Link Search Menu Expand Document
OpenRMF Professional Help

Integrations and Plugins

OpenRMF® Professional has integrations with issue and task management as well as Nessus Professional. The integration information is listed below briefly and then in more detail by clicking on the appropriate link.

For issues/tasks/incidents created you can fill in the title, description, type, labels (where allowed) and the full URL of the system package page you are on is added and included in the issue or task created.

For Nessus Professional, you list your folders and scans and choose the ones to import as Patch Scans (OS patch level data) or Audit Compliance Scans (adds/updates checklists) appropriately.

For SonarQube/SonarCloud and Fortify, you can connect to projects for software scans and pull in vulnerability data to track for your system package linked to software static scans.

List of Integrations and Plugins

Atlassian Jira

With Jira integration you can create issues on pages with the “Create Issue” function and quickly link issues to your system package. To view more detailed information visit the Jira Integration Help.

GitHub

With GitHub integration you can create issues on pages with the “Create Issue” function and quickly link issues to your system package. To view more detailed information visit the GitHub Integration Help.

GitLab

With GitLab integration you can create issues on pages with the “Create Issue” function and quickly link issues to your system package. To view more detailed information visit the GitLab Integration Help.

ServiceNow

With ServiceNow integration you can create incidents on pages with the “Create Issue” function and quickly link issues to your system package. To view more detailed information visit the ServiceNow Integration Help.

Nessus Professional

With Nessus Professional integration you can import Patch scans and Audit Compliance scans (based on DISA Benchmarks) directly from Nessus Professional. To view more detailed information visit the Nessus Professional Integration Help.

SonarQube / SonarCloud

For SonarQube or its cloud relative SonarCloud, you can connect to different project branches related to your software scanning results. You import the vulnerability data and track that just like you would patch vulnerability scans by showing the history, linking to the POAM and being able to see all vulnerability data for your system package in one area. To view more detailed information visit the SonarQube Integration Help.

Fortify

For Fortify, you can connect to different project versions related to your software scanning results. You import the vulnerability data and track that just like you would patch vulnerability scans by showing the history, linking to the POAM and being able to see all vulnerability data for your system package in one area. To view more detailed information visit the Fortify Integration Help.

Table of contents

Copyright © 2021 - 2025 Soteria Software LLC.
Do The Work. Automate the Paperwork!SM