F-Secure Cloud Protection for Salesforce provides dedicated security components that mitigate the risks posed by files, URLs and emails handled by Salesforce platform users, without hindering the use of Salesforce. The solution also provides rich reporting, advanced security analytics, and full audit trails, ensuring that incident response is fast and efficient.
The solution supports most of Salesforce Clouds, including but not limited to: Sales Cloud, Community Cloud and Service Cloud. It supports following Salesforce editions: Professional, Enterprise, Unlimited and Developer. F-Secure Cloud Protection for Salesforce has been designed and developed in close cooperation with Salesforce to ensure maximum compatibility and reliability in their various clouds. The solution utilises cloud-to-cloud architecture, so there is no need to deploy or maintain middleware like proxies, or to implement additional network configurations. Together with the streamlined AppExchange deployment process.
Whenever an end-user makes use of, uploads or downloads content via Salesforce, the traffic is intercepted and subjected to a patented threat analysis and detection process in the F-Secure Security Cloud. The user experience is of the utmost importance for our customers, so the solution is designed to minimize user delays and complement the inherent usability of Salesforce.
F-Secure Security Cloud employs multi-stage content analysis in a stepped process triggered by the risk profile of the content. Additionally, files found to be high-risk are subjected to a deeper analysis with our Smart Cloud Sandboxing technology, which is designed to prevent zero-day malware attacks and other advanced threats.
Content detected as harmful or disallowed, is automatically deleted, or blocked, the end-user is notified that content was blocked, advised on what to do next, and further access is prevented. Security alert is sent to the solution administrator and the security team. Disallowed content is defined with a content filtering policy by file type or extension. As an example, administrator can choose to block all executables such as .com, .exe, .bin, and .bat files.
Thanks to rich reporting, advanced security analytics and full audit trails, responding to threats is easy for system administrators, whether responding to an attack taking place through Salesforce, or investigating an attack coming from an unknown source.
Internet giant Yahoo Japan Corporation defends against malware and phishing attacks with F-Secure Cloud Protection for Salesforce. Providing more than 100 Internet-based services, including Japan’s largest Internet media portal site Yahoo Japan has a database of over 80 million users and uses Salesforce’s Service Cloud platform to respond to their vast number of support inquiries. While the cloud environment is good for productivity, it also has the unfortunate result of opening a virtual Pandora’s Box of cyber security risks for all parties involved – company, customers, and partners alike. Read more…
Plugging the gaps in Salesforce cloud security Whitepaper