RSA Archer IT & Security Risk Management enables organizations to implement best practices to identify and manage a range of technology-related risks. Capabilities include risk quantification, with robust documentation and reporting to clearly communicate risk posture to the board and business leadership.

Type: Issue Tracker
By: Security Compass
View Documentation
View Website

GitLab is a web-based DevOps lifecycle tool that provides a Git-repository manager providing wiki, issue-tracking and CI/CD pipeline features, using an open-source license, developed by GitLab Inc

Type: Issue Tracker
By: Security Compass
View Documentation
View Website

After using SD Elements to understand the risk posture of an application, you can export all tasks or a subset of tasks from your SD Elements project to your Rational project.

Type: Issue Tracker
By: Security Compass
View Documentation
View Website

After using SD Elements to understand the risk posture of an application, you can export all tasks or a subset of tasks from your SD Elements project to your VersionOne project.

Type: Issue Tracker
By: Security Compass
View Documentation
View Website

This integration syncs security tasks in SD Elements with the ServiceNow ITSM Change Management module.

Type: Issue Tracker
By: Security Compass
View Documentation
View Website

After using SD Elements to understand the risk posture of an application, you can export all tasks or a subset of tasks from your SD Elements project to your Rally project.

Type: Issue Tracker
By: Security Compass
View Documentation
View Website

After using SD Elements to understand the risk posture of an application, you can export all tasks or a subset of tasks from your SD Elements project to your Pivotal Tracker project.

Type: Issue Tracker
By: Security Compass
View Documentation
View Website

After using SD Elements to understand the risk posture of an application, you can export all tasks or a subset of tasks from your SD Elements project to your Microsoft Azure DevOps Server project.

Type: Issue Tracker
By: Security Compass
View Documentation
View Website

After using SD Elements to understand the risk posture of an application, you can export all tasks or a subset of tasks from your SD Elements project to your ALM project.

Type: Issue Tracker
By: Security Compass
View Documentation
View Website

After using SD Elements to understand the risk posture of an application, you can export all tasks or a subset of tasks from your SD Elements project to your GitHub project.

Type: Issue Tracker
By: Security Compass
View Documentation
View Website

Using Jira Software helps you plan and organize tasks, workflows, and reports for your agile team more efficiently.

Type: Issue Tracker
By: Security Compass
View Documentation
View Website

This plugin will allow users to add a post-build action to pass/fail their job, based on the compliance status to a given project’s risk policy.

Type: DevOps Tool
By: XebiaLabs
View Documentation
View Website

This plugin will allow users to add a post-build action to pass/fail their job, based on the compliance status to a given project’s risk policy.

Type: DevOps Tool
By: Security Compass
View Documentation
View Website

This plugin will allow users to add a post-build action to pass/fail their job, based on the compliance status to a given project’s risk policy.

Type: DevOps Tool
By: Praqma
View Documentation
View Website

WhiteHat Sentinel Source integration enables teams to automatically verify that security tasks have been implemented, and identifies which requirements the tools are unable to verify.

Type: SAST
By: Security Compass
View Documentation
View Website

Veracode static analysis integration enables teams to automatically verify that security tasks have been implemented, and identifies which requirements the tools are unable to verify.

Type: SAST
By: Security Compass
View Documentation
View Website

SD Elements leverages the security vulnerabilities identified by Sonarqube to automatically mark the verification status of its security requirements.

Type: SAST
By: Security Compass
View Documentation
View Website

Fortify Static Code Analyzer integration enables teams to automatically verify that security tasks have been implemented, and identifies which requirements the tools are unable to verify.

Type: SAST
By: Security Compass
View Documentation
View Website

SD Elements leverages the security vulnerabilities identified by Coverity to automatically mark the verification status of its security requirements.

Type: SAST
By: Security Compass
View Documentation
View Website

With CxSAST, an accurate and flexible Source Code Analysis Solution, you automatically scan uncompiled/unbuilt code and identify hundreds of security vulnerabilities in the most prevalent coding languages.

Type: SAST
By: Security Compass
View Documentation
View Website

Identify and remediate app security vulnerabilities in web and mobile applications prior to deployment.

Type: Security Tool
By: Security Compass
View Documentation
View Website

WhiteHat Sentinel Dynamic integration enables teams to automatically verify that security tasks have been implemented, and identifies which requirements the tools are unable to verify.

Type: DAST
By: Security Compass
View Documentation
View Website

Veracode Dynamic Analysis integration enables teams to automatically verify that security tasks have been implemented, and identifies which requirements the tools are unable to verify.

Type: DAST
By: Security Compass
View Documentation
View Website

Fortify Webinspect integration enables teams to automatically verify that security tasks have been implemented, and identifies which requirements the tools are unable to verify.

Type: DAST
By: Security Compass
View Documentation
View Website

Protects against web application attacks and expensive data breaches by testing your application code.

Type: DAST
By: Security Compass
View Documentation
View Website

AppScan Enterprise enables organizations to mitigate application security risk, strengthen application security testing and achieve regulatory compliance.

Type: DAST
By: Security Compass
View Documentation
View Website

SD Elements leverages the results from the OWASP Dependency Check identifying vulnerable components or dependencies in use, to automatically mark the verification status of its security requirements.

Type: Software Composition Analysis
By: Security Compass
View Documentation
View Website

The scope of the Nessus integration is currently limited to integrating compliance checks, specifically the CIS AWS Benchmarks Compliance checks into SDE.

Type: Infrastructure
By: Security Compass
View Website
Read Documentation

Fortify Software Security Center integration enables teams to automatically verify that security tasks have been implemented, and identifies which requirements the tools are unable to verify.

Type: Security Tool
By: Security Compass
View Documentation
View Website

AppScan on Cloud integration enables teams to automatically verify that security tasks have been implemented, and identifies which requirements the tools are unable to verify.

Type: SAST
By: Security Compass
View Documentation
View Website

ThreadFix integration enables teams to automatically verify that security tasks have been implemented, and identifies which requirements the tools are unable to verify.

Type: Security Tool
By: Security Compass
View Documentation
View Website