Certified Data Architect Exam QuestionsBrowse all questions from this exam
Go to Exam

Certified Data Architect Exam - Question 4

A customer is operating in a highly regulated industry and is planning to implement Salesforce. The customer information maintained in Salesforce. includes the following:

1. Personally Identifiable information (PII)

2. IP restrictions on profiles organized by geographic location

3. Financial records that need to be private and accessible only by the assigned sales associate

Enterprise Security has mandated access to be restricted to users within a specific geography with detailed monitoring of user activity. Additionally, users should not be allowed to export information from Salesforce.

Which three Salesforce Shield capabilities should a data architect recommend? (Choose three.)

Show Answer
Correct Answer: ABDE

To ensure compliance with the security requirements mentioned, three key Salesforce Shield capabilities should be recommended: Event Monitoring to monitor all user activity, Encrypt sensitive customer information maintained in Salesforce, and Transaction Security policies to prevent export of Salesforce data. Event Monitoring will allow for detailed tracking of user actions, ensuring that any unauthorized access or changes are flagged. Encrypting sensitive information addresses the need to safeguard personally identifiable information and financial records. Transaction Security policies specifically help to restrict and control data export, fulfilling the requirement to prevent users from exporting information out of Salesforce.

Discussion

8 comments
Sign in to comment
supersam1982Options: ABE
Aug 2, 2023

ABE, CD aren't Salesforce Shield feature

bssrilakshmiOptions: ABE
May 1, 2023

Correct answer: A B E

supersam1982Options: ADE
Jul 30, 2023

ADE is the correct answer

rahulnwoOptions: ABE
Jul 26, 2023

ABE is correct as it covers all aspect of question

AlexUpOptions: ABE
Feb 8, 2024

ABE are fine

lizbetteOptions: ABE
Apr 20, 2024

ABE. C is wrong because the details don't say that sales users shouldn't have access to PII. D is wrong because that's not a Salesforce Shield feature, it's a Network Services feature. Salesforce Shield contains 3 main services, 1) Platform Encryption, 2) Event Monitoring - with Transaction Security, which allows you to build customizable security policies, and 3) Field Audit Trail. Therefore, A is right (Event Monitoring), B is right (Shield Platform Encryption), and E is also right (Transaction Security policies are a part of Event Monitoring, and allow users to build policies).

lizbetteOptions: ABE
Apr 20, 2024

Refer to Salesforce Shield whitepaper for more info: https://help.salesforce.com/s/articleView?id=sf.admin_salesforce_shield.htm&language=en_US&type=5

Nilesh_NandaOptions: ABE
Apr 29, 2024

ABE correct