Skip to main content
All CollectionsIntegrations
Ticket Automation (Jira-only)
Ticket Automation (Jira-only)

Configure rules to automatically create Jira tickets based on control and test events.

Faraz Yaghouti avatar
Written by Faraz Yaghouti
Updated over a week ago

HERE'S WHY

Managing your security compliance can require coordination and collaboration with other members of your organization. Drata makes this easier by integrating with the tools you already use on a daily basis, including Jira. By configuring ticket automation rules in Drata, you can have tickets automatically opened for key control and test events.

BEFORE DIVING IN

  • Users with Admin access can create ticket automation rules within Drata; however, a user must have Admin access to set up or edit the Jira connection.

  • 'Write Access' can be enabled when creating the initial Jira connection or turned on after the connection has been made (by editing the connection).

  • Drata pulls in the required Jira fields as determined by your specific Jira configuration, including Projects, Task Types, and other fields.

HERE'S HOW

Enabling 'Write Access'

When Jira is connected, you have the option to grant ‘Write Access’ to Drata. This allows you to create Jira tasks associated with a specific Control, Test, or Risk (in risk management) directly from Drata.

You can enable 'Write Access' either when first setting up the connection or by editing the connection after the fact. If you enable it after the connection was established, you will NOT be required to re-establish the connection.

NOTE 1: While you can connect multiple Jira accounts in Drata, 'Write Access' can be enabled for one connection.

NOTE 2: You must be logged into the Jira connection you are editing to be able to make changes.

NOTE 3: If you are unable to create a ticket or to enable/disable 'Write Access', you might not be logged into the corresponding Jira account.

NOTE 4: If you ever see any inconsistencies between your company’s Jira board and Drata, please refresh Drata to see the updated information.

Creating Ticket Automation Rules

When 'Write Access' is enabled, you can select which workspaces the automation rule applies to as the first step if you have more than one workspace.

Otherwise your automation rules will apply only to your primary workspace and you will not have the ability to select a workspace in Step 1.

In the next step, you can create ticket automation rules for three events:

  • A control’s readiness is “Not Ready”

  • A test result is “Failed”

  • A test result is “Error”

NOTE: Once a rule is saved, the event cannot be changed. If you wish to change the event, delete that rule and create a new one.

You can also add scope specification to narrow down the controls or tests that you want the rule to apply to.

For controls you can specify by:

  • Control monitoring

  • Evidence

  • Control owners

  • Frameworks

For tests you can specify by:

  • Category

After specifying the event and scope, you will select a Jira project and Ticket type.

Then, enter the relevant ticket details. This includes entering values for all required fields on that Jira ticket type.

NOTE 1: Drata automatically determines the Jira “Summary” and “Description” more on that below.

NOTE 2: Required fields are configurable within Jira by an administrator.

NOTE 3: Some uncommon field types, such as “Radio Buttons,” are not supported. If your ticket type requires a field with an unsupported type you will need to remove it from the required fields within Jira or request support for that field type from Drata.

NOTE 4: If you connect Jira in multiple workspaces, you will be able to create ticket rules in each workspace, but the Ticket Automation will only execute with the data of the primary workspace.

Finally, you will need to give your new rule a name so you can easily identify it within the rules list.

Ticket automation rules run overnight and create tickets for all matching events where an automated ticket has not previously been created. Below are examples of the “Summary” and “Description” values Drata automatically populates for each ticket.

A test result is “Failed”:

A Control’s readiness result is 'Not Ready':

Editing and Deleting Ticket Automation Rules

You can edit and delete ticket automation rules from the ticket automation rule list. You’ll also be able to select which workspace the rule applies to, when editing.

NOTE: Once a rule is saved, the event type cannot be changed. If you wish to change the event type, delete that rule and create a new one.

Did this answer your question?