Smartsheet Security Capabilities and Practices

This whitepaper outlines the security capabilities, practices, and safeguards of Smartsheet, an enterprise-grade software as a service (SaaS) platform. The document emphasizes the importance of implementing multiple layers of defense to protect sensitive company data while ensuring flexibility and integration with existing security systems. It details three main areas of focus for securing organizations: identity and access management, data governance, and global account configuration. The whitepaper also discusses the significance of managing user identities and access, recommending authentication methods such as Single Sign-On (SSO) and Multi-Factor Authentication (MFA). Additionally, it presents governance models for user management, including decentralized, centralized, and shared approaches, and highlights best practices for maintaining security, privacy, and compliance. The document concludes with recommendations for managing user roles and types within Smartsheet to ensure a secure and compliant work environment.