Today, we’re excited to announce new Salesforce remediation features that help organizations proactively find and revoke high-risk user permissions.
Unlike other SSPM solutions that merely identify problems, Varonis pinpoints where sensitive data is at risk and addresses issues at scale through automation. The new remediation capabilities enable Salesforce admins and security teams to:
- Prevent users from exporting reports
- Find and eliminate passwords that never expire
- Control third-party API connections
- Ensure users can only see data they're meant to see
In this blog, we’ll outline our new updates to Varonis for Salesforce. If you happen to be at Dreamforce this week, stop by booth #1320 for a live demo!
Proactively identify users with high-risk permissions.
To ensure organizations have a real-time understanding of Salesforce permissions and the data they could expose, Varonis automatically generates a report of profiles and permission sets that allow users to perform high-risk actions such as:
- Export reports
- Create public links
- Generate passwords that never expire
- Manage authentication provider connections to Salesforce
- Share report owner viewing permissions with other users
This report also shows the users assigned these permissions, their activity status, and the sensitive data exposed to risk. This holistic view of permissions empowers security teams and Salesforce admins to limit access to critical data and enforce least privilege.
Automatically surface entitlements with high-risk permissions.
Automatically surface entitlements with high-risk permissions.
Automatically generate a report of users assigned high-risk permissions.
Automatically generate a report of users assigned high-risk permissions.
Revoke risky permissions and enforce least privilege.
Varonis goes beyond analyzing and reporting on Salesforce permissions. With Varonis for Salesforce, admins can revoke the risky entitlements at scale with just a few clicks.
Salesforce admins simply select the desired permissions, navigate to “run action,” select “remove permission,” and click “save.” Varonis automatically revokes the permissions from every selected profile and permission set and commits the changes directly to Salesforce.
Automatically revoke high-risk permissions — like the ability to export reports — from users and entitlements.
Automatically revoke high-risk permissions — like the ability to export reports — from users and entitlements.
Reduce Salesforce data risk at scale.
Varonis’ new capabilities to locate and remove risky permissions in Salesforce add to our already robust remediation features that help organizations secure their data. With Varonis for Salesforce, security teams and Salesforce admins can:
- Remediate public link exposure
- Revoke the ability to create public links
- Disable stale or risky users
- Fix security misconfigurations
- Remove third-party apps
- Fix misconfigured guest permissions on Salesforce Sites
Automatically remediate data exposure risks in Salesforce and get to a least privilege model.
Automatically remediate data exposure risks in Salesforce and get to a least privilege model.
Try Varonis for free.
Available on the Salesforce AppExchange, Varonis for Salesforce helps security teams continuously monitor and improve their Salesforce security posture in real time.
Request a demo today and visit us at Dreamforce, booth #1320, to see our solution in action.
