As a Salesforce administrator, have you ever spent to much time researching security for your cloud applications? Ever felt frustrated trying to find the security setting you need? That's why Salesforce created the Security Health Check, available to you in Spring '16 release.
Why we built Security Health Check
Security Health Check was built to bridge the gap with security requirements and actual implementations of security:
- Difficulty understanding and staying up-to-date with everything security related and how it relates to your business and cloud applications.
- Configuring security requires security understanding of the business and application environment
- Due to changing business landscape, security requirements also keep changing and customers need information how security has been configured
- Administrators need to validate compliance across their application portfolio
- Identify needs for ISV or add-on security services like Salesforce Shield
Using Security Health Check
Security Health Check shows an overall score reflecting how well different security settings in your Salesforce application meet the Salesforce standard baseline. This baseline is the Salesforce recommended practice for implementing highest level of security.
Under the hood
The typical Salesforce "org" has about 20 different security nodes in Setup. Each node consists of many different security settings. We've simplified this experience by elevating popular setting groups to the Health Check page. We evaluate each setting's security implication, its implementation, and apply proprietary risk scoring and weights to each security setting.
What’s Next for Health Check?
We are continuously expanding the scope and functionality of the Health Check on the Security roadmap. Future features include (under Safe Harbor):
- Exposing Health Check API for ISVs and security audits
- Adding more setting groups like Certificate and Key Management, Single Sign On and Login Access Policies
- Viewing Health Check across multiple Salesforce applications (org’s)
In Setup, find Security Health Check by typing "Health Check" in the Quick Find box to find it under Security Controls.
We hope you use the Health Check and that it becomes a favorite security destination for you.
Please feel free to leave your comments, suggestions and feedback below. Thank you!