On-Demand Webcast|1 hour
Salesforce security in a shared responsibility world: Eliminating misconfigurations and drift before they become breaches
Attendees will learn
- Why shared responsibility for Salesforce security is commonly misunderstood, leading tosilent exposure risks from misconfigurations, low-code acceleration, and permission sprawl
- How to apply continuous monitoring, DevSecOps enforcement, and governance automation to prevent configuration drift across sandboxes and production
- How to institutionalize secure-by-default practices through leadership alignment, least privilege access, and policy-as-code operations
Sponsored by:
Watch Now
Salesforce has transformed from a CRM into a full low-code application platform, powering
business-critical workflows across sales, service, legal, finance, healthcare, and more. With that
shift comes a new reality: every configuration change, integration, and deployment introduces
potential risk. Both the Low Code Security Alliance and AutoRABIT’s internal threat research
emphasizes that the largest risks today stem not from Salesforce’s infrastructure, but from how
organizations configure and operate it in their own environments.This SC Media webcast brings together AutoRABIT subject matter experts and host Adrian
Sanabria to explore how misconfigurations, orphaned integrations, unmanaged API tokens, and
overprivileged accounts create an expanding attack surface that traditional security teams often
miss.The session will show how to evolve from reactive audits to a continuous governance model
using static analysis, drift detection, and automated policy enforcement within the development
pipeline. For teams still treating Salesforce configuration as an IT maintenance function rather
than an active security surface, this session will offer a practical roadmap for getting ahead of
risk before auditors or attackers force the issue.
business-critical workflows across sales, service, legal, finance, healthcare, and more. With that
shift comes a new reality: every configuration change, integration, and deployment introduces
potential risk. Both the Low Code Security Alliance and AutoRABIT’s internal threat research
emphasizes that the largest risks today stem not from Salesforce’s infrastructure, but from how
organizations configure and operate it in their own environments.This SC Media webcast brings together AutoRABIT subject matter experts and host Adrian
Sanabria to explore how misconfigurations, orphaned integrations, unmanaged API tokens, and
overprivileged accounts create an expanding attack surface that traditional security teams often
miss.The session will show how to evolve from reactive audits to a continuous governance model
using static analysis, drift detection, and automated policy enforcement within the development
pipeline. For teams still treating Salesforce configuration as an IT maintenance function rather
than an active security surface, this session will offer a practical roadmap for getting ahead of
risk before auditors or attackers force the issue.
Event Speakers
Justin Hazard
Principal Security Architect at AutoRABIT
Justin Hazard is the Principal Security Architect at AutoRABIT, blending years in DevSecOps and SOC operations to secure Salesforce environments. As host of “From Code to the Cloud,” he brings frontline experience to life, turning complex security challenges into scalable, real-world solutions for modern digital ecosystems.
Adrian Sanabria
Principal Researcher at The Defenders Initiative
Adrian is an outspoken researcher that doesn’t shy away from uncomfortable truths. He loves to write about the security industry, tell stories, and still sees the glass as half full.