Features Released in November 2021 - 1.0 - Cortex XPANSE - Cortex - Security Operations

Cortex Xpanse Release Notes

Creation date
Last date published
Release Notes

The following table describes the new features in Cortex Xpanse November 2021 releases.



Attack Surface Management for Remote Workers

The ASM for Remote Workers module is an API integration between Cortex Xpanse and Cortex XDR that combines an organization's endpoint details collected by Cortex XDR with public asset information discovered by Xpanse. For information about ASM for Remote Workers, including the new Remote Attack Surface dashboard in Expander, see the Remote Attack Surface Overview section in the Cortex Xpanse User Guide.

New Expander Home Page

The new Expander Home Page dashboard focuses on a number of critical use cases that make it faster to navigate to the most valuable sets of data. For more information about the Home Page dashboard and widgets, see Expander Home Page.

Drill through Home Page Map widget to Issues

You can now drill through the Expander Home Page map widget to filter issues by the country they are observed in.

Mean Time to Remediate (MTTR) Widget Updates

Fixed minor bugs with MTTR calculation, added a table to display the number of inactive issues by priority, and added an explanation about how we calculate MTTR. For details about the (MTTR) widget on the Home Page dashboard, see the section in Expander Home Page Dashboard.

User alert if no permission to edit Home Page Dashboard Preferences

If you do not have permission to edit the Home Page Dashboard Preferences, the Dashboard Preferences page will display a banner indicating that you don’t have edit permission and the functionality on the page will be disabled. See Expander Home Page Filters and Dashboard Preferences for more information about setting Dashboard Preferences for the Home Page.

New Compliance Dashboard widget

This new widget on the Compliance Dashboard groups violations by asset in order to enable users to prioritize a given asset and remediate everything associated with it. Users can also drill through this widget back to the Issues module filtered by the asset that accounts for the most violations.

Policies CSV Export

You can now export the list of Policies to a CSV file to review them.

New Issue Policies

  • ForgeRock OpenAM

  • Microsoft Dynamics 365 Business Central

  • Aruba Virtual Controller

  • Cisco Identity Services Engine (ISE)

  • Updates to the versions categorized under the Insecure Drupal Webserver policy

  • Draytek Vigor Router

  • Suspected honeypots are now excluded from triggering other Issues

  • Palo Alto Networks GlobalProtect Portal

  • Zoho ManageEngine ServiceDesk Plus

Additional Updates

  • Added the ability to filter by Provider on the Compliance Assessments dashboard

  • Updated links to the product documentation on the Compliance Assessments Dashboard

  • Home Page policy widget renamed New Trending Policy Available