Menu Icon
< back to main
 • 3 min read

Bi-Directional Integration With Jira

What is bi-directional integration? Click here to find how to sync between Jira tickets and Cobalt findings and save tremendous time.

Bi-Directional Integration With Jira
Yogi Petkar
Yogi Petkar

Yogi has more than 15 years of experience working in tech through positions in both Fortune 500 companies and startups. He heads our CX Product Management team and shares regular deep dives of new major features in our PtaaS platform.

Want to see the platform in action?
get a demoArrow Right
Want to see the platform in action?
get a demoArrow Right

One of the powerful features we unveiled as part of our significant lineup of product enhancements in March is finally available for our customers: bi-directional integration with the world’s leading issue tracker platform, Jira.

Integration1

What is Jira bi-directional integration?

In a DevOps environment, where agile teams do multiple code releases and hundreds of builds a day, effective communication, transparency, and collaboration are key. With Jira bi-directional integration, we’re delivering these critical values by giving the ability for security and development teams to work on findings seamlessly through their workflow tools and communicate via the Cobalt platform.

Instead of having the security team manually upload pentest findings into Jira, finding details now become available as soon as they are approved by the lead pentester on the Cobalt platform. This two-way integration makes sure developers can plan or start working on the fix immediately.

In addition to enabling status sync between Jira tickets and Cobalt findings, the retest request can also be automatically triggered on the Cobalt platform when the finding is fixed or closed by the developers on Jira. This decreases additional effort by your team by removing the need for an additional step to report back status.

Why bi-directional integration is important for agile teams

During a typical pentest engagement, it takes 5 to 7 days to make the finding data available to agile teams, and 2 to 4 days to let pentesters know that a fix is put in place. Due to the manual workload on each involved team, testers are notified much later in the process to retest the fix.

Bi-directional integration with Jira shrinks this time gap to notify testers about the changes and helps alleviate the burden and dependency on security team members in the entire pentest remediation process.

How it works

The Cobalt Jira Cloud plugin can be easily downloaded from the Atlassian Marketplace with no additional cost:

  • Search for Cobalt plugin in Atlassian marketplace (Jira Admin)

Integration2 Cobalt plugin in Atlassian marketplace: Finding the app

  • Download the app from the marketplace (Jira Admin)

Integration3 Cobalt plugin in Atlassian marketplace: Downloading the app

Integration4Cobalt plugin in Atlassian marketplace: Downloading the app

Once the Jira plugin is installed, you can get started on the Cobalt platform immediately!

Here are a few of the coolest things you can do as soon as you have securely connected Cobalt and Jira platforms:

  • Define the Jira project, issue type, label(s), and Jira ticket to Cobalt finding state mapping for each pentest. The configuration applies to each finding submitted by pentester for each pentest engagement.

Integration5Jira project<>pentest configuration on the Cobalt platform: Defining project settings

Integration6Jira project<>pentest configuration on the Cobalt platform: State mapping

  • Control (enable/disable) automatic pushing of findings for each pentest and view the last sync updates

Integration7Jira project<>pentest configuration on the Cobalt platform: Enable/Disable and Last sync update

As we continue to lead PtaaS, we are always looking for ways to ensure Cobalt is the most innovative solution for DevOps-driven software companies that want to implement security across the development lifecycle and optimize application security processes.

Curious to learn more? Schedule some time with one of our security experts to see Cobalt in action!

Product Updates

Related Stories

Announcing SOC 2 Type II Certification: Reinforcing our Commitment to Security
Announcing SOC 2 Type II Certification: Reinforcing our Commitment to Security
We are delighted to share the news that Cobalt is now SOC 2 Type II certified!
Read moreArrow Right
Cobalt API: Import Your Findings to Google Sheets
Cobalt API: Import Your Findings to Google Sheets
Learn how to customize your pentest reports with Google Sheets.
Read moreArrow Right
Cobalt Credits — Unlock Flexible Pentesting
Cobalt Credits — Unlock Flexible Pentesting
We recently announced a lineup of product enhancements to our Pentest as a Service (PtaaS) platform that are designed to give agile…
Read moreArrow Right
Cobalt Platform Deep Dive: Customize Your Pentest Reports per Your Needs
Cobalt Platform Deep Dive: Customize Your Pentest Reports per Your Needs
Cobalt introduces more options to configure pentest reports and adjust their layout on a granular level.
Read moreArrow Right

Never miss a story

Stay updated about Cobalt news as it happens