RevCult is now OwnBackup Secure! In 2021, OwnBackup acquired RevCult, enhancing the cloud data protection platform with proactive data security. With OwnBackup Secure, you will strengthen security posture by understanding data exposure risks and proactively taking action to protect and secure your data -- all within Salesforce.
As the COVID-19 pandemic lingers on, companies around the world are proving that work can still get done remotely. The enterprise shift to a near-universal reliance on distributed teams has driven further adoption of cloud-based tools, and many organizations are now finding themselves better positioned to thrive in a dynamic market than they were before the crisis.
But while the relatively smooth transition that many companies have experienced is impressive, they now face a multitude of new risks. Many aren’t prepared to handle them.
The Salesforce platform represents a natural gateway to the cloud for the countless enterprise customers already using it to support important business operations. Its baked-in security features and infinitely customizable functionality make it a safe and powerful tool capable of driving growth across your organization. However, cloud platform providers can’t protect customers from all risks. Over the course of recent remote work security risk assessments, we’ve found several recurring threats specific to working-from-home teams.
For starters, users creating and exporting reports — which can be run on virtually any platform data — often download sensitive data to a home or personal computer, exposing it to loss or theft (especially if that computer is already compromised).
Furthermore, companies that aren’t using VPNs or Virtual Workstations typically relax permissions governing data access; our aggregate 2020 Salesforce SRA findings revealed that, on average, 89% have some level of access to sensitive information stored in their orgs, and none of the firms in our report had configured the ability to monitor user behavior or store activity. In the event of an internal breach, it would be virtually impossible for them to pinpoint the source.
Moreover, many companies that have configured strong security controls aren’t always implementing solutions for showing the status of those controls. That can make it hard to prove your org is in compliance with least privilege access or external regulatory standards.
All of these risks pose a serious threat to companies that might be less prepared than ever to deal with the legal and ethical consequences of a data breach. Here are the steps compliance leaders and security teams can take to make sure they are avoided:
The companies that use Salesforce the most are usually the ones that get the most value from the platform. But as your usage expands, your security posture must be able to keep up. By capitalizing on the powerful security controls the platform offers, teams can mitigate many of the most pressing threats that accompany remote work.
Interested in learning more? Request a free Guided Risk Assessment for Salesforce today, or schedule a demo below.