Remediation Guide
Please see below for our best practices on how to remediate findings for Nightfall for Confluence.

Now that Confluence real-time remediation has been released, you can take manual and automated actions directly from the console or from your policy. For more info on your real time remediation options, please refer to the Product Update article below:

For historical scan results in Confluence, we recommend that you first group results by file and detector. Prioritize the Spaces/Pages with the most violations, open the Page, and delete the sensitive finding.
Delete all items that contain sensitive findings, including screenshots as well. This may be handled by your team, or by the end user, depending on your organization’s needs and access settings.
Note: Since we scan archived pages, but not previous versions of pages, we would recommend that when sensitive info is found, to remediate the info and then either delete each version in the history or to make a copy of the page and delete the original, which will remove the version history.
Questions to ask:
  1. 1.
    Is the sensitive data accurately identified?
  2. 2.
    Is it okay for the sensitive data to live on that page?
  3. 3.
    Is the data sample data?
  4. 4.
    Is the page archived?
  5. 5.
    Are there previous versions of the page that still contain the sensitive data?
If the data should not live in Confluence, ping the page author and ask them to remove or redact the data
In the findings file, we recommend marking each row as “No action needed” or “Resolved" to indicate that you have reviewed or addressed any violations.
For any further questions related to remediation or for Best Practices, please reach out to [email protected]
Copy link
On this page
Remediation in Confluence
Real time Scanning Remediation
Historical Scanning Remediation