Salesforce Business Analyst Certification Practice Exam

Which capability should a business analyst add to the project backlog to enhance security by requiring additional identification from users?

• A. A. Multi-factor authentication.
• B. B. Real-Time event monitoring.
• C. C. Shield platform encryption.
• D. D. Session timeout management.

The correct answer is: A. Multi-factor authentication.

Adding multi-factor authentication to the project backlog is a strategic choice to enhance security by requiring additional identification from users. This approach significantly strengthens user authentication by necessitating more than one form of verification. Typically, this involves something the user knows (like a password) and something the user possesses (such as a mobile device that receives a one-time code). By implementing multi-factor authentication, organizations can substantially reduce the risk of unauthorized access, as having just one form of identification (e.g., a password) can often be inadequate in protecting sensitive data. This additional layer of security becomes especially crucial in environments where user data is sensitive or critical to business operations. While real-time event monitoring, shield platform encryption, and session timeout management all contribute to a holistic security strategy, they serve different purposes. Real-time event monitoring focuses on identifying and reacting to suspicious activities, shield platform encryption secures data storage and transmission, and session timeout management enhances security by logging users out after a period of inactivity. However, none provide the immediate user verification improvements that multi-factor authentication does, making it the most direct answer to enhancing user identification and access security.