{"id":14919,"date":"2025-10-08T12:07:07","date_gmt":"2025-10-08T12:07:07","guid":{"rendered":"https:\/\/newestek.com\/?p=14919"},"modified":"2025-10-08T12:07:07","modified_gmt":"2025-10-08T12:07:07","slug":"salesforce-ai-agents-set-to-assist-enterprises-with-security-and-compliance","status":"publish","type":"post","link":"https:\/\/newestek.com\/?p=14919","title":{"rendered":"Salesforce AI agents set to assist enterprises with security and compliance"},"content":{"rendered":"
\n
\n
\n
\n
\n
\n
<\/div>\n<\/section>\n

Salesforce has announced two new AI agents operating on its Agentforce platform: one agent that monitors activity, detects anomalies, and accelerates investigations and remediations in the Salesforce Security Center; and one that streamlines compliance tasks in the Privacy Center.<\/p>\n

\u201cThe things that our customers are already doing today, we\u2019re just helping them to do that more efficiently, effectively, more quickly,\u201d says Marla Hay, Salesforce SVP of product management for security, privacy, and data protection. \u201cAnd we\u2019re helping them to really think about how they want to take on that agentic transformation in a way that feels secure, safe and compliant.\u201d<\/p>\n

These two new agents access Salesforce security and compliance information and will soon expand to external data, such as feeds from a customer\u2019s other security systems.<\/p>\n

\u201cOur customers have security, privacy and compliance teams who aren\u2019t necessarily Salesforce experts,\u201d says Hay. \u201cAnd Salesforce experts who are not necessarily security and compliance experts. We want to bridge those two things together.\u201d<\/p>\n

Salesforce has already announced a partnership with CrowdStrike<\/a> as one example of such a capability. These partnerships are part of a move towards even more integrations that will extend agentic capabilities in the Salesforce Security Center via its AgentExchange marketplace.<\/p>\n

More than chatbots<\/h2>\n

The agents are more than just rebranded chatbots who only answer questions. The company says that they can detect events and then take relevant actions. \u201cIt is not waiting for a human to initiate the interaction \u2014 it is running independently,\u201d Hay says.<\/p>\n

The security agent can analyze event logs to identify unauthorized or unusual actions, guide step-by-step incident response, and autonomously freeze users exhibiting suspicious behavior, according to Salesforce. The privacy agent scans Salesforce metadata and data privacy policies against regulatory frameworks like GDPR<\/a> and CCPA<\/a> to surface sensitive data exposure and non-compliance risks and can autonomously re-classify sensitive data or implement right-to-be-forgotten policies.<\/p>\n

Constellation Research analyst Chirag Mehta recommends that enterprises take a measured approach to their adoption of these agents instead of jumping straight into fully autonomous agents.<\/p>\n

\u201cThey have an agentic workflow that runs behind the scenes,\u201d he explains. \u201cIf someone logs in from, say, North Korea, it checks the systems accessed. And, say, they touched these five systems and it doesn\u2019t seem right.\u201d<\/p>\n

The agent would then alert a human security analyst about the event, provide all the context about what\u2019s going on, and then present a remediation plan. \u201cAnd you can accept the plan,\u201d Mehta says. \u201cOr you as a human, as a security analyst, can say, \u2018I don\u2019t agree with this plan.\u2019 Or you might want to double-check before you execute on this plan.\u201d<\/p>\n

In the past the analyst would simply get an alert and then have to go and figure out who logged in, and what systems they have access to, and what else might be infected, and whether it\u2019s even a real incident or a false positive.<\/p>\n

Machines are much better at sifting through all that, he says, as well as being much faster.<\/p>\n

\u201cWith security, every second, every minute counts,\u201d Mehta says. \u201cThe negative impact amplifies. You don\u2019t just have systems down, but the adversaries could get access to even more stuff.\u201d<\/p>\n

Enterprises that aren\u2019t currently using the Security Center add-on should consider it, he says. And those who are, should enable the AI agent functionality. \u201cCustomers should absolutely use it,\u201d he says. \u201cSee how useful it is, what the remediation plans looks like, then, once they build trust, they should start automating one thing at a time.\u201d<\/p>\n

Salesforce Agentforce<\/h2>\n

Agentforce is a relatively new platform but has already evolved at an extremely rapid pace. It was first unveiled<\/a> in September 2024, became generally available the following month, added testing and agent lifecycle management tools in November, announced integration with Slack and other platforms in December, added autonomous agents that can take action on their own this past March, and also launched an agent marketplace at the same time with more than 200 partners. Then Salesforce added native MCP support<\/a> in June as well as an array of new MCP integration partners including AWS, Box, Cisco, Google Cloud, IBM, Notion, PayPal and Stripe.<\/p>\n

As of September, Salesforce said it had closed more than 12,500 new deals since Agentforce was launched.<\/p>\n

\u201cSalesforce wants to be the agentic center of the universe,\u201d says Peter Nebel, chief strategy officer at AllCloud, a cloud consultancy.<\/p>\n

On the same month, a critical vulnerability in Salesforce\u2019s Agentforce<\/a> was disclosed. The vulnerability could trick the AI agent into leaking sensitive CRM data through indirect prompt injection. It has since been patched.<\/p>\n

The basic security and compliance agents are available today. CrowdStrike integration is expected later this year. In early 2026, Salesforce will add autonomous threat detection and triaging, access to agents via Slack, and custom data compliance policies.<\/p>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n","protected":false},"excerpt":{"rendered":"

Salesforce has announced two new AI agents operating on its Agentforce platform: one agent that monitors activity, detects anomalies, and accelerates investigations and remediations in the Salesforce Security Center; and one that streamlines compliance tasks in the Privacy Center. \u201cThe things that our customers are already doing today, we\u2019re just helping them to do that more efficiently, effectively, more quickly,\u201d says Marla Hay, Salesforce SVP… <\/p>\n

Read More<\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"inline_featured_image":false,"footnotes":""},"categories":[1],"tags":[],"class_list":["post-14919","post","type-post","status-publish","format-standard","hentry","category-uncategorized","is-cat-link-borders-light is-cat-link-rounded"],"_links":{"self":[{"href":"https:\/\/newestek.com\/index.php?rest_route=\/wp\/v2\/posts\/14919","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/newestek.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/newestek.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/newestek.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/newestek.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=14919"}],"version-history":[{"count":0,"href":"https:\/\/newestek.com\/index.php?rest_route=\/wp\/v2\/posts\/14919\/revisions"}],"wp:attachment":[{"href":"https:\/\/newestek.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=14919"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/newestek.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=14919"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/newestek.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=14919"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}