ThreatGPS for Salesforce
Salesforce’s cloud-based applications for sales, service, marketing, and more don’t require IT experts to set up or manage, yet contain very sensitive information. While Salesforce has auditing features which provide information about use of the system, it takes regular audits and monitoring to detect suspicious activity and potential abuse, a very manual and tedious effort.
LogicHub’s ThreatGPS for Salesforce provides out-of-the-box threat detection. It continuously monitors your feed of Salesforce Audit events to detect any unusual behavior or pattern, and provides you with a really high quality feed of alerts.
Rapid deployment with pre-built logic and guided expertise
360 degree automated review of Salesforce Audit events, with 100% coverage of all event types
Automatically generates high quality alerts with very low false positive rates by
- Automatically parsing all Salesforce Audit events
- Building baselines around Client_IP, user_id and organization_id
- Easily incorporating business context and user feedback
- Modeling typical behavior of users using entities, apis and methods, and generating alerts on suspicious behavior
Easy to adapt and train to your custom environment
Automation integrations with ticketing systems such as Jira and ServiceNow