· intuitem · News  · 3 min read

What's New in CISO Assistant — Week 06, 2026 (v3.11.3 – v3.12.0)

Batch actions on tables, partial requirement assignments, sticky form buttons, the Moroccan cybersecurity framework, and a critical data-integrity fix in v3.11.5.

Batch actions on tables, partial requirement assignments, sticky form buttons, the Moroccan cybersecurity framework, and a critical data-integrity fix in v3.11.5.

This week brings four releases capped by v3.12.0, which introduces two long-requested epic features. If you are on v3.11.4 or earlier, pay special attention to v3.11.5 — it contains a critical fix to prevent potential data conflicts during requirement assessments.

Epic Features in v3.12.0

Batch actions on tables — You can now select multiple rows in any model table and apply actions in bulk: change status, assign owners, export, or delete. This dramatically speeds up day-to-day housekeeping on large compliance programmes.

Partial requirement assignments — Requirements within an audit can now be individually assigned to a specific user or team. This means you no longer need to assign an entire audit to one person; workload can be split at the requirement level.

New Features

Save and Next on requirement assessments (v3.11.4) — A new button lets you save the current requirement and immediately advance to the next one, cutting the number of clicks during large assessment campaigns.

BIA risk-matrix change (v3.11.5) — You can now swap the risk matrix used by a Business Impact Analysis after creation, giving you more flexibility as your methodology evolves.

Available-update indicator (v3.11.5) — Frameworks used in audits now show an icon when an updated version is available in the library, so you know when it is time to refresh.

Serializer-level access control (v3.12.0) — Access checks are now enforced at the API serializer layer, adding defence in depth on top of existing view-level permissions.

Framework & Library Updates

  • Moroccan cybersecurity law — Added by community contributor @Qnadia. Includes the framework itself plus an ISO/IEC 27001:2022 to Moroccan Law 05-20 mapping and a reverse DNSSI 2023 mapping.
  • CyFun 2025 — Reference controls have been added to the CyFun2025 framework.

UX Improvements

  • Sticky form buttons and AppBar (v3.11.5) — Form action buttons and the top navigation bar now stay visible as you scroll, eliminating the need to scroll back up to save.
  • Better custom-library guidance — The upload flow now includes clearer styling and step-by-step guidance.
  • Task-template email links — Assignment notification emails now include a direct link to the task template.
  • Improved domain explore spacing — The domains explore view has tighter, cleaner spacing.
  • Better default task filters (v3.12.0) — Task lists now default to more useful filter presets.
  • More reverse links on domains and removal of redundant titles improve navigation.

Bug Fixes & Data Integrity

  • Critical: layout reset on Save and Next (v3.11.5) — A forced layout reset now prevents requirement-assessment data from being accidentally overwritten when using Save and Next. Upgrade to v3.11.5 if you use this workflow.
  • Stored library deletion on update (v3.11.5) — Previously, updating a stored library could leave orphaned data; this is now cleaned up automatically.
  • TOTP/PAT 500 error — The Two-Factor and Personal Access Token configuration page no longer returns a server error.
  • Suggest-controls now follows implementation groups and the sync-to-action pipeline is faster.
  • Third-party mailing through an actor works correctly again.
  • Graph rendering for kill-chain and strategic scenarios has been fixed.
  • The TPRM overview page no longer crashes.

Performance

  • Analytics (home page) performance (v3.11.5) — Dashboard queries have been optimised, resulting in noticeably faster home-page loads on large datasets.

For the full list of changes, see the v3.11.3 – v3.12.0 releases on GitHub.

Share:
Back to Blog

Related Posts

View All Posts »