Anthropic-Cybersecurity-Skills/skills/building-vulnerability-dashboard-with-defectdojo/references/workflows.md

# Workflows - DefectDojo Vulnerability Dashboard

## Workflow 1: Initial Setup and Configuration

### Steps
1. Clone DefectDojo repository and deploy with Docker Compose
2. Configure admin account and change default password
3. Create Product Types aligned with business units
4. Create Products for each application/service
5. Configure Jira integration for ticket management
6. Configure Slack/Teams webhook for notifications
7. Set up SLA policies for each severity level
8. Create API keys for scanner integration

## Workflow 2: CI/CD Scanner Integration

### Steps
1. Add scan step to CI/CD pipeline (GitHub Actions, GitLab CI, Jenkins)
2. Run security scanner (Semgrep, Trivy, ZAP, etc.)
3. Upload scan results to DefectDojo via reimport-scan API
4. DefectDojo deduplicates findings against existing data
5. New findings trigger Jira ticket creation
6. Closed findings auto-close associated Jira tickets
7. Pipeline receives pass/fail status based on finding severity

## Workflow 3: Vulnerability Triage

### Steps
1. Security analyst reviews new findings in DefectDojo dashboard
2. For each finding: verify, assign severity, set risk acceptance status
3. Valid findings: push to Jira for remediation tracking
4. False positives: mark as false positive with justification
5. Risk accepted: document compensating controls and set expiration
6. Track remediation progress through DefectDojo metrics

## Workflow 4: Executive Reporting

### Steps
1. Pull metrics via DefectDojo API for reporting period
2. Calculate: total findings, new vs closed, SLA compliance rate
3. Generate product-level and business-unit-level summaries
4. Track mean time to remediate by severity
5. Export dashboard data for executive presentation