Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

Salesforce > Salesforce Security Best Practices > Flashcards

Salesforce Security Best Practices Flashcards

1
Q

Q. What is Salesforce security?

A

A. Salesforce security encompasses authentication, authorization, data protection, and compliance measures to safeguard user data and system integrity.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Q. Why is security important in Salesforce?

A
  • Prevents data breaches & unauthorized access
  • Ensures compliance with regulations (GDPR, CCPA, HIPAA)
  • Protects business-critical operations
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Q. What are the key layers of security in Salesforce?

A
  • Organization-Level Security
  • Object-Level Security
  • Field-Level Security
  • Record-Level Security
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Q. What are the primary authentication methods in Salesforce?

A
  • Username & Password
  • Multi-Factor Authentication (MFA)
  • Single Sign-On (SSO)
  • OAuth & JWT authentication
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Q. What is Multi-Factor Authentication (MFA)?

A

A. MFA requires users to verify their identity using two or more factors, such as a password and a mobile authenticator app.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Q. What is the difference between OAuth and SAML in Salesforce authentication?

A
  • OAuth is used for API authentication & delegated authorization.
  • SAML (Security Assertion Markup Language) is used for Single Sign-On (SSO) authentication.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Q. What are best practices for authentication in Salesforce?

A
  • Enforce MFA for all users
  • Use SSO for centralized authentication
  • Enable IP restrictions & login hours
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Q. What is the difference between profiles and permission sets in Salesforce?

A
  • Profiles define baseline permissions for objects, fields, and apps.
  • Permission Sets grant additional permissions beyond the user’s profile.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Q. What is a permission set group?

A

A. A feature that allows combining multiple permission sets for easier assignment and management.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Q. What are best practices for managing user access in Salesforce?

A
  • Follow Principle of Least Privilege (PoLP)
  • Use permission sets instead of modifying profiles
  • Regularly audit inactive users & permissions
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Q. What is record-level security in Salesforce?

A

A. A security model that controls which users can access specific records.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Q. What are the main mechanisms for record-level security?

A
  • Organization-Wide Defaults (OWD)
  • Role Hierarchy
  • Sharing Rules
  • Manual Sharing
  • Apex Sharing (Programmatic Sharing)
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Q. What are best practices for record-level security?

A
  • Set OWD to the most restrictive level and grant access selectively.
  • Avoid excessive manual sharing and use sharing rules instead.
  • Implement Apex Sharing for complex sharing requirements.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Q. What is Field-Level Security (FLS) in Salesforce?

A

A. Field-Level Security controls which fields are visible, editable, or hidden for users.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Q. How does Field-Level Security differ from Object-Level Security?

A
  • Object-Level Security restricts access to entire objects.
  • Field-Level Security restricts access to individual fields within objects.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Q. What is Salesforce Data Masking?

A

A. A technique that obfuscates sensitive data to prevent unauthorized access.

17
Q

Q. What are best practices for protecting sensitive data?

A
  • Use Field-Level Security (FLS) instead of hiding fields on page layouts.
  • Implement Salesforce Shield Platform Encryption.
  • Use data masking for non-production environments.
18
Q

Q. What is Salesforce Shield?

A

A security suite that includes:
- Platform Encryption
- Event Monitoring
- Field Audit Trail

19
Q

Q. What is Platform Encryption in Salesforce?

A

A. A feature that encrypts sensitive data at rest, such as names, emails, and custom fields.

20
Q

Q. What is Event Monitoring in Salesforce Shield?

A

A. A feature that tracks user activities, API access, and system performance for security auditing.

21
Q

Q. What are best practices for Salesforce Shield implementation?

A
  • Encrypt only sensitive data to avoid performance issues.
  • Use Event Monitoring to detect unauthorized access.
  • Enable Field Audit Trail to track data changes.
22
Q

Q. What are best practices for securing Salesforce APIs?

A
  • Use OAuth 2.0 for authentication (avoid basic authentication).
  • Implement IP Whitelisting & Named Credentials.
  • Enforce API rate limits & governor limits.
    Use SOQL injection prevention techniques.
23
Q

Q. What is Named Credentials in Salesforce?

A

A. A feature that stores authentication details securely for external API calls.

24
Q

Q. What is SOQL injection, and how do you prevent it?

A

A. SOQL injection occurs when malicious input manipulates queries. Prevent it by using bind variables in Apex queries.

25
Q

Q. How can you monitor security threats in Salesforce?

A
  • Enable Event Monitoring for tracking API & user activity.
  • Use Security Health Check for compliance review.
  • Implement login history analysis for suspicious activity detection.
26
Q

Q. What is the Salesforce Security Health Check?

A

A. A tool that evaluates security settings and provides risk assessment scores.

27
Q

Q. What are best practices for continuous security monitoring?

A
  • Enable login IP restrictions for admins.
  • Set session timeouts for inactive users.
  • Use audit logs to track data changes.
28
Q

Q. What compliance standards does Salesforce support?

A
  • GDPR (General Data Protection Regulation)
  • CCPA (California Consumer Privacy Act)
  • HIPAA (Health Insurance Portability and Accountability Act)
  • ISO 27001 (Information Security Standard)
29
Q

Q. How does Salesforce support GDPR compliance?

A
  • Right to be forgotten (deletion requests).
  • Consent management for data processing.
  • Data encryption & masking for personal data.
30
Q

Q. What are best practices for ensuring compliance?

A
  • Store audit trails of data modifications.
  • Encrypt sensitive customer information.
  • Implement automated data retention policies.
31
Q

Q. What are the top best practices for Salesforce security?

A
  • Enforce MFA for all users.
  • Regularly review & remove inactive users.
  • Apply Field-Level Security instead of hiding fields on layouts.
  • Enable Event Monitoring & Security Health Check.
  • Implement IP restrictions & login hour policies.
    Use CI/CD tools for controlled deployments.
32
Q

Q. How often should security audits be performed in Salesforce?

A

A. At least quarterly, with real-time monitoring for critical environments.

Salesforce (18 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2025 Bold Learning Solutions. Terms and Conditions