Changelog
What we have been building. Follow along as we ship new features, integrations, and improvements.
Mar 2026
Multi-framework support
Added support for NIST CSF 2.0, SOX IT Controls, SEC Cybersecurity Rules, and NYDFS 23 NYCRR 500 alongside existing DORA and NIS2 frameworks. Map controls across multiple frameworks simultaneously.
Mar 2026
Automation engine with rules-based workflows
Introduced the automation rules engine. Set up conditional workflows to auto-create tasks, assign owners, trigger notifications, sync data between systems, and refresh vendor scores on schedule.
Mar 2026
17 integrations across 7 categories
Added integrations for Jira, ServiceNow, Splunk, Microsoft Sentinel, AWS, Azure, GCP, SecurityScorecard, Qualys, Nessus, Rapid7, Slack, Microsoft Teams, PagerDuty, Okta, GitHub, and GitLab.
Mar 2026
Resilience testing module (DORA Pillar 3)
New module for tracking vulnerability assessments, penetration tests, and Threat-Led Penetration Testing (TLPT) exercises. Auto-import findings from Qualys, Nessus, and Rapid7.
Feb 2026
2FA, API tokens, and security hardening
Added mandatory two-factor authentication via TOTP, Sanctum API tokens for programmatic access, security headers middleware (HSTS, CSP, X-Frame-Options), and login rate limiting.
Jan 2026
Initial release
ComplyShield launches as a DORA & NIS2 compliance platform. Core modules: ICT asset registry, risk assessments, incident management, vendor oversight, compliance dashboard, regulatory reporting (15 xBRL-CSV RoI templates), and PDF exports.