At Salesloft, we understand that security is paramount, and we are deeply committed to protecting our customers' data. Our security program is built upon industry-leading frameworks, ISO 27001 and NIST CSF, to ensure a comprehensive approach to safeguarding your information now and in the future.
Security Governance Structure
Continuous Program Maturity
We rigorously measure the maturity of our security program on a quarterly basis. This ongoing assessment allows us to identify key risks and investment needs, which are then reported to our board of directors and management team.
Dedicated Risk Council
We have a dedicated risk council, comprising key leaders across business and technical functions and members of our board, ensuring alignment on upcoming security needs and investments. This collaborative approach ensures that security remains a top priority across all facets of our organization.
Expert Security Team
Our security team is composed of specialists across IT security, AppSec, Cloud security, and security operations. This diverse expertise allows us to work closely with partners across the business to implement and maintain appropriate controls.
Enhanced Security Posture
Salesloft, in partnership with a leading cybersecurity firm, has implemented significant enhancements to further strengthen our security posture:
Strong Encryption and Protection of Customer Secrets
We employ robust encryption and protection mechanisms to safeguard customer secrets, ensuring their confidentiality and integrity.
Improved Controls for Secret Management
We have implemented improved controls to prevent secrets from ever entering the source code management system environment, minimizing potential vulnerabilities.
Frequent Rotation and Secure Storage
Application secrets that are required to run the platform undergo frequent rotation and are stored in secure solutions, further enhancing our protection against unauthorized access.
Elimination of Circumvented Access Mechanisms
We have removed access mechanisms for the source code environment that circumvent single sign-on requirements, such as external collaborators and personal access tokens, reinforcing our access control policies.
Comprehensive Environment Review
A full review of the security of our AWS and GCP environments, which host the Drift and Salesloft platforms, has been conducted to ensure the highest level of security.
Your trust and the security of your data are our highest priorities. We are committed to providing a safe and secure platform for all users with a best-in-class security program.