New Jira integration provides greater vulnerability context

Lacework EditorialApril 19, 20232 min read

Today, April 19, 2023, Atlassian Jira is announcing additional partners to be included in their new Security-in-Jira program and Lacework is proud to be a part of it. Since Lacework is already a part of the Atlassian Marketplace for our Infrastructure as Code (IaC) offering, the opportunity to be included for our vulnerability management capabilities only made sense. Security-in-Jira is a vulnerability management specific offering that treats a vulnerability as a first-class object in the Jira Cloud and understands the context and effects it has on other resources like hosts, containers, and code repositories. We love that Atlassian is enabling us to be a part of this integration because we understand the value of security from code to cloud. So what makes this joint solution different? Let’s explain…

We believe that security isn’t a singular moment in time, but a constant path. As you develop your cloud-native applications, it is important to think about security from initial development to deployment in the cloud, and Lacework has you covered. As part of our inclusion in Security-in-Jira, organizations will now have the opportunity to see the Lacework vulnerability events across the Security-in-Jira tab and our customers will be able to better track and remediate vulnerabilities. It also makes it easier for teams to delegate and route work to the correct team, and track its progress using their already established internal workflows. 

This integration is important for DevOps organizations because visibility and context into your cloud security risks are important parts of understanding your cloud. No longer will you have to develop any middleware in order to get this visibility, as our Lacework Polygraph® Data Platform integration provides this natively. Lacework provides a unified platform that correlates data from build through runtime to help you prioritize the top issues specific to your environment. Our vulnerability management capabilities make you aware of your vulnerabilities sooner, so that you can prioritize them and not introduce delays or complexity into your development. By leveraging this integration, you can better operationalize your vulnerability management. As you know, it is often the security teams that are responsible for finding and tracking vulnerabilities, but development teams are responsible for the actual remediation of these vulnerabilities. In order to delegate work items, security teams use ticketing systems like Jira to communicate the required remediation tasks. This integration provides the correct information with the correct context to the right people, and so you can address the risk earlier in the process.

If you are interested in finding out more about this integration and how to become a part of the beta program to test it, please reach out to us at 

Suggested for you