RevCult is now OwnBackup Secure! In 2021, OwnBackup acquired RevCult, enhancing the cloud data protection platform with proactive data security. With OwnBackup Secure, you will strengthen security posture by understanding data exposure risks and proactively taking action to protect and secure your data—all within Salesforce.
It’s fair to say that 2020 held big changes for all of us, but one thing remained consistent—we continued to conduct security risk assessments (SRAs) for our customers across industries, and those exercises continued to turn up vulnerabilities and security gaps in Salesforce implementations. These shortcomings and oversights put organizations at risk of noncompliance in the best case and catastrophic data loss in the worst case.
Our unique view into the inner workings of a host of different Salesforce implementations offers us a valuable look at some of the biggest challenges and obstacles organizations face. To help our clients make the most of this information, we put together an annual State of Salesforce Data Security Report that offers insights into the most impactful security initiatives a company can undertake.
One of the most pressing findings was that permissions are still being regularly granted to users in a blanket fashion, and in 2020, an alarming 70% of users could export reports containing valuable and sensitive data. Considering the average Salesforce org is chock-full of 2,600 fields of non-encrypted information, you can start to see what’s at stake in terms of internal IP, customer data, and noncompliance with different regulatory groups.
While many organizations are struggling to secure their Salesforce data, some have fundamentally flawed frameworks in place that show these companies aren’t even aware of their responsibilities in this department. Salesforce may be tasked with protecting the platform, but it’s up to you as the user to configure your own implementation properly.
With about 10% of employees being granted administrative access on average, it’s clear that breaches, access errors, and accidental deletion are far from top of mind in the typical organization. Most employees don’t have malicious intent, but it’s still important to ensure that they can’t accidentally let sensitive information slip.
To secure the information contained in your Salesforce implementation, start with the following three steps:
Interested in learning more? Request a free Guided Risk Assessment for Salesforce today, or schedule a demo below.