CSA-CO January Meeting

Own Your Own Encryption Keys: The Key to Cloud Data Security

Organizations are increasingly turning to encryption everywhere to address data security and privacy concerns. But strong encryption of data at rest comes with trade-offs in a multi-tenant cloud database architecture, where control of the encryption keys is paramount. Understand how encryption keys are derived in Salesforce and how to get around functional limitations, while maintaining ownership of the encryption keys for your Salesforce org. As security professionals you will come away with an understanding of Salesforce’s multi-tenant database architecture as it relates to challenges with encrypting data at rest while controlling your encryption key lifecycle. You will be prepared to advise your business teams on what data should be encrypted at rest and why. You will understand how you can own your encryption keys, from fully native key management to cache-only keys, while ensuring that data confidentiality is protected according to your enterprise key management policies and procedures.

Bio: Mike Smith is a Master Technical Architect with a Security focus at Salesforce. In this role, he meets with customers to understand their concerns around moving data to the cloud, and works with Salesforce Security Product Management to address these concerns and help bring new security capabilities to market. He has worked with many of the world’s largest financial services, healthcare, and technology companies to advise on best practices for securing data in Salesforce.

Sponsored by RevCult: RevCult is a highly-rated Salesforce partner who provides products and services that allow customers to continue to grow on the Salesforce platform with confidence that their data is protected. Learn more at www.revcult.com.