Features Released in September 2021 - 1.0 - Cortex XPANSE - Cortex - Security Operations

Cortex Xpanse Release Notes
Product
Cortex XPANSE
Version
1.0
Creation date
2022-08-25
Last date published
2023-01-10
Category
Release Notes

The following table describes new features in the Cortex Xpanse September 2021 release.

Feature

Description

New Issue Policies

  • Citrix XenMobile Server

  • Potential Honeypot

  • Windows 2000, Windows 2003

  • Golang Go

  • Update to Insecure Microsoft Exchange Server policy in response to recent CVEs

Updated CSV Export

All CSV exports have been updated to include significantly more fields from the Xpanse API, better handle very large exports, and deliver exports via email if they are too large to complete in the browser. See CSV Exportfor more information.

NIST 800-171 and CMMC L1-L5 Compliance Frameworks

Mapping and documentation for NIST 800-171 and CMMC L1-L5 compliance frameworkshave been updated and are generally available.

Users can choose to automatically turn on all new policies

Under the settings page, users who have the ability to enable and disable policies for their organization can now automatically opt-in to all newly published policies.

Additional Updates

  • ServiceNow SIR integration is now supported. Security Incident Response (SIR) is part of the ServiceNow SecOps module and allows for automation in handling security specific incidents. This integration sends Xpanse Issues data to SIR to create issues and provides some bi-directional and fine-tuning configuration capabilities.

  • Xpanse Python SDK 1.0.0 has been released on Github and Pypi.

  • The Issues Detail page was updated so that formats it correctly for printing. Use your browser’s Print-to-PDF functionality to print Issue Details pages.

  • CMMC Compliance Assessment dashboard has been updated with recently released Expander issue policies.

  • NIST 800-171 Compliance Assessment dashboard has been updated with recently released Expander policies

  • NIST 800-53 mapping for the Compliance Assessment dashboard has been updated.

  • Cloud Account IDs, pulled via the Prisma Cloud Integration, are now available as a filter for issues and are included in the Issue details for reference.