SD Elements Datasheet

The SD Elements platform, along with its comprehensive content library, is built for managing security, privacy, and compliance requirements for applications across many industries and within virtually any development environment.

For additional information, please visit the SD Elements website.

Licensing Model

Annual Subscription based on the number of applications being managed within SD Elements.

Product Tiers

Express, Professional, Enterprise

Deployment Options

Dedicated SaaS, Shared Cloud SaaS, On-Premise Deployment

Single Sign On (SSO)

LDAP/Active Directory, SAML, Trusted Authentication

Expert Security and Compliance Content Library

Internet of Things (IoT)

  • Authentication and Access Control

  • Availability and Systems DoS Protection

  • Communication Protocols

    • AMQP, HyperCat, MQTT, Pub/Sub, Thread, XMPP, ZigBee

  • RFID Solutions

Regulatory and Compliance:

  • ANSI/ISA/IEC 62443-3-3

  • ANSI/ISA/IEC 62443-4-2

  • Cloud Security Alliance Cloud Control Matrix

  • DIACAP

  • FedRAMP

  • GLBA

  • HIPAA

  • ISO 27001 (SOX 2005 and 2013)

  • NYDFS

  • PA-DSS 2.0 and 3.2

  • PCI-DSS 2.0 and 3.2

  • SOC2 (Based on AICPA TrustServices Criteria)

Privacy Related:

  • Anti-Spam Guidelines/CASL

  • Brazilian LGPD

  • California Consumer Privacy Act (CCPA)

  • California Online Privacy Protection Act (CalOPPA)

  • COPPA

  • EU Privacy and Cookie Laws

  • GAPP

  • GDPR

  • PIPEDA/ECPA/CAN-SPAM

Industry Standards

  • ASD-STIG

  • ASVS 3.0.1

  • CWE/SANS Top 25

  • MDS2-2013

  • OWASP Top 10 2017

  • FedRAMP

  • NIST 800-147/800-155 BIOS/FW

  • NIST 800-171 Non Federal Systems

  • NIST 800-53 Information Systems

  • NIST 800-82 Industrial Control Systems

  • NIST 800-95 Web Services

Web Applications and Services

  • Apex for Force.com

  • ASP.net

  • Django (Python)

  • Java SE / EE (Jakarta EE)

  • Javascript

  • JSP, Servlets

  • NoSQL / SQL

  • PHP

  • Ruby on Rails

  • SOAP / REST

  • Web servers: Apache and IIS

  • Angular

  • Django

  • GoLang

  • HTML5 and CSP

  • Java Libraries and Frameworks: ESAPI, Struts, Spring, Apache Wicket, Hibernate

  • NGINX

  • Node.js

  • OAuth and OIDC

  • Python

  • XML Security

Operational and Deployment Security

  • Amazon Web Services (AWS)

  • Apache HTTP Server

  • Apache Tomcat Server

  • AWS Lambda

  • AWS SQS and AWS RDS

  • Google Cloud Platform

  • Microservices Infrastructure

  • Microsoft Azure

  • Microsoft IIS Server

  • Docker

  • Kubernetes

  • Microsoft SQL Server

  • MySQL

  • OpenShift

  • Oracle database

Integrated Training

  • 148 bite-sized training modules associated directly with specific tasks to teach developers about secure coding.

  • Covers existing eLearning course library

  • Additional JITT modules are developed specifically for SD Elements

Mainframe Applications

  • Secure Development Guidelines

  • JCL and COBOL

Client and Desktop Applications

  • .NET / C#

  • C/C++ (POSIX and Microsoft)

Mobile Applications

  • Android Framework

  • iOS Framework

Support for additional content and regulations, including organization-specific detail, may be achieved via customization

Integrations

Issue Tracker Integrations

  • Atlassian Jira

  • IBM Rational Collaborative Lifecycle Management (IBM Rational Team Concert)

  • Microsoft Azure DevOps and DevOps Server

  • Pivotal Tracker

  • Rally Software

  • GitHub

  • Micro Focus (HP) Quality Center / ALM

  • ServiceNow ITSM

  • VersionOne

Security Tool Integrations

Web Services Capability:

  • Checkmarx

  • Coverity

  • HCL AppScan Enterprise

  • Micro Focus Fortify SSC

    • WebInspect + SCA

  • OWASP Dependency Track

  • SonarQube

  • Tenable Nessus (CIS AWS Compliance)

  • ThreadFix

  • Veracode

  • WhiteHat Sentinel

File Upload Only:

  • HCL Application Security On Cloud (ASOC)

  • HCL AppScan Source

  • HCL AppScan Standard

  • Micro Focus Fortify on Demand

  • Micro Focus WebInspect

  • OWASP Dependency Check

DevOps Tool Integrations

  • Jenkins

  • Microsoft Azure DevOps Pipelines

  • XebiaLabs XL Release

Project Integrations

Systems:

  • Azure DevOps

  • BitBucket

  • BitDiscovery

  • Cloud Foundry

  • Git

  • GitHub

  • GitLab

  • Micro Focus Fortify SSC

  • Nexus IQ

  • Service Now

  • Snyk

Data:

  • Structured data (JSON, CSV, Google Sheet, ODBC)

  • Unstructured text (Keywords, regular expressions)

  • Source code (C#, Go, Objective C, Java, Javascript, PHP, Python, Ruby, Swift)

Support for additional Integrations may be achieved via custom plug-in

Enterprise Delivery Services

Proven implementation methodology to ensure successful adoption of SD Elements.

  • Process Design and Project Planning

  • SD Elements Technical Implementation

  • Training Subject Matter Experts/End users

  • Organizational Change Management

Contact us for a free demonstration at info@securitycompass.com

results matching ""

    No results matching ""