When a Salesforce org has a security failure, someone made an architecture decision that allowed it. Crystal Zhu, Enterprise Architect and Senior Salesforce Technical Architect at CGI, has seen the same pattern repeat.
Picture a Health Cloud org where five external systems authenticate through one shared integration user. That user runs on a profile cloned from System Administrator, and its outbound credentials sit in plaintext inside a custom metadata type. The team believes they built it right, and every record is one compromised connection away from exposure.
In this session, Crystal will show how to take that org from anti-pattern to trusted architecture using the Salesforce Well-Architected Framework as a working audit tool. She applies zero trust principles and the Principle of Least Privilege at every layer, from license selection and the Minimum Access API Only Integrations profile to dedicated permission sets, login IP ranges, and Named Credentials that take secrets out of plaintext for good. The framework stops being a poster on the wall and becomes the checklist an architect needs.
Attendees will leave with a practical checklist for assessing trust in any Salesforce org, a clear model for layering organizational, session, and data security, and a working understanding of why security is not a feature you add at the end but a foundation you architect from the start.
Bring your burning questions to get answered live by guest speaker Crystal Zhu and host, Matt Meyers, CTA and Founder and CEO of EzProtect.
Register for this event and we will see you online.