You will get a Salesforce Permission Set Group architecture for your enterprise org


Project details
A poorly designed security model is the #1 cause of data leaks, compliance failures, and support tickets in mature Salesforce orgs. Most orgs that have grown organically end up with over-permissioned profiles, inconsistent FLS, and no clear access governance model.
I design and implement enterprise-grade Permission Set Group (PSG) architectures for Salesforce orgs of all sizes:
• Full audit of existing profiles, permission sets, and FLS
• Least-privilege model design using PSGs as the primary access layer
• Role matrix: maps business roles → permission groups → object/field access
• Field-level security (FLS) for 100+ sensitive fields across key objects
• OWD and sharing rules aligned to your data visibility requirements
• User migration to new model with zero downtime
3+ years of experience securing enterprise Salesforce orgs, including a 150+ PSG implementation for a telecom org with 5 business units — passed external security audit with zero critical findings.
What you get:
✅ Complete PSG architecture deployed in your org
✅ Role-access matrix documentation
✅ Zero-downtime user migration
✅ 60% reduction in access-related support tickets (typical result)
I design and implement enterprise-grade Permission Set Group (PSG) architectures for Salesforce orgs of all sizes:
• Full audit of existing profiles, permission sets, and FLS
• Least-privilege model design using PSGs as the primary access layer
• Role matrix: maps business roles → permission groups → object/field access
• Field-level security (FLS) for 100+ sensitive fields across key objects
• OWD and sharing rules aligned to your data visibility requirements
• User migration to new model with zero downtime
3+ years of experience securing enterprise Salesforce orgs, including a 150+ PSG implementation for a telecom org with 5 business units — passed external security audit with zero critical findings.
What you get:
✅ Complete PSG architecture deployed in your org
✅ Role-access matrix documentation
✅ Zero-downtime user migration
✅ 60% reduction in access-related support tickets (typical result)
What's included
| Service Tiers |
Starter
$149
|
Standard
$299
|
Advanced
$499
|
|---|---|---|---|
| Delivery Time | 3 days | 7 days | 10 days |
Number of Revisions | 1 | 2 | 3 |
Design Customization | - | - | - |
Content Upload | - | - | - |
Responsive Design | - | - | - |
Source Code | - | - | - |
About Edisson
Salesforce OmniStudio & Vlocity CPQ Expert | Communications Cloud
Buenos Aires, Argentina - 3:27 am local time
I'm a Salesforce Industries specialist with 3+ years architecting and maintaining enterprise solutions in production for a B2B telecommunications operator in Latin America. I work at system scale, not just in sandboxes.
────────────────────────────────
WHAT I'VE BUILT IN PRODUCTION
────────────────────────────────
▸ OmniStudio / OmniScripts
12-step B2B order management flow handling 300+ orders/day —
replaced a manual legacy process with zero-downtime deployment
▸ Integration Procedures
250+ IPs connecting Salesforce to ERP, billing, provisioning,
and logistics via REST APIs. 99.8% uptime in production.
▸ Vlocity CPQ
Full Opportunity-to-Assets lifecycle: 200+ products, 80+
configuration rules, 40+ pricing rules. $2M+ in quotes
processed through the system.
▸ Security Architecture
150+ Permission Set Groups across 5 business units.
Passed external security audit with zero critical findings.
▸ Agentforce
Designed and deployed an AI agent for conversational queries
directly within Salesforce — reduced manual support requests.
────────────────────────────────
CERTIFICATIONS
────────────────────────────────
✓ Salesforce Certified Administrator (2024)
✓ Salesforce CPQ Specialist (2023)
✓ Salesforce Sales Cloud Consultant (2024)
────────────────────────────────
TECH STACK
────────────────────────────────
OmniStudio · OmniScripts · Integration Procedures · FlexCards ·
DataRaptors · Vlocity CPQ · Communications Cloud · Salesforce
Industries · Agentforce · Salesforce Flow · Permission Set Groups ·
REST/SOAP APIs · Node.js · SOQL
────────────────────────────────
HOW I WORK
────────────────────────────────
→ I clarify requirements before building — no surprises mid-project
→ Enterprise delivery: built for scale, production-ready, zero-downtime migrations
→ UTC-3 — consistent overlap with US Eastern mornings
→ I take on selective engagements. If your challenge fits my expertise, you'll know within 24 hours.
Send me a message describing what you're trying to solve.
Steps for completing your project
After purchasing the project, send requirements so Edisson can start the project.
Delivery time starts when Edisson receives requirements from you.
Edisson works on your project following the steps below.
Revisions may occur after the delivery date.
Security Model Discovery
I audit all profiles, permission sets, FLS, OWD, and sharing rules to document your current security model and identify gaps.
PSG Architecture Design
Design the new PSG structure: least-privilege model, role matrix, group naming conventions, and field-level security plan.



