AI is accelerating how we build in Salesforce, from prompt-based automation to rapid configuration changes. But what happens when the tools evolve faster than our safety standards?

In this episode, Andrew Davis, Founder of the Institute for Transformational Leadership and author of Flow Engineering, sits down with John Crimmings, DevOps Consultant at Slalom Consulting and member of the Low Code Security Alliance, to unpack the overlooked risks of Agentforce and AI-powered development.

From user permissions to automation guardrails, this conversation explores how platform teams can build safer, smarter, and more resilient Salesforce environments—without pumping the brakes on innovation.

Takeaways:

• The podcast emphasizes the importance of maintaining a secure and effective DevOps strategy within the Salesforce ecosystem.
• Andrew Davis, the host, and John Crimmings, the guest, discuss their professional journeys and experiences in the Salesforce space.
• Listeners are reminded of the ethical considerations in software development and data security practices in Salesforce implementations.
• The conversation highlights the potential risks associated with rapid development and the need for security measures in using tools like AgentForce.
• There is a significant knowledge gap regarding Salesforce security between IT professionals and those managing Salesforce environments.
• Lastly, the episode stresses the importance of documenting processes and ensuring that access permissions are managed effectively to mitigate security risks.

Salesforce developers operate in a unique environment—where clicks and code collide, and agility meets constraint. But how do they align with the rigor and rhythm of traditional software engineering?

In this episode, Andrew Davis, Founder of the Institute for Transformational Leadership and author of Flow Engineering, joins Pablo Gonzalez, AutoRABIT’s Director of Product Management and Research, to explore how teams can close the gap between two distinct development worlds. Expect sharp insights, real-world patterns, and a clear path toward more cohesive, high-performing product teams.

Takeaways:

• In this episode, we emphasize the significance of clean code within the DevOps ecosystem, particularly in Salesforce.
• We discuss how efficient DevOps practices are contingent upon maintaining high-quality code, which influences continuous integration and delivery.
• The conversation highlights the necessity of bridging the knowledge gap within the Salesforce developer community regarding advanced software design principles.
• We examine the relationship between modularity, coupling, and cohesion, elucidating their impact on software architecture and system design.
• The episode underscores the importance of fast automated tests in achieving true continuous integration and delivery within Salesforce environments.
• Listeners are encouraged to engage with the book and its principles to enhance their understanding of effective software development practices.

Protecting Salesforce digital experiences is critical to delivering the seamless, secure services your customers expect. Join Justin Hazard, Principal Security Architect at AutoRABIT, and Matt Meyers, Salesforce Certified Technical Architect and CEO of Adaptus, as they dive into the challenges and strategies for safeguarding Salesforce digital experiences. From security risks to proven defense tactics, this podcast delivers expert insights to help you stay ahead of evolving threats.

Takeaways:

• The podcast elucidates the evolution of security measures within the Salesforce ecosystem, emphasizing the significance of multi-factor authentication and permission sets.
• Listeners are encouraged to adopt a security-first mindset, ensuring that data access is tightly controlled and only granted to those who absolutely require it.
• The discussion highlights common misconfigurations in Salesforce, underscoring the potential risks of inadequate security practices and the necessity for rigorous monitoring.
• The speakers advocate for proactive measures, such as regular penetration testing, to identify vulnerabilities before they can be exploited by malicious actors.
• A critical takeaway is the importance of continuously reviewing and updating security protocols to adapt to evolving threats and ensure organizational resilience.
• The hosts emphasize that the responsibility of safeguarding sensitive data lies in the hands of the administrators, who must ensure that the principle of least privilege is effectively implemented.