Highlights around increased pressure to comply with international data residency laws when using SaaS softwares like Salesforce and the need to address open security vulnerabilities on the platform to avoid data leakage.
- Andy Montoya
- August 24, 2023
- 4:46 pm
- No Comments
A security gap exists with Salesforce public clouds because the platform does not inherently protect against malicious inputs or malware contained in file uploads, phishing URLs, web-to-lead submissions, etc.
- Andy Montoya
- August 17, 2023
- 5:52 pm
- No Comments
This guide contains expert opinions and stories of innovation with key takeaways and practical tips security teams can use now to better secure Salesforce.
- Andy Montoya
- July 20, 2023
- 7:34 pm
- No Comments
Platinum7 utilizes automated security testing as a main tool in their detailed security assessments to find real risk hidden within their client's Salesforce environments.
- Andy Montoya
- July 11, 2023
- 3:27 pm
- No Comments
Following our Spring23 Release, we've made a number of additional updates including better GitHub integration, user permission editing, and more.
- Andy Montoya
- June 15, 2023
- 4:48 pm
- No Comments
In our fourth Salesforce Security Blind Spots session, our CEO Waqas and Kyle Tobener of Copado discuss the lack of security in Salesforce's 3rd-party supply chain of apps and packages.
- Andy Montoya
- June 8, 2023
- 6:54 pm
- No Comments
KrebsOnSecurity found “a shocking number of organizations” are experiencing data leakage from their Salesforce Community sites.
- Andy Montoya
- May 24, 2023
- 7:42 pm
- No Comments
DigitSec has grown quickly over the past several months and with this growth we've made considerable steps forward in improving the user interface, making the platform more robust, helping secure ecommerce, and more.
- Andy Montoya
- April 13, 2023
- 3:25 pm
- No Comments
Our VP of Customer Success, Phil Lepanto provides a demo of how DigitSec's security scanning for Salesforce integrates directly into Copado DevOps.
- Phil Lepanto
- March 22, 2023
- 5:31 pm
- No Comments
Security in Salesforce can use up a lot of time, money and people because security needs to be enforced across multiple layers and departments. Automation, accuracy, and the right tools can help save time and money.
- Andy Montoya
- February 23, 2023
- 8:47 pm
- No Comments
In this session, Waqas and Nikita discuss how observability is imperative to staying aware of what’s happening in your Org. But this observability needs to be secure to avoid data leakage.
- Andy Montoya
- February 13, 2023
- 3:38 pm
- No Comments
The Head of IT at a leading software company saw the need to update the company's Salesforce security after 15+ years of using the platform. He met this challenge head on with the help of DigitSec.
- Phil Lepanto
- February 10, 2023
- 4:22 pm
- No Comments
Copado is a robust DevOps platform that can support any development challenge. Integrating DigitSec into Copado development pipelines delivers true DevSecOps for Salesforce.
- Andy Montoya
- February 2, 2023
- 7:53 pm
- No Comments
Copado hosted a fireside chat with our CEO to discuss the importance of IT security, the success of DevSecOps with DigitSec, real-world scenarios and the cost of not doing security.
- Andy Montoya
- January 6, 2023
- 6:14 pm
- No Comments
Hanna Andersson protects their brand while building security and trust through automated security scanning, resulting in a big leap forward for the company.
- Andy Montoya
- December 15, 2022
- 9:36 pm
- No Comments
We take a look at DigitSec's top content of 2022 and highlights for the company including external visibility, expanding partnerships, new clients & more.
- Phil Lepanto
- November 21, 2022
- 3:58 pm
- No Comments
Cloud Infrastructure and Software-As-A-Service (SaaS) have accelerated Digital Transformation across many industries but with it also comes new security challenges & threats.
Although Salesforce in itself is PCI DSS compliant, your customizations can and affect that compliance. DigitSec can help you stay PCI DSS compliant in a simplified way.
- Andy Montoya
- September 6, 2022
- 7:10 pm
- No Comments
In this session, Waqas and Rachel uncover more security blind spots that relate to the human element, data classification, foundational work and more.
As adoption of the cloud increased, it became imperative for SaaS-based systems to be more flexible. The demand to leverage this flexibility also increased and the response lies in DevOps.
- Andy Montoya
- June 30, 2022
- 3:41 pm
- No Comments
Software as a Service (SaaS) and Cloud Infrastructure services have evolved to be a key engine behind business' and organizations' progress to greater scale and efficiency. In response, once disparate teams are uniting around DevSecOps.
- Andy Montoya
- June 16, 2022
- 4:30 pm
- No Comments
Security audits and penetration testing are not like financial audits, which typically happen once a year. An annual cadence just doesn't cut it for security.
- Andy Montoya
- June 9, 2022
- 8:06 pm
- No Comments
The Low Code, No Code movement can make Salesforce development easier, faster and more scalable but with it comes a a new set of security risks that need to be addressed.
- Andy Montoya
- June 9, 2022
- 7:00 pm
- No Comments
Waqas Nazir, CEO and Founder at DigitSec and guest Andy Ognenoff, Managing Director, Global Salesforce Security Lead at Accenture discuss Salesforce security blind spots.
- Andy Montoya
- May 19, 2022
- 6:17 pm
- No Comments
Salesforce recently released their Top Data Security Trends for 2022 report, which focuses on 4 main areas. We highlight these areas and include how S4 can help strengthen security in each one.
- Andy Montoya
- April 27, 2022
- 2:48 pm
- No Comments
DigitSec can be a tool that teams use to help meet requirements in this NIST standard by providing automated, SAST, IAST and external library testing.
- Phil Lepanto
- April 19, 2022
- 8:59 pm
DevSecOps doesn’t happen overnight. It takes constant care and attention to make sure that development, testing, review and deployment are all a part of the process.
- Andy Montoya
- April 13, 2022
- 8:38 pm
- No Comments
From being recognized by third-party outlets to cementing more strategic partnerships, the DigitSec team have been hard at work promoting our powerful security scanner for Salesforce.
- Phil Lepanto
- March 25, 2022
- 5:42 pm
Like a modern day Rosetta Stone, DigitSec S4 maps Vulnerability Findings to major compliance frameworks and industry-standard descriptions. Teams can use this information to prioritize their efforts.
- Andy Montoya
- March 16, 2022
- 7:48 pm
- No Comments
DigitSec CEO, Waqas talks security with Salesforce Republic and discusses false positives, ways to shift security left, DevSecOps principles and more.
- Phil Lepanto
- March 10, 2022
- 3:00 pm
Integrating S4 with GitHub now leverages the fundamental strength of a powerful code repository with version control. S4 can now highlight differences between code versions and draw attention to vulnerabilities.
- Andy Montoya
- March 3, 2022
- 10:11 pm
- No Comments
This roundtable consisting of expert panelists from DigitSec, Copado, Elements.cloud and OwnBackup discuss what it takes to reach DevOps excellence - the "gold" standard.
- Andy Montoya
- February 17, 2022
- 4:38 pm
- No Comments
InCountry needed to pass the Salesforce AppExchange security review and get their app out to the market quickly . By using DigitSec, they saved over 1000 dev hours and released ahead of schedule.
- Phil Lepanto
- February 15, 2022
- 10:30 am
DigitSec S4 Winter22 Update Release unites the power of S4 with Copado, connects with SSO providers, brings advanced filtering to vulnerability reports, and provides improved integration with GitHub via SARIF exports.
- Andy Montoya
- February 10, 2022
- 8:28 pm
- No Comments
DigitSec was recently reviewed by eWeek, a trusted source for everything tech. The review confirms that our tool "brings much needed security to Salesforce."
- Phil Lepanto
- December 14, 2021
- 7:49 pm
SystemDotDebug is a podcast for Salesforce Developers. Waqas Nazir and Shannon Smith of DigitSec join host Meighan Brodsky and Nate Pepper to “Secure Your Shiz” which focuses on Salesforce security.
- Phil Lepanto
- December 2, 2021
- 4:48 pm
Road to CTA, which brings Salesforce architects of all levels together twice a month to connect virtually, invited Waqas to join them and talk about Salesforce security considerations.
- Andy Montoya
- November 4, 2021
- 8:58 pm
Salesforce is secure out-of-the-box but becomes less so with every modification. Watch the full webinar to learn about the shared responsibility model, common security threats, Salesforce security scanning and more!
- Phil Lepanto
- October 26, 2021
- 10:10 pm
S4’s new VS Code Plugin is a giant step forward in bringing the power of S4 directly into developers’ favorite IDE. Read more to find a link to an intro video.
- Phil Lepanto
- October 12, 2021
- 3:52 pm
We're excited to announce updated features and improvements. S4 and Salesforce integrate more smoothly and Administrators have more flexibility managing S4.
- Adrian Szwarcburg
- October 1, 2021
- 8:02 am
Mr. Lepanto instantly recognized DigitSec’s potential and reached out to the company first to invest, then decided to join the team as an executive officer and roll-up his sleeves.
- digitsec
- July 19, 2021
- 7:19 pm
ICYMI Waqas Nazir posted to SalesforceBen to walk developers through the challenges of effective security scanning and offers a compelling case for why organizations should embrace Salesforce DevSecOps and integrate security testing at multiple points in the CI/CD pipeline.
- digitsec
- July 8, 2021
- 4:32 pm
Getting security right for such a complex SaaS platform as Salesforce that can also be extended as a PaaS can be daunting! Salesforce manages to do many things very well when it comes to security. Read about five aspects of security that Salesforce does well and which help to make it among the most secure SaaS offerings today.
- digitsec
- July 6, 2021
- 1:56 pm
Over the last 20 years Salesforce has evolved from a cloud sales automation app to a platform that can support any business process and link to every legacy application. This power and sophistication means that Salesforce implementations have become increasingly complex. So we are seeing several established implementation approaches emerging...
- digitsec
- June 11, 2021
- 6:23 pm
Adrian will help us to drive successful Salesforce DevSecOps channel partnerships with global integrators and DevOps automation leaders. He comes to us from AutoRABIT, a DevOps and data protection provider, where he was vice president of channel sales and partnerships.
- digitsec
- January 9, 2021
- 12:14 am
New features for S4 in 2021: Jira Connector, S4 Dashboard, and SCA 2.0 for Salesforce.
- digitsec
- October 10, 2019
- 6:56 pm
Writing custom Apex code, adding integrations and changing configurations can make your Salesforce organizations vulnerable to attacks.
- digitsec
- September 18, 2019
- 9:34 pm
DigitSec, Inc. is pleased to announce the following new features to S4 - SaaS Security Scanner for Salesforce: auto scan, oAuth support, and Lightning Web Components.
- digitsec
- July 9, 2019
- 9:18 pm
DigitSec, Inc. is pleased to announce the following new features to S4 - SaaS Security Scanner for Salesforce: auto scan, oAuth support, and Lightning Web Components.
- digitsec
- August 30, 2018
- 4:56 pm
At the June 2017 Open Web Application Security Project (OWASP) meetup in Seattle, WA., CEO of DigitSec, Waqas Nazir, spoke to attendees about the exploitation and security of SaaS applications.
- digitsec
- August 30, 2018
- 4:35 pm
SEATTLE, WA, October 5, 2017- DigitSec, Inc. has announced their official partnership with Salesforce as a registered ISV partner. This partnership with DigitSec, Inc., a leading provider of information security and compliance products for SaaS applications, and Salesforce, the world’s…
- digitsec
- August 30, 2018
- 4:30 pm
DigitSec, Inc.'s CEO, Waqas Nazir, made a special appearance at this year's Force Academy convention in Los Angeles. Waqas' presentation was titled, '5 Tips for Secure Development on Force.com.’
- digitsec
- June 25, 2018
- 10:50 pm
Waqas Nazir, CEO of DigitSec, and Ryan Headley from System dot Debug, discuss the SaaS Security Scanner for Salesforce (S4) and its ability to secure Salesforce orgs.