As the volume, velocity, and variety of data in Salesforce continues to increase, so have the demands on Data and System Architects to accelerate the pace of innovation. Together, these trends have led to a growing call for data security to be embedded earlier in the DevOps cycle. While this idea of “shifting left,” isn’t […]

Business leaders and Information Security pros alike will continue to be challenged with both managing data and securing it. Data classification can be foundational by providing a data governance framework that makes securing data easier, but also unlocks insights into its value and best uses. In this episode, Andy Ognenoff, Managing Director, Certified Technical […]

Extreme agility. Always have a strategy. Focus on the basics instead of “shiny objects.“  Earlier this year, our panelists summed up what they learned in 2020 with these nuggets of wisdom – along with some unexpected positives – and what drove their security mindsets for 2021. Now, we’ve invited them back to share more […]

The Salesforce Security Playbook - Learn how to bridge the gap between InfoSec and Salesforce DevOps: Salesforce has evolved far beyond a traditional CRM into an enterprise PaaS solution that stores high risk, mission critical information – yet companies don't have clear visibility into the risk exposure of their Salesforce environment because they don't have a clear security program for Salesforce or the tooling to support it. In this episode, Brian talks with two of RevCult’s Salesforce security practice leaders, Devin Bushweller, Solution Architect, and Laura Nesbitt, Partner Success Leader, about the most common security problems that Salesforce Administrators and Developers run into, the risks of not having a security program specifically tailored to Salesforce, best practices for efficient, effective collaboration between InfoSec & Salesforce DevOps teams - and more!

– Visit RevCult’s Resources to learn more and sign up to receive news and updates.

To request a PDF copy of RevCult’s Salesforce Security Playbook, send a request to [email protected] with subject line: Send me RevCult’s Salesforce Security Playbook

NIST and Salesforce—how does it all work? In this episode, Pete is joined by cybersecurity experts from Salesforce, FairWarning, and OwnBackup to discuss how organizations using Salesforce can leverage the NIST Cybersecurity Framework to mitigate security risks. You'll walk away with tangible next steps for governing Salesforce, like data classification, access management, encryption at rest, user access management, compliance reporting, and more.

– Visit RevCult’s Resources to learn more and sign up to receive news and updates.

Most users are unaware of the large amount of sensitive data that resides in their Salesforce orgs and are living some major data security gaps. We know this because RevCult regularly conducts Security Risk Assessments (SRAs) for our clients and recently published a State of Salesforce Data Security report based on an aggregation our findings. In this episode, Brian, Pete, and RevCult’s Security Practice Engagement Leader, Ed Ponte, summarize the five key findings from the report. They explain business impacts and recommend how your organization can control these persistent risks. The discussion also covers future challenges and opportunities, giving our take on how you can bolster data security on your cloud platforms in 2021 and beyond.

– Visit RevCult’s Resources to learn more and sign up to receive news and updates.

Pete Thurston, Chief Product and Solutions Officer at RevCult, explains how to know when it’s time to get your Salesforce org assessed for risk from a security and compliance perspective. Pete shares common trends and key issues that have emerged from the hundreds of security risk assessments RevCult has performed over the years for clients. You’ll hear how prevalent these issues are, why they occur, and what you can do to avoid them…proactively.

– Visit RevCult’s Resources to learn more and sign up to receive news and updates. Presented at Resilience.Work, hosted by Salesforce® and Ownbackup.

Most companies aren’t using Salesforce as it was originally deployed and have applied a tremendous amount of innovation to the platform. But this incredible innovation largely happens outside the oversight of InfoSec. In this episode, RevCult’s Brian Olearczyk outlines the challenges many organizations now face with how to confirm their security controls have been implemented, as they continue to evolve Salesforce (and adapt to remote workforces). Brian offers clear tactics to evaluate your Salesforce risk exposure, take back control of your security, and proactively manage it going forward. – Visit RevCult’s Resources to learn more and sign up to receive news and updates. Presented at Resilience.Work, hosted by Salesforce® and Ownbackup.

For many companies, data security and governance in Salesforce is an afterthought. But not Cadence Bank. The bank’s development and innovation efforts in Salesforce have kept security front and center. In this episode, Cadence Bank’s CISO and VP, Jonathan Hay, and Applications System Specialist, Carl Lange, join Pete and Laura Nesbitt, RevCult’s Partner Success Leader, to discuss bringing InfoSec and Salesforce COE teams together, primary drivers for security and compliance, innovation strategies, biggest security journey challenges, operationalizing data security, and much more.

 

– Visit RevCult’s Resources to learn more and sign up to receive news and updates.

Last year, most security leaders were forced to adapt on the fly and completely rethink their strategies for 2021. This episode takes a conversational approach to discussing those strategies and how others are handling urgent data security challenges in these unusual times. Moderated by Brian, our panel of speakers includes Pete, and our guests are senior security executives Thomas Davis, CISO at Terminix (ServiceMaster), Pat Benoit, VP, Global Cyber GRC / BISO at CBRE, and Jonathan Hay, CISO at Cadence Bank. The discussion covers “boots on the ground” lessons from 2020, real-world examples of InfoSec and corporate security priorities for 2021, solutions to support current security initiatives, and more.

– Visit RevCult’s Resources to learn more and sign up to receive news and updates.