Wed, 2 September 2020
Today on the Salesforce Admins Podcast, we’re talking to Prag Ravichandran Kamalaveni, Salesforce Lead at CloudKettle. We learn all about the new Trust Champions program, which recognizes trailblazers who have expertise in and champion or advocate for good security practices and effective use of Salesforce technology to protect their company’s data.
Join us as we talk about security best practices, lessons he’s learned about how to roll out Salesforce security features, and what you can do as an admin to get started.
You should subscribe for the full episode, but here are a few takeaways from our conversation with Prag Ravichandran Kamalaveni.
How Prag became a Trust Champion.
“For many Salesforce admins, security is something that they’re less comfortable with,” Prag says, “so when I started attending and hosting Trailblazer community meetings, most of my topics were around security.” When people started thanking him for helping them understand complex topics, Prag realized he not only had a gift for decoding security on Salesforce but for explaining it to others.
One big tip that Prag has is to use pen and paper before you turn on or off any security feature in Salesforce. “When it comes to security, there’s no user interface for how the sharing works,” Prag says, “so make sure you write down your sharing model and see how data is going to be shared. Spend time on visualizing how security is going to work inside your org.” Take the time to actually map out how everything is going to work to make sure you understand what’s going on.
Practical security tips for your org.
Admins often have god powers in their own orgs, but when it comes to best practices, you want to restrict access across the org and apply the principle of least privilege for user records. “Salesforce provides so many great features on the verification and authentication process,” Prag says, “and my leveraging these features, Salesforce admins can significantly increase the level of security for sensitive operations by raising the users’ permissions to high assurance under session settings.”
A big part of keeping everything secure is taking advantage of the multi-factor authentication (MFA) features that are baked-in to the Salesforce platform. Safeguard access to your user accounts, and make sure that there’s more protecting your accounts than just usernames and passwords written down on a piece of paper somewhere. “As security threats grow increasingly common, it’s essential to implement stronger measures of account security,” Prag says, and he has some tips and tricks for how to get better adoption from users and get buy-in from leadership.
It’s important to remember that these security features are complicated and can often be nonintuitive, but you’re not in this alone. “Look to the community if you need help,” Prag says, “there are thousands of community groups in your local area, so feel free to log in and ask your question.” In the meantime, educate yourself and make sure you understand all of the security features Salesforce offers, and see what you can do to roll them out to your org.
Love our podcasts?
Subscribe today or review us on iTunes!