In order to comply with regulatory requirements, Universal Health must encrypt all Personally Identifiable
Information (PII), both while it is being transmitted over the network and while it is at rest. Universal Health
has completed a data audit and has determined that 12 fields on the contact record can contain PII,
including the contact name and several other standard fields. Universal Health would like the fields to
remain accessible in Salesforce.
Which two options does Universal Health have to maintain compliance?
Choose 2 answers.
A. Implement a custom Apex trigger to automatically encrypt the PII data using the Apex Crypto Class.
B. Update the field type of each of the 12 fields to "Text (Encrypted)" so that they are encrypted at rest.
C. Enable Salesforce Platform Encryption and select the 12 contact fields to be encrypted.
D. Use an external, third party encryption service to encrypt PII before it enters Salesforce.
Universal Container (UC) wants all full-time internal employees to be able to view all leads. A subset of
employees should also be able to see leads.
Which organization default (OWD) approach should an architect recommend that will help US employee?
A. Implement a Public Read/write OWD on Lead
B. Implement a Public Read only OWD on Lead
C. Implement a Public Read/write/Transfer OWD on Lead.
D. Implement a Private OWD on Lead.
To grant Universal Containers sales managers access to shipment records properly it was necessarily to the IT Team is worried about improper access to records. Which two features and best practices should a Salesforce architect recommended to mitigate the risk?
A. USe isShareable keyword in Apex classes to assure record visibility will be followed
B. Use runAs system method in test classes to test using different users and profiles.
C. Use With Sharing keyword in Apex classes to assure record visibility will be followed
D. User isAccessable keyword Apex classes to assure recor visibility will be followed.
How would you make sure Visualforce page is security proof? Choose 3 answers
A. Manually check for cross site
B. Manually check for sql injection
C. Submit to force security scanner
D. Use web application tool for security
E. Use debug to check hijacked requests
Susan posts a file to the Chatter feed for a record of an object. Which two statements accurately describe who can view the file by default?
A. Susan and users with a shared Chatter post for the file.
B. Susan and users with the View all Data permission.
C. Susan and users with access to the record.
D. Susan only
What is the security vulnerability in the following code snippet?
value="{!myTextField}"/> A. SOQL Injection B. Arbitrary Redirects C. Cross-Site Scripting D. Access Control
Universal Containers has two custom objects: Job and Job Interview. The Job Interview object has a lookup relationship to Job. Both objects are set to Private in sharing settings. The HR team will own all Job and Job Interview records. They have asked their Salesforce Architect to automatically share the Job Interview when the Interviewer (lookup to user record) has been populated. The interviewer can be from any department. What method should the Architect use to achieve this requirement?
A. Build apex Managed Sharing code to share Job Interview with the Interviewer user
B. Build a criteria-based sharing rule between the Job Interview and the Interviewer
C. Build a standard sharing rule between Job Interview and the Interviewer
D. Build a workflow email notification to notify the interviewer of the record assignment
A Sales Rep at Universal Containers wants to create a dashboard to see how his sales numbers compare with his peers. Assuming a Private model, which two permissions would the Sales Rep need to meet this requirement?
A. Manage Custom Report Types
B. Customize Application
C. Manage Dashboards
D. View All Data
Universal Containers has the following requirements: A custom Loan object requires Org-Wide Defaults set to Private. The owner of the Loan record will be the Loan Origination Officer. The Loan record must be shared with a specific Underwriter on a loan-by-loan basis. The Underwriters should only see the Loan records for which they are assigned. What should the Architect recommend to meet these requirements?
A. Use criteria-based sharing rules to share the Loan object with the Underwriter based upon the criteria defined in the criteria-based sharing
B. Create a lookup relationship from the Loan object to the User object. Use a trigger on the Loan object to create the corresponding record in the Loan share object
C. Create a master-detail relationship from the Loan to the User object. Loan records will be automatically shared with the Underwriter
D. Create an Apex Sharing Reason on the Loan object that shares the Loan with the Underwriter based upon the criteria defined in the Sharing Reason
Universal Containers has developed Apex code to manually create AccountShare records to grant specific users access to individual Accounts. What must the Architect do to ensure the AccountShare records are not deleted when the owner of the Account is changed?
A. Create the share records and set the RowCause to a custom Apex Sharing Reason
B. Create the share records in a class with the "Without Sharing" keyword
C. Create the share records with the Delete on Owner Change field set to false
D. Create the share records and set the RowCause to Manual
Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Salesforce exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SHARING-AND-VISIBILITY-DESIGNER exam preparations and Salesforce certification application, do not hesitate to visit our Vcedump.com to find your solutions here.