Jump to a specific Integrations section below:
Software Composition Analysis
OWASP Dependency Track
Learn MoreSD Elements leverages the results from the OWASP Dependency Track, which identifies vulnerable components or dependencies in use, to automatically mark the verification status of its security requirements.
Type: Software Composition Analysis
By: Security Compass
View Documentation
View WebsiteOWASP Dependency Check
Learn MoreSD Elements leverages the results from the OWASP Dependency Check identifying vulnerable components or dependencies in use, to automatically mark the verification status of its security requirements.
Type: Software Composition Analysis
By: Security Compass
View Documentation
View Website
Governance, Risk and Compliance
RSA Archer® IT & Security Risk Management
Learn MoreRSA Archer IT & Security Risk Management enables organizations to implement best practices to identify and manage a range of technology-related risks. Capabilities include risk quantification, with robust documentation and reporting to clearly communicate risk posture to the board and business leadership.
Type: Issue Tracker
By: Security Compass
View Documentation
View Website
Issue Trackers
GitLab
Learn MoreGitLab is a web-based DevOps lifecycle tool that provides a Git-repository manager providing wiki, issue-tracking and CI/CD pipeline features, using an open-source license, developed by GitLab Inc
Type: Issue Tracker
By: Security Compass
View Documentation
View WebsiteIBM Rational Team Concert
Learn MoreAfter using SD Elements to understand the risk posture of an application, you can export all tasks or a subset of tasks from your SD Elements project to your Rational project.
Type: Issue Tracker
By: Security Compass
View Documentation
View WebsiteVersionOne
Learn MoreAfter using SD Elements to understand the risk posture of an application, you can export all tasks or a subset of tasks from your SD Elements project to your VersionOne project.
Type: Issue Tracker
By: Security Compass
View Documentation
View WebsiteServiceNow IT Service Management
Learn MoreThis integration syncs security tasks in SD Elements with the ServiceNow ITSM Change Management module.
Type: Issue Tracker
By: Security Compass
View Documentation
View WebsiteRally Software
Learn MoreAfter using SD Elements to understand the risk posture of an application, you can export all tasks or a subset of tasks from your SD Elements project to your Rally project.
Type: Issue Tracker
By: Security Compass
View Documentation
View WebsitePivotal Tracker
Learn MoreAfter using SD Elements to understand the risk posture of an application, you can export all tasks or a subset of tasks from your SD Elements project to your Pivotal Tracker project.
Type: Issue Tracker
By: Security Compass
View Documentation
View WebsiteMicrosoft Azure DevOps Server
Learn MoreAfter using SD Elements to understand the risk posture of an application, you can export all tasks or a subset of tasks from your SD Elements project to your Microsoft Azure DevOps Server project.
Type: Issue Tracker
By: Security Compass
View Documentation
View WebsiteMicro Focus ALM
Learn MoreAfter using SD Elements to understand the risk posture of an application, you can export all tasks or a subset of tasks from your SD Elements project to your ALM project.
Type: Issue Tracker
By: Security Compass
View Documentation
View WebsiteGitHub
Learn MoreAfter using SD Elements to understand the risk posture of an application, you can export all tasks or a subset of tasks from your SD Elements project to your GitHub project.
Type: Issue Tracker
By: Security Compass
View Documentation
View WebsiteAtlassian Jira
Learn MoreUsing Jira Software helps you plan and organize tasks, workflows, and reports for your agile team more efficiently.
Type: Issue Tracker
By: Security Compass
View Documentation
View Website
DevOps Tool
XebiaLabs XL Release
Learn MoreThis plugin will allow users to add a post-build action to pass/fail their job, based on the compliance status to a given project’s risk policy.
Type: DevOps Tool
By: XebiaLabs
View Documentation
View WebsiteMicrosoft Azure DevOps Pipelines
Learn MoreThis plugin will allow users to add a post-build action to pass/fail their job, based on the compliance status to a given project’s risk policy.
Type: DevOps Tool
By: Security Compass
View Documentation
View WebsiteJenkins
Learn MoreThis plugin will allow users to add a post-build action to pass/fail their job, based on the compliance status to a given project’s risk policy.
Type: DevOps Tool
By: Praqma
View Documentation
View Website
SAST
WhiteHat Sentinel Source
Learn MoreWhiteHat Sentinel Source integration enables teams to automatically verify that security tasks have been implemented, and identifies which requirements the tools are unable to verify.
Type: SAST
By: Security Compass
View Documentation
View WebsiteVeracode Static Analysis
Learn MoreVeracode static analysis integration enables teams to automatically verify that security tasks have been implemented, and identifies which requirements the tools are unable to verify.
Type: SAST
By: Security Compass
View Documentation
View WebsiteSonarQube
Learn MoreSD Elements leverages the security vulnerabilities identified by Sonarqube to automatically mark the verification status of its security requirements.
Type: SAST
By: Security Compass
View Documentation
View WebsiteMicro Focus Fortify Static Code Analyzer
Learn MoreFortify Static Code Analyzer integration enables teams to automatically verify that security tasks have been implemented, and identifies which requirements the tools are unable to verify.
Type: SAST
By: Security Compass
View Documentation
View WebsiteCoverity
Learn MoreSD Elements leverages the security vulnerabilities identified by Coverity to automatically mark the verification status of its security requirements.
Type: SAST
By: Security Compass
View Documentation
View WebsiteCheckmarx Static Code Analysis
Learn MoreWith CxSAST, an accurate and flexible Source Code Analysis Solution, you automatically scan uncompiled/unbuilt code and identify hundreds of security vulnerabilities in the most prevalent coding languages.
Type: SAST
By: Security Compass
View Documentation
View WebsiteAppScan Source
Learn MoreIdentify and remediate app security vulnerabilities in web and mobile applications prior to deployment.
Type: Security Tool
By: Security Compass
View Documentation
View Website
DAST
WhiteHat Sentinel Dynamic
Learn MoreWhiteHat Sentinel Dynamic integration enables teams to automatically verify that security tasks have been implemented, and identifies which requirements the tools are unable to verify.
Type: DAST
By: Security Compass
View Documentation
View WebsiteVeracode Dynamic Analysis
Learn MoreVeracode Dynamic Analysis integration enables teams to automatically verify that security tasks have been implemented, and identifies which requirements the tools are unable to verify.
Type: DAST
By: Security Compass
View Documentation
View WebsiteFortify Webinspect
Learn MoreFortify Webinspect integration enables teams to automatically verify that security tasks have been implemented, and identifies which requirements the tools are unable to verify.
Type: DAST
By: Security Compass
View Documentation
View WebsiteHCL AppScan
Learn MoreProtects against web application attacks and expensive data breaches by testing your application code.
Type: DAST
By: Security Compass
View Documentation
View WebsiteAppScan Enterprise
Learn MoreAppScan Enterprise enables organizations to mitigate application security risk, strengthen application security testing and achieve regulatory compliance.
Type: DAST
By: Security Compass
View Documentation
View Website
Infrastructure
Nessus
Learn MoreThe scope of the Nessus integration is currently limited to integrating compliance checks, specifically the CIS AWS Benchmarks Compliance checks into SDE.
Type: Infrastructure
By: Security Compass
View Website
Read Documentation
Security Tool
Fortify Software Security Center
Learn MoreFortify Software Security Center integration enables teams to automatically verify that security tasks have been implemented, and identifies which requirements the tools are unable to verify.
Type: Security Tool
By: Security Compass
View Documentation
View WebsiteAppScan on Cloud (ASoC)
Learn MoreAppScan on Cloud integration enables teams to automatically verify that security tasks have been implemented, and identifies which requirements the tools are unable to verify.
Type: SAST
By: Security Compass
View Documentation
View WebsiteDenim Group ThreadFix
Learn MoreThreadFix integration enables teams to automatically verify that security tasks have been implemented, and identifies which requirements the tools are unable to verify.
Type: Security Tool
By: Security Compass
View Documentation
View Website