Sprinto Dashboard

Jira Integration

Jira is one of the most widely used project management tools. The tool primarily helps in tracking issues and changes logged by project contributors. Any issue created on a Jira project represents a task or bug that requires follow-up and progress tracking in the software development life cycle.

The following guide will help you integrate and configure your Jira account on Sprinto for change management, incident management, and user access review.

Note: Feel free to refer to the specific integration procedure based on your usage of Jira.

Sprinto Checks for Jira Integrations

Following are the available Sprinto checks for various Jira integration types:

Ticketing & Incident Management

Sprinto check

Required action

Ticketing system for change management should be setup

The following Sprinto check fails if no ticketing system is configured on your Sprinto account. How to fix: The check starts passing once a ticketing system is configured. Follow the procedure below to configure Jira as a ticketing system.

Change management ticket should have an assignee

The following Sprinto check fails if any change request tickets don’t have an assignee. How to fix: Assign a relevant stakeholder to the specified change ticket and ensure all tickets have an assignee assigned.

Reported incident should be closed in Jira

The following Sprinto check fails if any change ticket is detected in the “Open” state on the configured change management system. How to fix: Ensure the change request is actioned and closed from your configured Jira project.

No new change management tickets were added in over 30 days

The following Sprinto check fails if a change request ticket gets created over 30 days.

At least one change management system should be connected

The following Sprinto check fails if no change management system is configured on your Sprinto account. How to fix: Ensure at least one change management system is configured.

Access review

Sprinto check

Reference procedure

Jira access should be removed for offboarded user

How to fix

User should be identified

How to fix

User access to critical system should be valid

How to fix

Before you begin

  • Log in to Sprinto’s admin portal.

  • Ensure you have administrator privileges on the Jira account you are integrating.

Integration procedures

Follow the below applicable procedures to integrate and configure Jira with Sprinto:

Jira as a ticketing system

Note: Merge is our integration partner for building this integration. Sprinto streamlines the data inputs using Merge’s API endpoint.

  1. Generate API token on JIRA.

    • Log in to your Jira account using your credentials.

    • Navigate to the API Tokens portal under the Security section.

    • Click Create API Token to generate a new token.

    • Enter a name for the API token, and click Create.

    • Copy the generated token and save it securely. Do not close the window before copying the key; you won't be able to see this token again once you close the window.

  2. Integrate Jira with Sprinto. Note: The integration requirements for the ticketing and incident management systems are similar. Integrating any one service between them connects both systems on Sprinto. However, configuring each system type requires performing separate steps.

    • On the Sprinto app, go to Security Hub > Settings > Integrations and select the Available tab.

    • Click Connect next to Jira, then click Connect next to Jira for Ticketing.

    • Read the on-screen instructions, then click Next.

    • Select the acknowledgment checkbox, and click Connect to Jira. Note: Ensure the pop-up window is enabled on your browser.

    • Click Continue to proceed further.

    • Enter your Jira account’s subdomain in the field, and click Submit.

    • Select your Jira account domain from the drop-down menu, then click Submit.

    • Enter the email address that you use to log in to Jira, then click Submit.

    • Enter the API Token you created earlier in Step 1, and click Submit.

  3. Configure Jira as a ticket-based change management system.

    • On the Sprinto app, go to Security Hub > Change Mgmt, and select the Change Management System tab.

    • Click Add System.

    • Click Add next to Jira under the Ticketing Systems category. Note: You can find “Connected” highlighted for Jira if the account is integrated from the previous step.

    • Do the below sub-steps to select and configure the Jira project for ticket monitoring:

      1. Selecting Jira projects & issue types to monitor:

        • Select the Jira project from the drop-down menu that you want to configure for ticket monitoring. Note: We recommend running a dedicated project on Jira to log change requests/issues.

        • Click Edit next to Advanced filter to apply conditions for monitoring specific issues from the selected project. Note: By default, Sprinto monitors all change tickets if no filter is applied.

        • Select the ticket issue type you want to monitor. You can add multiple issues from the same project if required.

        • Select the Ticket status indicating changes are incorporated. Note: Sprinto verifies the incorporated change tickets to ensure the changes undergo review and are approved before incorporation.

        • Select the Change type option from the drop-down menu and define the change request type for the selected project.

        • Click Next to proceed further.

      2. Define the change request’s approval stage.

        • Define the approved state for the change tickets and who can assign this state. If necessary, you can select multiple stakeholders who can assign approval state. Note: Sprinto check starts failing against any monitored Jira ticket that moves to the change incorporated state without approval or if any undefined staff approves the changes.

        • If required, click Add another approval state to define multiple approval stages.

        • Select a date on which you wish Sprinto to sync the logged tickets.

        • Click Finish to complete the configuration.

        • You can repeat the above steps to add multiple projects.

Jira as an incident management system

  1. Generate an API token and integrate Jira with Sprinto. Note: The integration requirements for the ticketing and incident management systems are similar. Integrating any one service between them connects both systems on Sprinto. However, configuring each system type requires performing separate steps.

  • Repeat Steps 1 and 2 from Jira as a ticketing system to get the API token from Jira and integrate Jira with Sprinto.

  1. Configuring Jira as an incident management system.

  • On Sprinto app, Go to Security Hub > Settings > Incidents and select the Overview tab.

  • Click Add System.

  • Select Jira from the list.

  • Select the Jira project you wish to configure to monitor reported incidents. Note: We recommend running a dedicated Jira project for incident reporting.

  • Select/define the following configuration for select projects:

    • Status for closure: Define the status used to showcase that the incident ticket is closed.

    • Sync issues from: Select the date on which you wish to sync the tickets.

    • Filter tickets by issue type: Enter the issue types to filter the tickets to monitor. Use commas (,) to add multiple issue types.

    • Filter tickets by tags/labels: Enter the tags/ labels to filter the tickets to monitor. Use commas (,) to add multiple tags or labels.

  • Click Select Project to save the changes.

Jira as an access review system

Note: Truto is our integration partner for building this integration. Sprinto streamlines the data inputs using Truto's API endpoint.

  1. Ensure users' email visibility is configured on Jira. Note: Sprinto syncs users' email addresses from your Jira account to compute access validity. Ensure the users' email addresses are set to visible.

    • Log in to your Atlassian account using your credentials or SSO options.

    • Click on the profile icon at the top right corner, and click Manage account.

    • Select the Profile and visibility tab, and scroll down to the Contact section.

    • Ensure the email address visibility is set to Anyone. If not, set it to Anyone.

    • Ensure all users on your Atlassian account have set the email address visibility to Anyone, as account-level email address visibility configuration isn't possible.

  2. Integrate Jira with Sprinto.

  • On Sprinto app, go to Security Hub > Settings > Integrations and click on Available tab.

  • Click Connect next to Jira, then click Connect next to Jira for Access Review.

  • Read the on-screen instructions, then click Next.

  • Select the acknowledgment checkbox, and click Connect to Jira. Note: Ensure the pop-up window is enabled on your browser.

  • Click Connect to proceed further.

  • Log in to your Jira account using credentials or SSO options.

  • Follow the on-screen instructions and grant Sprinto the necessary permissions.

  1. Configure Jira as a critical system.

  • On Sprinto app, go to Security Hub > Access > Overview, and click Add Critical system.

  • Select Jira from the library, and click Add System.

  • On the Access Overview page, select Jira from the active systems list.

  • Click Configure Now/ Manage from the Summary tab.

  • Click Configure next to Access validity.

  • Select one of the following options and define the valid access for the critical system.

Note: Wait until Sprinto completes the data syncing process. It may take up to 24 hrs for Sprinto to compute the required Sprinto checks.

Upon completing the Jira account configuration for your desired application on Sprinto, Sprinto starts syncing data from Jira to compute the compliance posture of the integrated Jira account. If any of the configurations do not align with compliance requirements, Sprinto highlights them with the help of Sprinto checks.

Please contact Sprinto Support If you have any queries related to the integration or need any assistance.

PreviousJumpCloud IntegrationNextJustworks Integration

Last updated