SD Elements

Build security in so that you can focus on delivering business value


Be more proactive. Make security measurable. Go to market faster.

SD Elements is a software security requirements management solution. Using a short questionnaire, SD Elements automatically generates relevant security requirements for an application, links them to test cases and delivers them into development tools.

When building or maintaining a mature application, SD Elements effortlessly integrates with your development tools and processes to ensure your software is secure. It provides prescriptive, secure coding advice based on your project’s application technology, business and compliance drivers.

With SD Elements, vulnerability scanners and source code reviews validate that you have followed requirements eliminating costly vulnerability remediation. SD Elements scales easily to thousands of applications allowing centralized information security teams to positively influence software development across the organization with minimal process change.

View the 5 steps »



Clearly understand security requirements and test against them rather than simply testing your software with opaque tools and processes.



Integrate security seamlessly into your existing development tools, eliminating the need for major process changes.



Eliminate high-risk security vulnerabilities, saving significant costs and allowing you to bring more secure software to the market faster.

"SD Elements enables our developers to stay focused on our highest goal: the security of our patients’ health information. With its intuitive user interface and simple JIRA integration, we rapidly generate relevant security requirements and incorporate them into our existing development processes. SD Elements allows us to build software with confidence, spend more time on features and waste less on remediation " – Health Care Provider

SD Elements & Tasktop Sync

Connecting Security to Development

Security Compass provides technology that allows development organizations to seamlessly add security requirements and compliance standards into existing Application Lifecycle Management practices and tools, without changing the way software delivery is handled.

Security Compass has partnered with Tasktop to offer Tasktop Sync to its customers. Tasktop Sync provides fully-automated, enterprise-grade synchronization between SD Elements and the most widely used tools used for software development and delivery These integrations further enhance your organization’s ability to add security directly into the development process by enabling the integration of software delivery tools all across the software delivery process--from planning, PMO and operations functions, to development and testing. This means that software delivery team members, in different disciplines and using disparate systems, can collaborate and synchronize efforts resulting in a more efficient and secure software delivery process.


  • Security requirements and compliance standards automatically added to the software development process
  • Seamless, real-time integration with and synchronization to the most widely deployed tools used in the software development and delivery process


  • Security becomes an integral part of the process—not an afterthought
  • Connecting stakeholders across software delivery disciplines improves efficiency and security
  • Best-of-breed, open source, legacy and enterprise Agile tools can be utilized more effectively as part of a secure software delivery process
  • Cross-repository, cross-constituent workflows dramatically improve the likelihood of software development success in a timely and secure manner and on budget

To learn more about using SD Elements and Tasktop Sync to add security requirements into your existing ALM tools, contact the SD Elements sales team To learn more about Tasktop Sync visit or contact Tasktop at

About Tasktop

Over one million users employ Tasktop’s ALM and DevOps integration technology to transform the productivity of software delivery, by connecting the development, testing, Agile planning, PMO and operations functions into a unified software development and delivery team. Tasktop customers are the global leaders in financial services, insurance, government and manufacturing. And partners, including CA, HP, IBM and Serena, rely on our independent, vendor-neutral role to connect their customers’ software delivery disciplines via OEM distributions of our products. Tasktop has defined the Software Lifecycle Integration (SLI) category to fulfill our mission to “connect the world of software delivery.” For more information about Tasktop, please visit:

Tasktop Sync Logo

How SD Elements Powered by Tasktop works

Tasktop Sync is an integration server that provides fully automated, enterprise-scale synchronization among the disparate tools used in software development and delivery organizations. The SD Elements Tasktop connector automatically integrates the development, QA, Agile planning, issue tracking and PMO software that are part of the Sync ecosystem, adding security requirements to each element of the software delivery process.


Tools to help you stay efficient

  • New Task Notification

    Get instantaneous email notifications when a new threat emerges allowing for immediate risk mitigation, instead of waiting for a vulnerability scan or assessment

  • Benefits of Reporting

    Generate threat tables from the "Problem Summary Report", create reports for specific compliance standards, and show management progress on secure development tasks.

  • Email Notifications

    Get notified when users create new projects or update tasks. Centralized security teams can scale across hundreds or thousands of applications and still keep a pulse on what's happening on individual projects.

  • Extensible Access Control

    Lockdown access to specific features in the system by using built-in roles or by creating custom roles with fine-grained permissions

  • Auditability

    Comprehensive logging allows you to monitor changes to tasks in projects, changes to project settings, who is logging into the system, etc.

  • Enterprise Authentication

    Use your existing usernames and passwords through SAML & LDAP integration. Our partnership with OneLogin allows you to use your existing authentication database across organizational boundaries for free.

  • Scanner Integration

    Already using an automated security scanner? Find out which requirements your scanner can assess and which ones you need to manually assess. Featuring integration with Veracode, Fortify, WebInspect and AppScan.

  • Works with Agile & Continuous Integration

    Development teams can make intelligent risk trade-offs when to implement security requirements vs. other features.
    Find out more about integration with development processes.

  • New Features Added Regularly…

    More features are being added regularly. Check back to see what we've added.

Case Studies and Whitepapers

Learning and growth about security requirements

Learn more
One healthcare organization wrote a mobile application from scratch with SD Elements and received a 99% security quality score from Veracode

ALMs we integrate with

SD Elements works with your favorite Application Lifecycle Management (ALM) tools

Build secure software with confidence in 5 easy steps.

Copyright © 2014 Security Compass and SD Elements Inc.
All Rights Reserved.
257 Adelaide Street West, Suite 500, Toronto ON, Canada, M5H 1X9
Mail: 1801—1 Yonge Street, Toronto ON, Canada, M5E 1W7 | 1.888.777.2211 | | Privacy Policy

We're Hiring!

Security Compass Logo