Adobe Integrates Security Compass' SD Elements into Its Secure Product Lifecycle

Share Article

Adobe integrates SD Elements, a security requirements tool into its secure product lifecycle (SPL) to mitigate security vulnerabilities early on in the development process before scanners are introduced.

Security Compass, a leading web and mobile application security firm, is pleased to announce that its SD Elements secure application lifecycle management tool has been incorporated into Adobe’s Secure Product Lifecycle (SPLC) to help the company’s developers scale and automate security guidance for its software products.

Adobe Secure Software Engineering Team (ASSET), comprised of security experts in building, deploying and monitoring secure applications and services, first deployed SD Elements in 2012 and has since been evaluating its effectiveness with software development projects.

“We’re proud that Adobe has integrated SD Elements tool into its SPLC to further enhance the security of its software products,” said Rohit Sethi, VP of Security Compass and head of SD Elements. “Adobe is a world-class leader in software design, so this selection is certainly a strong validation of the advanced security benefits and effectiveness of SD Elements.”

With SD Elements, ASSET can tailor security guidance to meet requirements for teams, products and projects of all sizes and at various levels of engagement. Through SD Element’s ability to scale and automate, ASSET disseminates security requirements and provides consistent, customized guidance to development teams across the company. As a result, these teams receive specific, actionable information ASSET can measure.

SD Elements is the world’s first secure application lifecycle management (SALM) tool that helps developers build-in security proactively. It effectively eliminates high-risk vulnerabilities from web and mobile applications before completing the development cycle, thereby allowing development teams to produce highly secure apps before going live. The tool provides tailored security requirements, links them to test cases and delivers them into development tools. It also provides coding advice, vulnerability scanners and source code reviews.

“SD Elements plays a significant role in modeling applications, understanding the requirements and providing recommendations on how to mitigate security issues so that development teams can engage on them early on in the development process,” said Jim Hong, group technical program manager for Adobe’s Secure Software Engineering Team. “The tool has been in place since 2012 and the progress has been remarkable. We have dozens projects on SD Elements and we’re continuously tracking progress against recommended tasks to product teams.”

To learn more about how Adobe uses what Adobe thinks of SD Elements, visit the Security @ Adobe blog or Adobe’s SD Elements Webcast.

What is SD Elements?

Instead of fixing application flaws after the fact, SD Elements enables developers to create secure code from the start, and prevent vulnerabilities from ever existing – the most cost effective way of mitigating risks. Developers who use SD Elements can reduce high-risk vulnerabilities in their applications by as much as 97 percent. The platform offers a number of important features, including the industry’s largest database of software security requirements and test cases, detailed reporting, customizable content, task prioritization, code samples, embedded training and constant security updates.

The secure application lifecycle management needs of organizations are increasingly inherent in their everyday life. Compliance (PCI, HIPAA), secure coding, best practices in the software development lifecycle are continually at the forefront of companies’ minds. Working with leading Application Lifecycle Management (ALM) solutions like JIRA, Rally and Team Foundation Server we can help our clients create and validate a method of deploying secure software while building security in.

About Security Compass

Headquartered in Toronto, Security Compass is a leading information security firm specializing in web and mobile application security for Fortune 10s-500s, large financial institutions, energy firms, technology/software providers, media companies, retailers and other businesses. Security Compass guides teams in building customized security blueprints based the industry, software development lifecycle, and business needs to cost-effectively mitigate risks. Its secure application lifecycle management tool, SD Elements, was selected for Ovum’s “On the Radar” report in 2014. Website:

About SD Elements

SD Elements is a software security requirements management solution. Using a short questionnaire, SD Elements automatically generates relevant security requirements for an application, links them to test cases and delivers them into development tools. When building or maintaining a mature application, SD Elements effortlessly integrates with your development tools and processes to ensure your software is secure. It provides prescriptive, secure coding advice based on your project’s application technology, business and compliance drivers. With SD Elements, vulnerability scanners and source code reviews validate that you have followed requirements eliminating costly vulnerability remediation. SD Elements scales easily to thousands of applications allowing centralized information security teams to positively influence software development across the organization with minimal process change. Website:

Share article on social media or email:

View article via:

Pdf Print

Contact Author

Christine MacDonald
Visit website