Nowadays, it feels like there’s a new story in the news about a major security breach or attack by hackers every day. Salesforce is notably absent from these stories, despite its popularity and pervasiveness in the business world, thanks to the strong security and controls baked into the core product. With very little effort, admins and security teams can limit logins to specific IP ranges at specific times for specific users, lock down sensitive data, enforce strong passwords which must be regularly changed, and much more. But the team at Salesforce knows that the threat of cyber-attack and misuse of data is ever-growing, and, in Spring ’16, released Transaction Security Policies to give admins and security experts even more control over the security of their Salesforce environments.
Transaction Security Policies are a new Salesforce Shield tool designed to monitor behavior in your Salesforce org in real time and take appropriate action should suspicious activity be detected. If a user tries to login from outside the country, they can be routed through a two-step verification process to prove it’s actually them. If someone tries to export thousands of Accounts without permission, the export can be blocked. If someone attempts to login from two places at once, their sessions can be immediately terminated. This cool new tool requires an add-on to Salesforce, so if this sounds right up your alley, check out Salesforce’s blog post, the release notes, and call your Salesforce AE today!
-Jared and the Salesforce Guys