Salesforce | Application security and controls

Protect and enable your Salesforce investments

Laeeq Ahmed

Laeeq Ahmed

Managing Director, GRC Technology, KPMG US

+1 818-227-6032

Brian Jensen

Brian Jensen

Managing Director, GRC Technology, KPMG LLP

+1 817-946-9552

Many companies are effectively transforming their business operations by expanding the use of Salesforce platforms and making major investments to reap the numerous benefits of a digital transition to cloud- based transactions. With so much at stake, Salesforce clients are seeking ways to enable their employees while protecting access to key transactions and safeguarding their customers’ sensitive data.

Due to the growing versatility of Salesforce-based apps, companies use Salesforce’s cloud not only as a traditional Customer Relationship Management application to store confidential customer information, such as contact details and account details, but also as a platform to conduct sales, run supply chains, manage critical Human Capital Management process, and maintain records of underlying financial transactions including customer billing information.

With all this employee, customer, sales, and product data residing in the cloud, it has become imperative to protect and enable the integrity of the data and transactions. One solution is to implement a custom framework for application security and controls that is tailored to each organization’s unique Salesforce deployment initiatives and integrate it with the enterprise’s overarching cyber and identity programs. By doing so, the company will be able to safeguard its data in a systematic, nonintrusive manner while allowing systems to grow and mature as Salesforce evolves.