ScalePad has launched the next step towards a unified experience across our product suite – the ScalePad Hub. Now, all ScalePad app users have access to all of their products through a single centralized account, which we’re calling the ScalePad Hub.
The ScalePad Hub is a centralized portal for all ScalePad apps – it is the entry point into the ScalePad app ecosystem for Partners. It’s the first step in our vision of an integrated product suite that allows seamless flow of crucial data & information between our apps.
We strive to provide our Partners with the most advanced automation so they can spend less time cobbling together data and more time on high-value work that supports their clients. The ScalePad Hub is a stepping stone into tighter app integrations, expanded automation, and an enhanced experience for all of our Partners – something we’re calling the ScalePad OS. We have lots more in store (read more at the bottom of this update) and the ScalePad Hub is the foundational first step.
The Hub grants ScalePad Partners the following:
Partners with subscriptions to multiple ScalePad applications can now quickly navigate between apps without the need to sign in to separate app-specific portals. Users will only have to sign in to the ScalePad Hub once to have access to all of their apps from their account By centralizing the access point for all the apps, Partners no longer have to store multiple app-specific credentials or bookmark several sign in pages – every ScalePad app can be accessed from a single screen (or pane of glass for those who prefer the term… we know it’s polarizing).
From within any ScalePad, users can seamlessly navigate to their other subscriptions. Partners only need to click the Bento Box menu in the top nave to quickly open any of their other subscribed apps. A centralized sign in streamlines app switching as there is no longer the need to enter another set of credentials from another sign in page.
The ScalePad Hub is the portal for adding new users and granting them permission to access the apps necessary for their role and responsibilities. Admins are able to manage their ScalePad app users from one place, easily update their entitlements, and enforce security settings for MFA and SSO. Individual users can update their profile details, password, and MFA settings all in the ScalePad Hub.
Note that access permissions to specific features in each app are still configured in each app. The ScalePad Hub simply adds (or removes) users to each Partners ScalePad account. The individual app-based permissions are still managed in each app. For more details, visit our new ScalePad Hub help center.
Within the ScalePad Hub, Partners are able to manage their ScalePad app subscriptions and entitlements. On the Billing tab you will be able to view details of your current ScalePad subscription, manage your plans, and even add new ScalePad apps into your stack.
The URL for the ScalePad Hub is app.scalepad.com. As of November 20, 2024, all users signing into their ScalePad apps will be automatically redirected to app.scalepad.com for sign in.
From within your ScalePad apps, clicking on the ScalePad icon in the top nav bar will take you back to the Hub.
We have answers! Visit this FAQ to find the answer all your questions about the ScalePad Hub. You can also find more detailed information in our new ScalePad help center or get in touch with our team at [email protected].
The launch of the ScalePad Hub sets the stage for unifed billing. Ove the next few weeks, we’ll be migrating to a centralized billing system so Partners can manage all of their app subscriptions in one place. Keep an eye out for in-app messages as we migrate each apps billing to the ScalePad Hub.
At the ScalePad Innovate event in June, we outlined our vision for the ScalePad platform – a deeply integrated suite of apps that helps MSPs truly grow while providing the highest level of service to their clients. The Hub is just the first step towards achieving this vision.
We’ll continue working on the rest of the ScalePad vision, which includes developing the ScalePad OS to unify integrations in the Hub instead of each separate app. This is a critical piece of our platform that will connect your tech stack to all of our apps internally to allow free flow of information to eliminate information silos. Keep tabs on our updates page for more exciting releases as we continue rolling out enhancements to our product suite.
ScalePad will be hosting our next All Partners Conference, Ignition, on January 23. Join us as we bring insight into the key trends, challenges, and opportunities for MSPs. We’ll also be giving a peek into our 2025 product roadmap. Register here to save your seat for this virtual event.
Ever wish you could just hit “copy and paste” for tenant setups? Now you can! With ControlMap’s new tenant cloning feature, you can replicate entire tenant configurations in a few clicks — no more manual setups.
Setting up a new tenant can be time-consuming, but with tenant cloning, you can duplicate entire setups— settings, controls, and policies.
Tenant cloning is available now! Head to your ControlMap dashboard and pick the tenant you want to clone.
Managing Security Awareness Training (SAT) for clients can be a tedious task for MSPs. ControlMap simplifies this by integrating with Huntress Managed Security Awareness Training, a leading SAT platform, allowing MSPs to pull SAT data directly into ControlMap.
Huntress Managed Security Awareness Training delivers engaging, animated episodes designed to educate users on staying secure online. With this integration, MSPs can now pull SAT data into ControlMap, reducing the need for manual tracking.
Once connected, ControlMap pulls the following training data from Huntress Managed Security Awareness Training every week:
Bring the power of Huntress Managed Security Awareness Training and ControlMap together today. Log in to ControlMap to activate the integration. For more information on how this integration can elevate your compliance management, request a demo.
ControlMap has introduced dark mode, designed to enhance your experience by providing a more comfortable and customizable display option. Dark mode offers an alternative view that can make longer sessions on the platform easier on the eyes.
1. Click on the profile icon in the top right corner.
2. Click on appearance.
3. Select the appearance option – dark mode, light mode, or match system settings.
Turn on dark mode in ControlMap and enjoy a more customizable, user-friendly experience.
ControlMap now supports the NIST SP 800-161r1 framework, enabling MSPs to manage supply chain cybersecurity risks for their clients.
NIST SP 800-161r1, titled “Cybersecurity Supply Chain Risk Management Practices for Systems and Organizations,” is a standard developed by the National Institute of Standards and Technology (NIST) to help organizations manage cybersecurity risks throughout their supply chains. This framework provides guidelines for integrating cybersecurity supply chain risk management (C-SCRM) into broader risk management activities, covering everything from policy development to risk assessment and mitigation strategies.
The framework is designed to help organizations identify, assess, and mitigate supply chain risks, ensuring their systems and services’ security, resilience, reliability, and integrity. It applies to both information technology (IT) and operational technology (OT) environments.
Comprehensive Supply Chain Risk Management
NIST SP 800-161r1 offers detailed guidance on managing cybersecurity risks across the supply chain. This includes developing risk management plans, implementing security controls, and conducting regular assessments, helping organizations minimize vulnerabilities.
Enhanced Resilience and Reliability
By adopting NIST SP 800-161r1, organizations can ensure the security and reliability of the products and services they procure. This helps prevent potential disruptions caused by supply chain attacks and provides a more resilient infrastructure.
Alignment with Federal Standards
The framework helps organizations, especially those in the federal supply chain, to align with federal standards and requirements, ensuring compliance and enhancing trust with government partners.
It’s time to help your clients strengthen their cybersecurity posture and manage supply chain risks more effectively. ControlMap Partners can now import the NIST SP 800-161r1 framework to their clients’ tenants, cross-map against existing frameworks, and address supply chain risk management gaps. Log in to ControlMap to get started with NIST SP 800-161r1 today.
For more information or to learn about enhancing your vCISO services with NIST SP 800-161r1, request a demo.
ControlMap now supports the ISO/IEC 42001 framework, enabling MSPs to responsibly manage and govern AI systems for their clients.
ISO/IEC 42001 is an international standard developed to provide a structured approach for managing Artificial Intelligence (AI) systems. Released in 2023 by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC), this framework sets out requirements for an AI management system to ensure responsible development, deployment, and use of AI technologies.
ISO/IEC 42001 helps organizations align their AI practices with ethical guidelines and regulatory requirements, focusing on transparency, safety, fairness, and accountability. By standardizing AI management practices, the framework assists organizations in reducing risks associated with AI technologies and fostering trust in AI-driven solutions.
AI Governance and Compliance
ISO/IEC 42001 provides comprehensive guidelines for establishing effective governance over AI systems. This includes setting clear policies, responsibilities, and processes to ensure AI systems operate ethically and in compliance with relevant regulations and standards, helping organizations navigate the complex landscape of AI governance.
Risk Mitigation in AI Deployment
By adopting ISO/IEC 42001, organizations can better identify, assess, and manage risks associated with AI systems. This framework offers a structured approach to mitigating potential ethical, legal, and technical risks, ensuring AI technologies are safe and reliable for users and stakeholders.
Building Trust in AI Solutions
The framework emphasizes accountability and transparency in AI practices, helping organizations demonstrate their commitment to ethical AI use. By aligning with ISO/IEC 42001, organizations can enhance the trustworthiness of their AI systems, which can lead to increased confidence from customers, partners, and regulators.
It’s time to help your clients implement robust AI management practices and ensure responsible use of AI technologies. ControlMap Partners can now import the ISO/IEC 42001 framework to their clients’ tenants, cross-map against current frameworks, and address AI governance and risk management gaps. Log in to ControlMap to get started with ISO/IEC 42001 today.
For more information or to learn about enhancing your vCISO services with ISO/IEC 42001, request a demo.
ControlMap now supports the NIST SP 800-171 R3 framework, empowering MSPs to protect Controlled Unclassified Information (CUI) for their clients.
NIST SP 800-171 R3 is a security standard developed by the National Institute of Standards and Technology (NIST) to protect the confidentiality of Controlled Unclassified Information (CUI) in nonfederal systems and organizations. This updated version, released in 2024, is built on comprehensive security controls to help organizations that process, store, or transmit CUI to meet federal compliance requirements.
The framework is crucial for organizations working with the U.S. federal government, providing the necessary guidelines to safeguard sensitive information and ensure compliance with federal regulations. NIST SP 800-171 R3 is not just about security but about establishing a proactive risk management culture.
Robust Data Protection
The framework provides robust controls designed to secure CUI in nonfederal systems. This includes guidelines for access control, incident response, system integrity, and more, ensuring that sensitive data remains protected against unauthorized access and breaches.
Streamlined Compliance
Implementing NIST SP 800-171 R3 helps organizations align with federal standards, making it easier to comply with regulations such as the Defense Federal Acquisition Regulation Supplement (DFARS). This framework is essential for businesses that must demonstrate compliance to win and maintain government contracts.
Enhanced Risk Management
The structured approach of NIST SP 800-171 R3 allows organizations to proactively identify, assess, and manage risks associated with handling CUI. This not only reduces potential security vulnerabilities but also enhances overall cybersecurity posture.
It’s time to strengthen your clients’ cybersecurity programs and ensure they comply with federal CUI requirements. ControlMap Partners can now import the NIST SP 800-171 R3 framework to their clients’ tenants, cross-map against existing frameworks, and address compliance gaps. Log in to ControlMap to get started with NIST SP 800-171 R3 today.
For more information or to learn about jumpstarting your vCISO services with NIST SP 800-171 R3, request a demo.
Preparing for and completing audits of frameworks and controls requires meticulous planning and execution. ControlMap has upgraded the audit experience in-app to further streamline the process and eliminate more tedious tasks from the to-do list with internal audits, jumpstart expansions, evidence exports, and updated vendor reports.
Internal Audits
MSPs and their clients can now perform an internal audit based on either frameworks or controls. Previously, audits were limited to third-parties, but we’ve provided the ability to perform this internally for a framework or a control set. This offers MSPs and their clients the following benefits:
Not every MSP or client requires a third-party audit based on the organization, vertical, and compliance goals. While compliance with a certain standard may be the goal for many businesses, all organizations strive to improve their security operations. An internal audit helps support organizations earlier in their compliance journey to strengthen their security posture by identifying potential gaps and addressing them.
The internal audit feature also allows MSPs and their clients to perform robust self-assessments to ensure they meet the required standards and guidelines of frameworks that rely on self-assessment. It documents evidence of assessment (or audit) history, risks, evidence, and more that can be referenced as required in their industry.
Cross-mapping and Jumpstart Expansion
Many organizations need to satisfy the compliance requirements across multiple frameworks. ControlMap helps streamline the process by cross-mapping frameworks to identify common items required for assessment. Jumpstarts apply matching evidence to other frameworks to reduce the amount of labor. Support for the following jumpstarts is now available:
Evidence Export
For CMMC compliance audits, auditors require submission of all evidence of compliance. With a single click of a button, ControlMap users can export all evidence required by auditors including:
MSPs no longer have to cobble together and create an audit-friendly file & folder structure anymore – this is all automated to streamline the audit preparation process and remove friction from the audit itself. While developed particularly with CMMC in mind, the evidence export is useful across all compliance frameworks as it creates an evidence record that can be archived and accessed if required.
Vendor Reports
A key piece of compliance is tracking risks associated with vendors that have access to any sensitive information or data. Ad hoc export of vendor data had been possible, but ControlMap has now added the ability to schedule and save vendor reports. These reports are audit-ready making preparation for a third-party audit effortless – no more struggling to format excel sheets or word documents.
Automation is the best friend of an MSP – it eliminates tedious manual work. With the latest enhancements to the audit experience, ControlMap can put hours back in your team’s day. Log in to ControlMap to start enjoying an enhanced audit experience.
ControlMap now supports the NIST AI Risk Management Framework, enabling MSPs to support cybersecurity programs related to AI.
The NIST AI Risk Management Framework (AI RMF) is a security standard developed by the National Institute of Standards and Technology (NIST) to help manage the risk of generative Artificial Intelligence (AI). It was developed through a transparent, collaborative process and released in 2023.
The framework is designed to help organizations involved in the design, development, use, or regulation of AI technologies, to better manage risks associated with AI as well as incorporate trustworthiness into AI products.
NIST AI RMF is intended for voluntary use. It aims to align with and build upon AI risk management efforts already in place.
The benefits of NIST AI RMF
NIST AI RMF aims to help organizations manage risks associated with AI through a proactive and ethical approach. Organizations that implement this framework get the following benefits:
The framework offers detailed guidance on establishing robust governance practices for AI deployments. This helps organizations create clear policies and procedures that govern AI use, ensuring compliance with regulatory requirements and alignment with business objectives.
By adopting the NIST AI RMF, organizations can better identify, assess, manage, and monitor risks associated with AI technologies. This structured approach allows for more proactive risk management, reducing the potential for adverse impacts on the organization or any of its stakeholders.
NIST AI RMF helps organizations ensure their AI systems are reliable and trustworthy by providing a framework that emphasizes accountability, transparency, and the ethical use of AI. This can lead to increased user confidence and a stronger reputation for organizations deploying compliant AI solutions.
It’s time for your clients to ensure risks related to their work with AI is minimized. ControlMap Partners can now import the NIST AI RMF framework to their clients’ tenants, cross-map against current frameworks, and get started addressing any gaps. Login to ControlMap to get started on NIST AI RMF now.
For more information or to learn about jumpstarting your own vCISO services with NIST AI RMF, request a demo.
