Hi all — we need help choosing a plugin for Jira (Cloud) that can:
Automatically scan issues, comments and attachments (including text within documents/images if possible) for sensitive data — phone numbers, emails, passwords, API keys, credit-card-like numbers, etc.
Mask or redact detected values in-place (or replace with a token), with the ability for authorized admins to unmask for troubleshooting (audit / access log required).
Support automated remediation (e.g., notify admin, remove attachment, trigger a workflow) and run historical scans across existing issues.
Work with Jira Cloud (please mention Data Center support if available) and have a reasonable cost for enterprise usage.
We’re considering options like PII Protector, PII Protection & DLP, Nightfall AI DLP, and Soteri’s Security for Jira — but would love community feedback on:
Which of these (or other) apps work best in practice for masking (not just detecting)?
Experience with OCR/attachment scanning reliability?
Setup complexity and false-positive tuning?
Any performance or cost considerations at scale?
Thanks in advance — happy to share the specific types/formats we want to detect (sample regexes) if that helps.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.