Data Loss Prevention (DLP) on Jira and Confluence Data Center & Server Editions

by
Isaac Madan
,
January 12, 2022
Data Loss Prevention (DLP) on Jira and Confluence Data Center & Server EditionsData Loss Prevention (DLP) on Jira and Confluence Data Center & Server Editions
Isaac Madan
January 12, 2022
Icon - Time needed to read this article

Jira and Confluence house high volumes of customer information, tickets, notes, wiki articles, and more. To scan Jira and Confluence Data Center or Server editions, you can use Nightfall’s APIs to scan data at-rest in these silos. In this article, we’ll walk through how you can run a full historical scan on your Jira and Confluence data to discover sensitive data, like API keys and PII. The output will be a report detailing the sensitive findings discovered in your environment.

Please note that Nightfall has native integrations with Jira and Confluence Cloud, which connect directly via these services’ APIs. If you are using the Cloud versions of these services, navigate here to learn more about our native products. The below applies to Atlassian’s Data Center and Server offerings. Here are the steps involved:

1. Create an export/backup of Jira and Confluence. Atlassian provides you with a few options. You can use native tools to create an XML backup, or export data from your databases directly. Nightfall supports various file types including CSV, Parquet, tarballs, etc. so you can choose a method that best suits your use case, whether that entails exporting specific database tables, or a full database dump.

2. Sign up for Nightfall for free here, and create your first Detection Rule.

3. Scan your backup. To do so, you have 3 options, depending on the level of coding and customization you are comfortable with.

Option I: Scan backups locally (low code)

In this method, you’ll run our open source sensitive data scanner to scan your backup directory locally. Fork/clone the repo on GitHub here.

Option II: DIY

With Nightfall’s APIs and SDKs you can build data loss prevention and data classification into any application or service. Read the docs here to get started, or check out our file scanner tutorial (upon which Option I above was built).

Option III: Scan via Amazon S3 (no code)

In this method, you’ll upload the backup directory to Amazon S3 and then scan the S3 environment directly. Follow the tutorial here. Note that the S3 scanner has an individual file size limit, so this approach may not be suitable depending on the size of the files in your backup.


If you have any questions, please reach out to us via email at support@nightfall.ai.

On this page
Nightfall Mini Logo

Getting started is easy

Install in minutes to start protecting your sensitive data.

Get a demo