Revamp your Security
Salesforce is designed to keep your data and apps safe. Salesforce and you are both responsible for the security of your data. Salesforce's security features enable you to give your users the tools they need to execute their tasks safely and effectively.
In this post, we take a look at all the security measures to revamp Salesforce security
1. Enable Multifactor Authentication
MFA is a secure authentication mechanism that requires users to authenticate their identity by giving two or more layers of verification (or factors) while logging in. One of the factors is something that the person is aware of, such as their username and password. Other considerations include the user's possession of something like an authenticator app or a security key.
Salesforce will require MFA for all users who log in to the Salesforce UI starting February 1, 2022.
2. Enroll in Lightning Login
By requiring two authentication factors for login, Lightning Login adds an extra layer of protection using the Salesforce Authenticator. You can give your users the enhanced speed, convenience, and security of password-free logins with Lightning Login.

With lightning login enabled you do not need to remember any passwords anymore and you can go password free.
3. Login IP Address
User profile login access is controlled by login IP ranges. Users with profile login IPs can only access Salesforce from IP addresses inside the range; otherwise, they will be denied access. Login IP ranges are commonly used to granularly restrict login IPs.
An organization's login access is controlled through trusted IP ranges. Users that log in from trusted IP addresses aren't asked to prove their identity (such as by entering a code sent to their mobile phone). Unknown people entering in from non-trusted IP addresses are asked to prove their identity, and if they do, they are granted access to Salesforce. At the organizational level, trusted IP ranges are commonly used to "allowlist" IPs.
4. Login Hours
You may not want certain user profiles accessing your Salesforce org outside of typical work hours for a variety of reasons, including security. You might not want your users to work after hours, for example. In any case, we can alter profiles in Salesforce to limit login hours so that users can only log in during the times provided. Here's how.
1. Select the Setup option from the drop-down menu.
2. Type and pick Profiles in the quickly locate box.
3. Choose the Profile for whom you want to modify the Login Hours.
4. Click modify next to Login Hours. For this user profile, you now have the ability to adjust the hours.
5. Select Save once you've finished.
5. Security Health Check
You can use Health Check as an administrator to find and correct potential security flaws in your security settings. A summary score compares your organization to a security benchmark, such as the Salesforce Baseline Standard. You may replace the Salesforce Baseline Standard with up to five custom baselines. High-Risk, Medium-Risk, Low-Risk, and Informational are the four risk categories. High-Risk settings count the most, Low-Risk settings count the least, and Medium-Risk settings, well, they're somewhere in the center.
The Health check option is present under the Security in Quick Find.