November 4, 2022

Top 10 Salesforce Security Health Check Tips

Top 10 Salesforce Security Health Check Tips

The importance of monitoring your Salesforce Instance can not be understated. Monitoring your salesforce instance closely, guarantees the safety, security and consistency of your business operations while keeping you updated and abreast with the latest and the greatest information for your salesforce org.

The Salesforce Security Health Check tool is a crucial tool that helps monitor the health of your Salesforce setup and helps identify and prevent vulnerabilities. The Salesforce Security Health Check Tool provides an easy way to review your Salesforce instance against a predetermined standard security baseline and provide a summary comparison score as a percentage. The tool also allows you to upload up to 5 custom baselines to use in the health check. The baselines define risk levels that include:

  • High Risk
  • Medium Risk
  • Low Risk
  • International Security Standards

Gate6 has 10 helpful tips for doing health checks on your salesforce instance. We would love to hear from you about your tips, so feel free to leave comments about your experience with the Salesforce Security Health Check Tool. 

1.  Dashboard and Inactive Reports

For most of our clients, this is a significant benefit of the health check.   Most organizations will produce a large number of reports over time. Many of these reports are rendered inactive or obsolete if they have not been executed over the past several months or years. These reports can be safely deleted as part of the health check.

2. Abandoned Document Types & Layouts

The health check tool allows you to find out how many record types and page layouts are not linked to any profiles in your Salesforce instance.  Over time these unlinked record types and page layouts can have an impact on the performance of your Salesforce instance. Cleaning these items is an easy performance and security win.

3. Total Entities in the Org

Salesforce has a restriction of 3000 custom objects in an instance. If your number of objects exceeds 1500, you may start to see performance issues.  Maybe not today, but a good practice is to keep an eye on this number and prune any custom objects not being used.

4. Statistics in each Org

One of the useful statistics provided by the health check is the size of data volumes. Large data volumes can be a cause of several issues, performance being one of them. If you find that the size of your data volumes is getting closer to the storage limit you may want to address your archival approach if you have not already done so.

5. Each entity’s Total Field

The health check tool allows you to run an analysis to determine how many fields are utilized and verify how many items have filled fields to 80% of their capacity. You may utilize AppExchange features like a field trip to determine whether all fields are being used or not. Once you have this information you can decide what to do with unused fields.

6. Determine Which Items Have a lot of Sharing Rules

Sharing regulations may affect organizational performance. Although there is a cap of 300 sharing rules per object, if the overall sharing rules are greater than 150, it is time to consider simulating.

7. Conditions for Workflow & Approval

There is a limitation of 500 rules per object. There is nothing like a clean Salesforce instance.  If you find that you have a lot of objects with a lot of rules, make a removal strategy for inactive ones.

8. Method Developer

For improved performance Flows should replace Process Builder.  Determine if your instance still contains process builders and make a plan to move any remaining outdated process builders to a flow wherever possible.

9. Customization Options

Verify the percentage of modifications completed in your organization. Anything above 70% denotes a sophisticated organization. Checking code quality using PMD (a source code analyzer. that finds common programming flaws like unused variables, empty catch blocks, unnecessary object creation, etc.) and Checkmarx (an analyzer that scans for security vulnerabilities in your code) are both great ideas.

10. Access Controls

Determine the number of profiles that have access to features like Modify All Data, View Setup, etc., and check to make sure that only a select few have those profiles allocated. Implementations of Salesforce should adhere to the Zero Trust policy.

The Final Statement!

A Salesforce Security Health Check can seem daunting but with the help of Gate6′
salesforce integration service, you can quickly be on your way to a great Security Health Check score! Consult Gate6, for Salesforce Integration Services and Salesforce Security today!

Written by Bob Cody

Share post

Call us Now
Scroll to top