ControlUp for Compliance

  • Published on Jul 31, 2025
  • 5 minute(s) read
Prev Next

July 2025

  • Enhanced control over application closures and device reboots during patching - Patching configurations for Templates and Jobs now include options to enable or disable automatic application closures. You can configure the behavior to force close the application after displaying a notification to the user, or you can allow the user to snooze the notification and postpone the application closure. Additionally, we've updated the automatic device reboot settings to give your end users more control when they snooze and postpone the reboot.

    These changes require ControlUp for Compliance Agent version 1.3.2507.15 or higher. Legacy device restart settings remain active for devices running version 1.3.2505 or lower. In your existing Templates, the new settings have been automatically configured to match current behavior. We recommend that you review the new settings.

May 2025

  • Path to executable for patches - When viewing a missing application patch for a specific device on the device drilldown page, you can now see where the application is located on the device in the Path to executables column.

  • Agent status - We added the Agent status field to the Devices pages to show whether the ControlUp for Compliance Agent is online and connected to your organization. If the Agent is not online, the field shows the time since it was last online.

  • CVSS 2.0 and 3.0 columns -When viewing a vulnerability (CVE) for a specific device on the device drilldown page, you can now see the CVSS 2.0 and 3.0 scores. The new columns allow you to filter and sort based on these scores.

  • Fixed an issue causing the scheduling options to not be available when starting a remediation Job from the Apps tab.

April 2025

  • Missing application patches with no associated CVEs no longer contribute to a device's score because there is no known security risk.

  • The Score Severity widget on the Devices page now includes devices that have not yet been scanned by any Template. These devices are counted as having "No Score".

February 2025

  • View Template status and details - You can now click on a Template from the Templates tab to track the scanning and remediation progress and the targeted devices for a specific Template.

  • See which Templates have scanned a device - When viewing details for a specific device, you can now see the last time each Template scanned the device. This lets you ensure that the device is being scanned for the correct scope of security issues, and that you are viewing up-to-date information

  • Export to CSV - You can now export most tables in Secure DX to a CSV file for external analysis by clicking the download icon in the top-right corner of the table.

  • SaaS users only toggle - On the Users page, you can now enable the SaaS users only toggle to only display data from users who have been identified from a SaaS application login through the User Risk Analytics feature.

  • Improved filtering and multi-selection - When you drill down into a specific device or application, filters are now saved when switching between different table views. We added a visual indicator to let you know how many items you currently have selected from each table. We also added this visual indicator when selecting applications on the Apps page.

November 2024

  • User Risk Analytics - You can now use ControlUp for Compliance to improve your organization's security by identifying employees performing risky logins to SaaS applicaitons (including VPNs). ControlUp for Compliance determines the level of risk for each login based on the device, authentication method, and application.

  • New Overview dashboard - The new dashboard in ControlUp for Compliance shows you a better overview of your organization's security status, and highlights the most important issues for you to address.

July 2024

  • Custom scans and remediations - You can now create Custom Issues with your own scripts to scan and remediate issues beyond our built-in options.

  • Auto restart devices for manual remediation jobs - You can now configure Auto Restart settings when you initiate a manual remediation Job. If Auto Restart is enabled, then a device will automatically restart if required to complete the remediation. Previously, these settings were available only when configuring a Template.

  • New issue category for OS patches - There is now a new issue category called OS patches to scan devices for specific Microsoft KBs. This makes it easier to ensure that your devices are not missing Windows patches. Previously, you had to check for OS patches by scanning for the relevant CVEs.

  • Scan devices only once - When configuring a Template's scanning schedule, you can now enable Scan once to scan each device only one time instead of repeating the scan according to the schedule.

  • Usability improvements when selecting issues for a Template - When selecting issues for a Template’s scanning scope, you can now Select all issues from a category and then clear individual issues.

May 2024

  • Added a notification icon in the top-right corner of the page to let you know important information such as when an application patch is currently unavailable.

  • In the Issues over time widget on the Issues page, you can now click on an issue category from the previous day to filter the grid and see which issues were detected on that day. If one of the categories isn't clickable, that means that no issues from that category were detected on that day.

  • More widgets are now clickable to apply filters to the page.

  • General performance and reliability improvements. Widgets now load faster!

April 2024

  • When using the "Select all" checkbox to select/deselect all items in a grid, you can now select whether you want to select/deselect all items on the current page of items, or select/deselect all items on all pages.

  • When you drill down into a specific device, you can now select issues across multiple issue categories for manual remediation.

  • CDN reverse proxy for patch downloads - All application patch downloads are now routed through our CDN reverse proxy. This means that your devices require access to only a single URL to download application patches from all supported vendors. View our updated list of network requirements to make sure your devices have access to the required URLs.

  • Customize Agent settings - Go to Configuration > Agent to customize ControlUp for Compliance Agent settings. You can customize settings for certain devices by targeting device groups or device tags. You can:

    • Show the ControlUp for Compliance icon in the system tray. This can be useful for seeing Agent information on a device.

    • Enable Agent debugging logs. These logs can be used by ControlUp Support to help troubleshoot an issue.

    • Disable the CDN reverse proxy. If disabled, devices download application patches directly from application vendor websites/CDNs.

  • The ControlUp for Compliance icon is now hidden from the system tray by default.

  • You can now delete manual remediation Jobs. If you delete a Job, it is cancelled and removed from the list of Jobs.

  • You can now click the Severity widget on the Apps, Devices, and Devices drilldown page, to filter the grid to only show issues matching the selected severity level.

New product announcement

ControlUp for Compliance is ControlUp's solution for real-time security scanning, detection, and remediation for a more secure digital employee experience. Click here to visit our website for more information, or read the documentation to learn how to get started.