Zscaler + Salesforce
Securing collaboration to deliver the ultimate customer experience
The need for modern data protection
As your organization adopts more cloud applications for their productivity and efficiency benefits, your network perimeter blurs, making it more difficult to prevent sensitive data leaks. Together, Salesforce and Zscaler deliver a dynamic perimeter that provides superior security for your sensitive data, both in transit and at rest.
Challenges

Data sharing
Every day, Salesforce users generate massive amounts of data and upload countless attachments to the platform for use by stakeholders across geographies and functions. However, this information can be exposed to the public with a simple click, putting your organization’s sensitive data at risk.

Regulatory compliance
Enterprise data stored in Salesforce may contain sensitive information subject to compliance frameworks, data privacy laws, and industry regulations. Noncompliance can lead to fines, brand damage, and loss of revenue.

Visibility
Misconfigurations of cloud application security controls and mismanagement of data at rest are the leading causes of data breaches today. Unfortunately, security teams relying on legacy network-based tools can’t analyze the security postures of their cloud app instances or inspect the content stored in them.
Solution



Frictionless security for high productivity and collaboration
Manage sensitive data with Zscaler CASB and DLP:
- Identify sensitive content in Salesforce tenants while controlling uploads and downloads
- Leverage hundreds of predefined dictionaries for PCI DSS, PII, PHI, GDPR, etc.
- Customize dictionaries to your organization’s unique needs
- Use advanced data classification measures like exact data match, indexed document matching, and optical character recognition
Prevent malware proliferation:
- Scan Salesforce for zero-day malware
- Immediately quarantine threats and notify admins

Cloud breach prevention
Gain visibility into your security, compliance, and policy ecosystem:
- Discover sensitive assets and control access
- Identify noncompliant configurations against common frameworks such as NIST, SOC, and ISO
- Ensure uniform policy enforcement across tenants
Improve remediation workflows:
- Automatically remediate uncovered policy violations and misconfigurations
- Use an intuitive dashboard to analyze anomalies and generate notifications

Secure Salesforce access from anywhere
Manage sensitive data with Zscaler CASB and DLP:
- Prevent direct, unfettered access to your sanctioned app instance with Isolation Proxy
- Apply agentless browser isolation to prevent data loss through uses’ unmanaged devices
- Block direct connections by risky or unauthorized devices—the Zero Trust Exchange connects to the web app on the user’s behalf
- Stream pixels to the user’s browser to prevent download, copy, paste, and print