SDLT as a Service ensures complete transparency and audibility of all your security and assurance workflows for your projects and products.
Originally developed by Catalyst for the New Zealand Transport Agency, SDLT is an innovative tool that automates essential aspects of the security assurance process and embeds security requirements earlier into the product development lifecycle.
The framework aligns with common government security classifications and risk assessment practices to deliver "security by design" across your product and technology teams.
Speed up product delivery
Eliminate spreadsheets and connect your teams, suppliers and governance.
By digitising and automating previously document-based workflows, the SDLT enables the simplification of security assurance processes, reduces spend on unnecessary third-party assessments, and cuts the product approval and delivery process from weeks to days
Workflow Management Integration
SDLT handles information gathering, task creation, workflow management, and business approvals and should meet with the needs of a variety of businesses that require a highly responsive security assurance process.
SDLT integrates with workflow management systems such as Jira and provides an audit trail that ensures security assurance has been built into the project delivery from the start. It can be used as part of the process to deliver or procure proof-of-concept products, Security as a Service (SaaS) applications, and scope feature revisions or bug fixes.
Privacy and Risk Assessments
Automate your assurance policies in a sharable, auditable service. Through a simple form-based interface, SDLT uses a series of questions to determine the complexity of the end product and will generate additional questionnaires such as Privacy Impact Assessments, or Cloud Risk Assessments - commonly known as the GCIO 105 - to help your teams digitally assess and record their security requirements.
The highly configurable digital platform effectively provides a single point of presence to right-size security assurance across organisations from start to finish. This ensures that all product deliveries are assessed using the same criteria from the start.
The Catalyst SDLT as a Service solution has just been upgraded to the latest version of the open source SDLT project. This release includes a number of significant features, including the much-anticipated Digital Security Risk Assessment Tutorial pillar for new customers.
This new feature will allow your teams to quickly set up and run an SRA as part of your project's assurance cycle. This will ensure that you are able to increase your risk capability across your organisation, and be confident it is being done so consistently.
Other key features in this release include:
- Import and Export Questionnaires and Tasks
- Import and Export Security Components and Controls
- Content manageable Control Validation Audit implementation guidance
- Validation to reduce creating duplicate questionnaires, tasks and security components
- Improved Control Validation Audit task screen
- Improved Digital Security Risk Assessment task screen
The Catalyst SDLT can be installed, hosted and supported for a flat monthly fee. No license costs, no user limits or limits on the number of questionnaires you can host.
The standard package includes regular backup, security patching and receives the latest features as they are released at no additional cost.