflows

10.1.0

  • You can now search directly for the class name in the list of workflows without having to open the filter first.

10.0.0

  • Technical version bump.