Security Compass Announces Jenkins Plugin for its Policy-to-Procedure Platform Bringing Application Risk Policy and Compliance to DevOps

Agile Development Teams Empowered to Continuously Deliver Applications without Risk from the Start

Toronto, Ontario, CANADA

TORONTO, Oct. 03, 2018 (GLOBE NEWSWIRE) -- Security Compass, a software security company that provides organizations with the knowledge, training, and technology to make software secure, announced today that its leading policy-to-procedure platform, SD Elements, now features a Jenkins plugin which empowers agile development teams to build application risk management and compliance into the DevOps process. The new plugin informs the continuous integration/continuous delivery (CI/CD) pipeline with essential security and compliance guard rails in an automated environment, ensuring applications built using SD Elements fail to deploy if they don’t comply with risk policies.

As application development teams are moving faster than ever to build applications and to embrace agile methodologies in DevOps environments, important security and compliance measures are being skipped. SD Elements is the only solution on the market that translates complex compliance requirements into something engineers and developers can actually use. It helps organizations go from policy to procedure in a highly automated fashion, without slowing down the development process or the continuous delivery of critical applications.

Security Compass introduced risk dashboards and risk policy management functionality to the SD Elements platform in April 2018. The risk dashboards provide a quick and easy way for managers to view each application’s compliance with the assigned risk policy and to generate a report that clearly identifies any gaps. The risk compliance status feeds into Jenkins by way of the plugin to inform the CI/CD scripts. Fast-moving DevOps teams can then easily identify and address compliance problems in applications early on, and across business units, saving considerable time and resources.

"To date, large organizations have relied on automated scanning to address risk in a DevOps environment which often results in the accidental deployment of applications with unmitigated risk and only captures 40 percent of an application's potential risk," said Ehsan Foroughi, VP of Product at Security Compass. "The SD Elements' Jenkins plugin enables DevOps teams to move from highly manual security and risk-phase gates, to a more automated and accurate approach that doesn’t slow down development."

To learn more about the new Jenkins plug-in and risk dashboards, visit Security Compass at booth (#P8) at the AppSec USA Conference, Oct. 8-12 in San Jose, Calif.  More information can be found on the Jenkins community plugin page here. Beta versions of similar plugins are available for XebiaLabs XL Release and Microsoft Azure Pipelines (contact Security Compass). 

About Security Compass
Security Compass is a leader in helping organizations proactively manage cybersecurity risk in their mission-critical software without slowing down business. Through its tailored DevSecOps solutions, its award-winning policy-to-procedure platform, SD Elements, and its verification services, which include penetration testing, threat modeling and red teaming, Security Compass helps organizations efficiently deliver software that’s secure by design. The company serves some of the world’s largest enterprises, including 16 of the largest financial institutions in North America, South America, and Asia, as well as four of the largest tech companies in the world. Security Compass is privately held and headquartered in Toronto, Canada with global offices in the United States and India. Follow Security Compass on Twitter @securitycompass or visit

Media Contact:
April H. Burghardt
PR Consultant for Security Compass