Agenda 2026 – Wir sind Ohana

Salesforce Shield Demystified: Encryption, Auditing & Threat Prevention

Salesforce Shield is powerful but rarely discussed in depth. This session breaks down its four pillars: Platform Encryption, Field Audit Trail, Event Monitoring, and Einstein Data Detect.

You’ll learn:

How to control encryption with BYOK and cache-only keys
Field history options and their trade-offs
Detecting and preventing breaches with Transaction Security (live demo!)
Finding unprotected sensitive data
Pricing realities and purchasing options

Walk away knowing when and how to protect your org’s most sensitive data.

Valerio Trovato

The Revenue Engine: Integrating Sales Cloud Campaigns with Marketing Cloud Automation

Sales Cloud and Marketing Cloud are often treated as separate platforms but when connected, they can form a true Revenue Engine. This session will explore how to use Salesforce Campaigns in Sales Cloud as the strategic starting point to launch automated, personalized marketing journeys in Marketing Cloud. Developers will learn how Sales Cloud manages campaign targeting, lead qualification, and pipeline tracking, while Marketing Cloud takes care of execution: delivering tailored messages at the right time via email, SMS, or push. We’ll walk through real-life use cases showing how a campaign created by Sales can activate multi-step journeys in Marketing Cloud, how statuses and feedback loop into CRM, and how this integration supports better alignment.

Refresh your full sandboxes without needing to re-configure everything

When was the last time you refreshed your sandboxes to have fresh data ?
You are afraid to do it, because you don’t want to disrupt your project activity while you rebuild all integrations ?
Stop worrying, the session will show how to frequently refresh your full sandboxes without losing any integration with external systems, and even anonymize data from production.
Connected Apps, Certificates, Credentials, SSO, Integration users… and many more, to be ready to work just minutes after the refresh !
With clicks, not code, using open-source tools , and with a live demo to show anyone can do it.

Small or Large, Often or Rare? How to Optimize Releases

In real Salesforce projects, teams often face two extremes: very rare, oversized releases (true Big Bang deployments) and the push to deliver updates as frequently and as granularly as possible.
In this talk, we will explore what batch size means in Salesforce, how it relates to ITIL change types (standard / normal / emergency), and why the goal is not “small” or “large” releases but the optimal release size. Through practical examples, I will demonstrate how to choose the right delivery size based on change type, release calendar, and environment constraints – and why blindly following the “the more often, the better” principle can be dangerous.
Attendees will learn:

why release optimization matters and how to achieve it;
how to define a “healthy” release size for their project;
how to distinguish standard vs. normal changes in practice;
which release anti-patterns stem from incorrect batch size – and how to fix them.

Flow to the Future with New Approval Processes

“Approval Processes have had a facelift and are now part of Flow Orchestration. Join me to see how you can use this new tool to upgrade your Approvals, benefitting from the Orchestration technology without the price tag!
We’ll consider the past experiences with Approval Processes, review the Flow Orchestration tool, focus on how to build a new Flow Approval Process, and cover the benefits and considerations.”

The Art of Enterprise Integrations: Best Practices & Pitfalls

Integrating Salesforce with external systems is a thoughtful process that blends technical skill with smart design. With multiple integration patterns and technologies like REST, SOAP, MuleSoft, and External Services, choosing the right approach can be challenging. In this session, we’ll break down integration best practices, authentication strategies, and real-world pitfalls that can lead to performance bottlenecks, security risks, and maintenance nightmares. You’ll walk away with a clear understanding of how to architect integrations that are scalable, secure, and future-proof. Whether you’re dealing with real-time, batch, or hybrid integrations, this session will provide actionable insights for success.

Surviving and Thriving with Agentforce: A Psychologist’s Guide

Humans are hardwired to resist change, it’s a neurological survival mechanism. When you introduce Agentforce, you’re not just updating a workflow; you’re triggering a threat response and no amount of training documentation will override that wiring.

As a psychologist turned marketer turned Salesforce consulting CEO, I’ve spent fifteen years right at the intersection of how technology and people work together. In this session, we’ll explore “change capacity”, the specific, buildable ability to absorb uncertainty without shutting down, as well as a practical toolkit to develop it in your teams.

Whether you’re an admin, consultant, architect, or project lead, you’ll leave with: the neurological triggers behind adoption resistance, an EQ-based framework to lower that threat response and a way to identify where intervention is helpful before your rollout is derailed.

The future is a moving target. Let’s learn how to hit it.

Rollout and Environment Strategy for Data 360

Implementing Salesforce Data 360 (aka Data Cloud) is not just about connecting multiple data sources. In this session, we’ll break down what a successful Data 360 rollout really looks like, from the first ingestion to enterprise-level deployment.

How we handle Profiles and User Access deployment

You’ve heard that you should ditch Profiles and move to Permission Set ? Great. And then you start doing and you discover that all these nice theoretical blog articles only cover a part of a real life implementation. How to actually migrate ? Retrieve and deploy what’s still only on Profiles ? Create new Profiles with just the needed rights ? Clean Profiles from access that are now on Permission Set ? Come and see how we handle these.

Think like an architect – Live!

“Architecture is defined by the decisions made long before the diagram is finished. In this session, we bring the “”Think Like an Architect”” series to the stage to solve a complex, real-world challenge in real-time.

Watch the process unfold using a three-step approach:
The WHAT: Deconstructing messy business needs into clear technical requirements.
The HOW: A live diagramming session to map solution options directly to those requirements.
The WHY: Defending the design by capturing the underlying assumptions, justifications, and trade-offs.

Instead of just seeing a final product, you will follow the mental framework used to get there. Come prepared to ask questions about the methodology, the thought process, and the technical solution itself.”

Clicks, code, and collaboration: what 5 teams taught me about DevOps

Salesforce teams don’t all look the same – and neither do their release processes. In this session, I’ll share lessons from five real Salesforce teams working at very different stages of DevOps maturity. Some relied on fully automated pipelines owned by developers; others shipped through change sets managed by admins and tech leads. Each team had different roles, processes, and expectations – and those differences shaped their success far more than the tools they used. You’ll leave with practical ways to assess your team’s readiness, adapt DevOps practices for mixed admin/dev environments, and build a path from manual releases to scalable, automated delivery – at a pace that actually fits your organisation.

Your Salesforce org won’t hack itself: Lessons from recent security breaches

Think Salesforce is secure out of the box? You’re right, but that doesn’t mean your data is safe. Recent breaches at major brands didn’t come from Salesforce being hacked, but from weak integrations, OAuth tokens, and human errors. In this session, we’ll break down what really happened, why attackers target Salesforce ecosystems, and the simple steps you can take to keep your own org safe.

Beyond Org Config & Secrets: Are You Doing It Right?

“Managing environment configuration and secrets in Salesforce can be tricky—and doing it wrong can create security risks, deployment issues, and long-term maintenance pain. In this session, we’ll break down the right ways to handle environment-specific config using Custom Settings, Custom Metadata Types, other options, and when each option makes sense.

We’ll explore how a modern CI/CD pipeline can automate config deployment, protect sensitive values, and keep environments aligned without manual fixes. You’ll also learn patterns for handling dynamic vs. static configuration, managing multiple environments, and avoiding common pitfalls.”

The Hidden API Crisis: What Most Salesforce Orgs Miss

“Your API usage is at 40%. Everything looks fine. But somewhere in your event logs, a compromised credential is exfiltrating data at “”normal”” volume. A new IP in Eastern Europe is making calls through a legitimate connected app. Your ETL job shifted from 3 AM to 7 PM—same volume, different story.
None of these would trigger a usage alert. All of them represent real risks.
This session explores what happens after you’ve mastered the basics. We’ll cover anomaly detection—the capability that could have caught the 2025 ShinyHunters breaches before they became headlines.
You’ll learn:
-The five categories of API anomalies
-Detection approaches from simple baselines to machine learning
-How to build an external detection pipeline (or skip the infrastructure and install one)
-Real examples of anomalies that hide in plain sight
Stop asking “”how much?”” and start asking “”what changed?”” Attendees leave understanding how to transform raw API events into actionable security intelligence—before problems escalate.”

Zero Trust Vibe Coding: Secure Salesforce Development in the Age of AI Coding

“AI coding assistants offer unparalleled productivity by writing code, running CLI commands, making tool calls, and even installing packages on your behalf. But this level of agency creates a profound security challenge: the assistant has access to everything you do—your credentials, your host filesystem, and your sensitive Salesforce data.

In this session, we’ll discuss why the passive defense of approval prompts is not enough and confront the most critical threats in agentic coding—Indirect Prompt Injection, Credential Exfiltration, and Supply Chain Contamination—and show how a compromised agent can use simple terminal commands (cat, rm) to cause catastrophic damage.

We’ll dive into a Zero Trust strategy for Isolation using VS Code Dev Containers and Salesforce Scratch Orgs to isolate credentials, contain damage, and restrict access to production data.”

Scaling Without Failing: What They Don’t Tell You About Mega-Orgs

“As your Salesforce footprint grows, the complexity doesn’t just add up—it multiplies. Managing an enterprise-scale Org requires a total shift in mindset regarding performance, governance, and budget.

In this session, I bypass the “”feature announcements”” and get straight to the reality of scale. Based on years of hands-on trial and error, I will share the hard-won lessons of navigating a massive environment.

You will learn:

The ROI of Efficiency: Navigating the significant cost implications of a large-scale org and how to optimize your spend.”
After working hands-on with multiple Marketing Cloud Engagement instances, I’ve seen the same mistakes repeated again and again—and I’ve made some of them myself! This session covers the five most common and costly MCE setup mistakes, from governance gaps and naming chaos to data model decisions that quietly hurt performance. You’ll learn how to spot these hidden technical debt traps early and fix them before they turn into expensive rebuilds.

Strategic Limit Management: Moving from reactive fixing to proactive architectural design.

Optimization Frameworks: How to identify and resolve performance bottlenecks that threaten user adoption.

The 5 Marketing Cloud Engagement Mistakes You Don’t Know You’re Making (Yet!)

After working hands-on with multiple Marketing Cloud Engagement instances, I’ve seen the same mistakes repeated again and again—and I’ve made some of them myself! This session covers the five most common and costly MCE setup mistakes, from governance gaps and naming chaos to data model decisions that quietly hurt performance. You’ll learn how to spot these hidden technical debt traps early and fix them before they turn into expensive rebuilds.

Christopher Ramm

Your questions – my answers

Last time it was a great session with some interesting questions coming from the audience, let’s try to repeat it this time.
There is no presentation and no content if YOU won’t bring your questions. I’ll try to provide my best honest answers to them.

All Your Salesforce Data Belongs to Us – Johnny klickte auf “Autorisieren”

“2025 hat deutlich gezeigt: Salesforce ist (leider) nicht allein für Security verantwortlich. Moderne CRM-Landschaften sind hochintegriert – und genau deshalb ein attraktives Angriffsziel. Die größten Vorfälle der letzten Monate entstanden nicht durch Plattformschwächen, sondern durch fehlkonfigurierte Integrationen, überprivilegierte OAuth-Berechtigungen oder unsichere DevOps-Pipelines.

In dieser Session analysiere ich reale Sicherheitsvorfälle und zeige, wie solche Schwachstellen technisch entstehen und ausgenutzt werden. Eine kurze Demonstration macht typische Angriffspfade greifbar. Darauf aufbauend stelle ich Security in Depth als zentrales Architekturprinzip vor: Sicherheit entsteht durch mehrere gezielt kombinierte Schutzschichten – nicht durch einzelne Features.

Ziel ist es, zu verdeutlichen, warum Security nicht bei Salesforce beginnt, sondern das Ergebnis bewusster Architektur-, Integrations- und DevOps-Entscheidungen ist.”

From “I Have a Flow” to “I Know What Happens”

“Salesforce automation is predictable — but rarely obvious. As orgs grow, Flow diagrams alone no longer tell the full story of what happens when data changes. Dependencies across Flows, Apex triggers, validation rules, and related objects make impact analysis increasingly difficult.
This session focuses on how to move from “I have a Flow” to “I know what happens” by documenting automation as system behaviour, not as diagrams or bullet points. You’ll see a practical framework for describing automation behaviour: when it runs, what data it touches, and how changes propagate across the org. The talk also shows how AI can help analyse Flow metadata and generate clear, usable documentation for complex, existing orgs — without turning this into a tooling or hype-driven session.
Attendees will leave with a clearer way to reason about Salesforce automation and assess change impact with confidence.”

Matthias Rolke

Von der Sandbox-Blackbox zur transparenten Scratch-Org – Mit Hilfe von AI

Scratch Orgs versprechen eine schnellere, sauberere Salesforce-Entwicklung – doch die Migration eines bestehenden Projekts ist oft alles andere als reibungslos. Die Definition des richtigen Org-Shapes, die Aktivierung von Funktionen, die Installation von Managed Packages und das Deployment von Metadaten können sich schnell in einen langsamen, frustrierenden Zyklus von Trial und Error mit langen Feedback-Schleifen verwandeln.

Was wäre, wenn ein AI-Agent die Schwerstarbeit übernehmen könnte? Indem wir ihm den vollständigen Projektkontext geben und ihn mit der Erfahrung aus vielen realen Sandbox-zu-Scratch-Org-Migrationen trainieren, haben wir diese Idee auf die Probe gestellt.

In dieser Session teilen wir einen ehrlichen, erfahrungsbasierten Bericht: Was funktionierte, was fehlschlug, wo KI signifikant Zeit sparte – und wo sie noch hinter den Erwartungen zurückblieb. Wir bieten konkrete Einblicke, ob AI die Einführung von Scratch Orgs für bestehende Salesforce-Projekte wirklich beschleunigen kann.

Data Cloud Gone Wild: Securing What You Think Is Safe

Think your Data Cloud is secure? Think again. I’ll share real-world lessons from recent projects, including the most common ways sensitive data gets exposed and how to prevent it. This session is packed with practical tips, governance tricks, and security best practices. Learn how to keep your unified customer data safe, compliant, and under control before it goes “viral.”

The Myth of Least Privilege in Salesforce and What Actually Works

“Salesforce Shield is powerful but rarely discussed in depth. This session breaks down its four pillars: Platform Encryption, Field Audit Trail, Event Monitoring, and Einstein Data Detect.

You’ll learn:

How to control encryption with BYOK and cache-only keys
Field history options and their trade-offs
Detecting and preventing breaches with Transaction Security (live demo!)
Finding unprotected sensitive data
Pricing realities and purchasing options

Walk away knowing when and how to protect your org’s most sensitive data.”

Sebastiano Schwarz

Anti-Patterns in Agentforce: 5 Mistakes That Look Like Best Practices

Anti-patterns don’t always look like mistakes. In fact, they often emerge from decisions that seem smart at first, especially when working with a powerful and evolving platform like Agentforce. Whether it’s leveraging new capabilities or following what appear to be best practices, it’s easy to fall into traps that compromise reliability, safety, or performance.

As Agentforce becomes more deeply embedded in Salesforce, the temptation grows to build agents that do it all. But without clear design principles, agents quickly become unpredictable, unreliable, or even unsafe. In this session, we’ll break down five of the most common Agentforce anti-patterns—rooted in real-world scenarios—to help you design smarter, safer, and more effective AI agents.

You’ll learn how to spot red flags early, understand the trade-offs behind seemingly good decisions, and walk away with practical guidance to avoid these pitfalls in your own implementations.

Justyna Krajewska

Access Granted: Turning Accessibility Challenges into Equitable Solutions

Building in Salesforce is about empowering users—but what happens when the platform itself becomes a barrier? For users with diverse needs and abilities, a poorly designed page isn’t just an inconvenience; it’s a “Stop” sign.

It’s time to move beyond checklists and Accessibility Compliance Reports (ACRs) to experience the “why” behind inclusive design. In this high-energy, interactive session, we’re ditching the slide deck for live simulations. You’ll step into the shoes of users facing real-world obstacles, experiencing firsthand how design choices impact accessibility. Once we’ve identified the friction, we’ll dive into the “how,” arming you with the strategies and Salesforce-specific standards needed to build solutions that truly work for everyone.

Come ready to participate, experiment, and shift your perspective.

Speak Business, Think Tech: Communicating Architectural Choices & Decisions

Ever struggled to explain a technical decision to a business stakeholder? Why you’ve chosen one integration pattern over another? Or why a certain solution costs more but scales better? In this session we’ll address the communication aspect of an Architect’s role, giving practical hints on how to justify technical trade-offs & make your stakeholder feel confident with decisions.

Von der Salesforce-Org zur Enterprise Landscape: Wie Visualisierung Solution Architects zu echten Enterprise-Architekten macht

Salesforce-Lösungen werden oft im Projekt optimiert – aber nicht im Unternehmenskontext gedacht. Das führt zu Insellösungen, komplizierten Datenflüssen und frustrierten Stakeholdern. In diesem Vortrag zeige ich, wie Solution Architects mit einfachen Enterprise-Architecture-Denkmustern und Visualisierungen (z.B. Capability-Maps, Provider/Consumer- und Datenfluss-Views) ihre Architekturentscheidungen auf ein neues Level heben können. Basierend auf meiner Reise vom Salesforce Solution Architect zum Enterprise Architect im Konzernumfeld bekommst du ein leichtgewichtiges Framework an die Hand, das du sofort in deinen nächsten Projekten anwenden kannst – auch ohne eigene EA-Tools.

Justyna Krajewska

Change management for Admins: getting users to actually adopt features

Martin Ratkiewicz

Besseren ROI durch strategisches Lizenzmanagement

Gerade in der aktuell schwierigen wirtschaftlich Lage, werden die Kosten bei vielen Firmen genauer unter die Lupe genommen. Salesforce als Cloud Anbieter mit regelmäßig steigenden Preisen, stetig neuen lizenzierungspflichtigen Modulen, und bezogen auf die IT Kosten in vielen Firmen unter den Top 3, gerät dabei schnell ins Rampenlicht.

Ich habe mich im letzten Jahr intensiv mit der Vertragsverlängerung befasst. Bei dem gerade neu abgeschlossenen SELA-Vertrag, konnten wir nochmal erfolgreich 20% einsparen. Auch Martin hat kürzlich die Lizenzierung für ein großes Unternehmen unter die Lupe genommen und dabei viel Optimierungspotential entdeckt. Wir werfen unsere Erfahrungen zusammen und geben nützliche Tipps für die Vertragsverlängerung!

Wie agiert Salesforce bei Vertragsverlängerung? Wie sollte man sich als Organisation vorbereiten? Welche Optionen gibt es zur strategischen Optimierung? Warum sollte man als Salesforce Verantwortlicher die Vertragsverhandlung nicht nur dem Einkauf überlassen?