Security and PLM in the Age of Equifax

By Miguel Tam

What are you doing to make sure your data doesn’t get “Equifax’ed?” In case you missed it, Equifax, one of the three main credit reporting agencies in the US, was hacked. That means that almost 150 million people, which is about every adult in the US, had their personal details like their Social Security numbers, birthdate, address, and financial history potentially exposed to hackers. Not a good day for security.

By sheer coincidence, one of Propel’s transportation customers also asked me about security last week. They had specific questions about how the Salesforce platform (which Propel is built on) manages security for both internal and external users. While on-premise and older cloud PLM systems struggle with external collaboration, it’s pretty easy for Propel. More on that in a later post.

When you think about overall security, Equifax offers lessons to businesses of all sizes in terms of protecting their employee, sales, product and operational data. There’s lots of technical information available about protecting your networks and applications, but I think one part of security that’s often overlooked is “social hacking” – exploiting people’s natural tendencies to unknowingly expose their data. What’s super-compelling about Propel and the Salesforce platform is how we reduce social hacking (plus Salesforce offers the world’s best technical data security).

Here are just a few things the platform offers:

  • Two-factor authentication: probably the #1 thing you can do to keep your data safe. You can force users to enter an extra code either just once or every single time.
  • Object security: entire objects can be hidden from certain users, so a supplier could have no access to any item or quality process.
  • Sharing: specific objects can be shared with different users based on different criteria. For example, let Supplier1 see all parts where they’re the supplier but prevent them from seeing all other parts.
  • Field-level security: specific fields can be hidden like cost, vendor status or other sensitive information.
  • Login IP ranges: restrict which IP addresses people can access your data from
  • Session timeouts: users leaving their desks with their computers on? Just have their session time out after a few minutes of inactivity.

Of course, no data is 100% secure, but Propel is built on the world’s most secure platform, so you can rest assured your product data is safe. For more information on Propel and data security, visit the Propel website.

Tags: Cloud Computing, PLM, plm software, Blog, cloud plm, cybersecurity, Salesforce, security