The latest versions of Xacta 360™ (2.2) and Xacta.io™ (2.2) introduce a range of powerful features and enhancements designed to streamline cyber GRC processes and improve the overall security posture of an organization.
Enhancements to Xacta 360
This release of Xacta 360 introduces powerful features that allow transferring project data from one Xacta environment to another and enables existing customers to efficiently migrate their legacy project templates to newer formats, enabling them to leverage all new features.
This version of Xacta now supports SBOM artifacts in multiple formats. These artifacts can be uploaded into Xacta’s Artifact Library, providing better transparency into the software supply chain.
This release also includes enhancements to Organizational Defined Values/Parameters (ODVPs), including highlighting the organization’s default ODVs for quicker user visibility and an improved user experience.
Several improvements have been made to improve the integration between Xacta 360 and Xacta.io. Associating (or de-associating) Xacta 360 projects to new or existing Xacta.io systems is now readily available from Project Settings or upon project creation. The Vulnerabilities Details page in Xacta 360 now shows a breakdown of asset count by risk factor from Xacta.io, providing better insight into vulnerabilities.
There are many other user experience improvements in this release of Xacta 360 as well, including the ability to attach multiple artifacts at once, expansion of the Xacta 360 Vocabulary Library, and the capability to generate machine-readable SSPs using the Xacta Data Exchange (XDE) format and the Xacta Bridge™ service offering.
Enhancements to Xacta.io
This release of Xacta.io officially introduces Xacta MetriX™, a powerful and modular reporting component of the Xacta suite. It enables compliance teams to easily build and edit custom widgets and dashboards or generate reports using data from Xacta 360 and Xacta.io. With Xacta MetriX, users gain complete control over what information they want to view and how they prefer to visualize it, turning raw data into meaningful insights.
Xacta.io now offers the ability to create new systems that have a Start Test Cycle set to a completed cycle. This feature provides users with the ability to build up and backfill data if necessary.
This version of Xacta.io introduces a new feature to view all assets across the enterprise, offering a centralized location for performing enterprise-level imports. Critically, this feature extends the ability to show assets that may exist in multiple systems, allowing for easier management of duplicates across the enterprise.
Also included in this version is the ability to import assets and test results to cycles that were previously closed. Users can now open such cycles and initiate the import of assets. All assets imported will then be carried over into succeeding cycles.
A related feature in this release is the newly added ability to open previous test cycles to delete an asset. Assets deleted from a previous test cycle will be deleted from all future cycles.
Additionally, this release supports the import of the official Common Platform Enumeration (CPE) directory file provided by NIST’s National Vulnerability Database. This feature further improves and expands Xacta.io’s Predictive Mapping™ capability by including CPEs into the mapping vector.
Other notable enhancements include enhanced management of data imports, the ability for administrators to create multiple Xacta.io accounts for the same user (allowing for multiple roles), as well as enhancements with third-party tools and platforms (such as Amazon Security Hub, Tenable.sc, and Nessus). Views of risk across systems are greatly expanded, including a snap view of failed vulnerabilities by adjusted risk factor, and immediate insight into failed vulnerabilities by scan risk factor.
Xacta: Continuing to Transform Cyber GRC
With the latest releases of Xacta 360 and Xacta.io, organizations can build on their existing security processes and take a more integrated approach to managing compliance, risk, and security. These releases’ new features and enhancements are designed to help teams work more efficiently, make better-informed decisions, and improve their overall security posture. Whether you’re focused on simplifying compliance, strengthening security controls, or optimizing risk management, Xacta can help you streamline your cyber GRC processes — and get more done in less time.
To learn more about how Xacta 360 and Xacta.io can help your organization, request a demo today and see the benefits of a more streamlined and effective cyber GRC approach.
