Automated Threat Modeling Tool, Web Application Security Check, Continuous Integration
SD Elements product features include light-weight automated threat modeling, application security requirements checklists, and continuous integration. Our Policy to Procedure platform for security and compliance is available in configurations suitable for a wide variety of organizations, while offering enterprise-level integration and customization capability. Find out more about how SD Elements works and FAQs.
Questions about SD Elements features? Contact Us
Download the Datasheet
Our platform, SD Elements, offers an expansive knowledge-base and related features that help to build security into the early stages of your software development lifecycle.
SD Elements offers survey-based modeling to identify threats to your application. This stands as a lightweight, automated threat-modeling tool for all of your applications, and it helps expedite any other threat-modeling processes your applications are run through.
Our expert-built knowledge base includes hundreds of security requirements, covering known vulnerabilities and compliance standards. This valuable piece of intellectual property is included in every edition of SD Elements.
Security requirements are quickly generated based on the type of application (target platform and programming language). Each individual requirement and solution is tailored for maximum relevance to the developer. Tasks are organized into logical Phases/Categories to match workflow and tool integrations.
"Applications can communicate with SD Elements via well-documented RESTful APIs. This allows our customers to create their own custom dashboards and other remote functionality in the area of Documentation: http://docs.sdelements.com/
SD Elements includes functional dashboards to allow managers to keep track of project progress and individual task completion statuses. Both company-wide and per-project dashboards are included.
"SD Elements will automatically generate organized, audit-ready reports to show off to discerning managers. Default report outputs include: Completion Status Report, Compliance Status Report, Problem Summary Report, and the All Tasks Report. "
Tasks to suit any application can be added and tracked easily via the SD Elements user interface.
Bulk import and export of both custom and standardly included content libraries.
SD Elements was built to adapt to your enterprise’s unique processes and workflow. Using our Policy-to-Procedure platform, you have the highest degree of autonomy in modeling applications that reflect your user preferences.
SD Elements offers shared cloud SaaS, a Dedicated server SaaS, as well as on-premises deployment
"Simplify authentication and access for users by integrating with popular SSO services: SAML, LDAP, and HTTP-auth."
Make SD Elements seem like an internal application by using custom domains, email addresses, and in-application terminology.
Administrators can define custom roles and access rights for SD Elements users.
Different groups within a single organization can have control of their own projects within SD Elements
Add custom branding and color scheme to the SD Elements user interface.
Add custom features and functionality to SD Elements
Generate custom reports from any data available in SD Elements. Tabulate data from your own unique tasks and compliance requirements.
Add ALM tool and Scanning tool integrations to SD Elements that are not currently supported by out-of-the-box, for custom integrations.
Create custom data-types to enable integrations with other types of applications (eg. project management) with custom APIs
SD Elements integrates with many of the top Application Lifecycle Management (ALM) systems, Security Testing, and DevOps Tools on the market, so your workflow won’t be disrupted.
SD Elements can push security requirements to today’s most popular ALMs (including Jira). Custom field mappings and automatic, bi-directional synchronization is available for many of these integrations.
Integration with SAST/DAST scanning tools. Scan results are matched up with requirements, so that task and compliance status is updated and visible in SD Elements reports and user interface.
DevOps tools can integrate with SD Elements by connecting to Risk Policy Compliance information per project. DevOps teams can then incorporate this information into their CI/CD scripts.
In-depth, task-relevant training modules from Security Compass can be delivered via SD Elements for a learn-as-you-go approach to training
Customize the project creation page with custom fields and the ability to pull data from other applications
* Note: Custom features may carry an additional fee for support, depending on the complexity of the environment and amount of work required.