Security Compass Adds Support for Critical Infrastructure Applications in Latest SD Elements Release

Share Article

Leading software security firm Security Compass is adding new support for critical infrastructure applications to its distinguished SD Elements secure development platform. The latest update, released February 28, 2015, incorporates ISA/IEC-62443 (and specifically ISA-62443-3-3) standards, security requirements and compliance mapping into SD Elements, enabling developers of industrial automation and control systems to significantly boost the software security behind these products.

Software security is increasingly significant for industrial operators as more and more control systems are moving toward total Internet connectivity. - Rohit Sethi

Cybersecurity remains a top concern for critical infrastructure systems around the world, and with the level of these threats escalating, from both state- and non-state actors, the need for enhanced software security has never been greater. In response to this growing threat, Security Compass, a global leader in software security, announces an important update to its SD Elements secure development platform, providing new support for industrial automation and control systems (IACS) security.

  •     The SD Elements update, released February 28, 2015, incorporates the complete ISA/IEC-62443 security standards for industrial systems (specifically, ISA-62443-3-3 detailed technical requirements) and provides full compliance mapping.
  •     Almost all of the security controls listed in ISA/IEC-62443 are now integrated with SD Elements secure software development guidance system
  •     Users can now go far beyond simply “checking” against these standards and instead achieve virtually full compliance for their systems and products.

“Our latest update to the SD Elements platform greatly expands the security capabilities of connected device and industrial control system manufacturers, industrial operators and critical infrastructure facilities by allowing them to repel the vast majority of high-risk software-based threats by building rigorous security directly into their systems, networks and products,” said Rohit Sethi, VP of Security Compass and head of its SD Elements division. “Software security is increasingly significant for these operators as more and more control systems are moving toward total Internet connectivity. By utilizing SD Elements’ robust security framework, manufacturers and facility operators can achieve virtually full compliance with ISA/IEC-62443, while significantly reducing the cost of doing so.”

What is SD Elements?

Instead of fixing application flaws after the fact, SD Elements enables developers to create secure code from the start, and prevent vulnerabilities from ever existing – the most cost effective way of mitigating risks. Developers who use SD Elements can reduce high-risk vulnerabilities in their applications by as much as 97%. The platform offers a number of important features, including the industry’s largest database of software security requirements and test cases, detailed reporting, customizable content, task prioritization, code samples, embedded training and constant security updates.

The secure application lifecycle management needs of organizations are increasingly inherent in their everyday life. Compliance (PCI, HIPAA), secure coding, best practices in the software development lifecycle are continually at the forefront of companies’ minds. Working with leading ALM solutions like JIRA, Rally, Team Foundation Server and now Tasktop, SD Elements helps development teams create and validate a method of deploying secure software while building security in.


SD Elements is a software security requirements management solution that eliminates at least 97% of high risk vulnerabilities at the earliest stage of the software development lifecycle. It provides prescriptive, secure coding advice based on your projects application technology, business and compliance drivers. SD Elements can easily scale to thousands of applications allowing centralized information security teams to positively influence software development across the organization with minimal process change. SD Elements eliminates security vulnerabilities before scanning begins – the most cost effective way of mitigating risks. Website:


Headquartered in Toronto, Security Compass is a leading information security firm specializing in web and mobile application security for Fortune 10s-500s, large financial institutions, energy firms, technology/software providers, media companies, retailers and other businesses. Security Compass guides teams in building customized security blueprints based the industry, software development lifecycle, and business needs to cost-effectively mitigate risks. Its secure application lifecycle management tool, SD Elements, was selected for Ovum's 2014 On the Radar report and recognized by Gartners 2014 Cool Vendors in Application and Endpoint Security report. Website:

Share article on social media or email:

View article via:

Pdf Print

Contact Author

Christine MacDonald
Visit website