Hey @tjcbx! This is something we’re looking at.
One workaround you might want to consider is attaching an MCP server to your security review, with custom instructions to search Jira/Vanta for the issue and create a new work item if necessary.
Not the same as a native integration/export format, but might help in the meantime.
Better CTAs on Security Review findings is on our to-do list! You’re not the first to ask.