The Information Security Registered Assessors Program (iRAP) is an Australian Signals Directorate (ASD) initiative to provide high-quality information and communications technology (ICT) services to government in support of Australia's security. iRAP provides the framework to endorse individuals from the private and public sectors to provide cyber security assessment services to Australian governments. Endorsed iRAP Assessors can provide an independent assessment of ICT security, suggest mitigations and highlight residual risks. iRAP Assessors may provide assessment up to the TOP SECRET level for cloud services and others. Additional information can be found at https://acsc.gov.au/infosec/irap/index.htm
This document provides Salesforce Sales Cloud and Salesforce Service Cloud customers with recommendations designed to enhance the security of their Salesforce implementations. These process and configuration recommendations build upon the default security settings of these services and can help customers to meet various customer or industry specific requirements.