Contrast Security Integration Guide

Contrast Security + PagerDuty Benefits

  • The Contrast Security integration notifies on-call responders when Contrast sensors detect attacks and vulnerabilities.
  • Send richly formatted event data from Contrast.
  • Create high and low urgency incidents based on the severity of the event from the Contrast event payload.

How it Works

  • When Contrast detects activities that satisfy your configured conditions, an event will be sent to PagerDuty. This event will transform into an incident on the associated service, notifying its on-call responders.

Requirements

  • In PagerDuty: This integration requires a Manager base role or higher to configure. If you’re not sure what role you have, or if you need your permissions adjusted, visit our sections on Checking Your User Role or Changing User Roles.

Integration Walkthrough

In PagerDuty

1. In the Configuration menu, select Services

2. If you are creating a new service for your integration: Please read our documentation in section [Configuring Services and Integrations](https://support.pagerduty.com/docs/services-and-integrations#section-configuring-services-and-integrations) and follow the steps outlined in the [Create a New Service](https://support.pagerduty.com/docs/services-and-integrations#section-create-a-new-service) section, selecting Contrast Security as the Integration Type in step 4. Once you have finished creating your new service, continue to step 3 of this guide. 

If you are adding your integration to an existing service: Click the name of the service you want to add the integration to. Then select the Integrations tab and click the +New Integration button. Enter an Integration Name and search and select Contrast Security from the Integration Type dropdown. Click Add Integration and continue to step 3.

3. You will be redirected to the Integrations page for your service. Copy the Integration Key for your new integration and keep it in a safe place for later use.

In Contrast Security

1. Click your username in the top right of the screen and select Organization Settings in the dropdown menu. Navigate to the Integrations subpage.

2. Under the list of available integrations, click Connect next to the option for PagerDuty.

3. Enter the following fields:

a. Choose a Name for this integration that will be displayed in notifications from Contrast to your PagerDuty instance.

b. Select a Message Severity level with which you would like Contrast to generate PagerDuty incidents. Your options are Critical, Warning, Error, and Info. For more information on PagerDuty severity levels, please visit this Knowledge Base article.

c. Paste the PagerDuty Integration Key, which was generated in step 3 of the In PagerDuty section, above.

d. Select which Applications that you would like Contrast to create PagerDuty incidents for.

4. Click Test Connection. If the test is successful, click Add. This test validates the PagerDuty integration key by verifying that Contrast can reach your PagerDuty account. If the test fails, double check that the PagerDuty integration key matches the one you entered above.

5. Next, navigate to the Notifications subpage to modify the Contrast account activities that serve as triggers for Contrast to create incidents in PagerDuty. You may configure the integration so that only certain attacks and vulnerabilities trigger PagerDuty incidents.

6. In order to have Contrast create PagerDuty incidents of another incident severity level, you must create another PagerDuty integration which specifies that severity level. You may do so by navigating back to the Integrations subpage and clicking Add Configuration in the entry for PagerDuty.

 

Start Using PagerDuty Today

Try PagerDuty free for 14 days — no credit card required.