DreamHouse Realty has a custom object named Employee Review that has an Organization-Wide Default security setting of Private. When a reviewer is assigned to perform a review, a user lookup on the Employee Review object is populated.
This user needs to be granted edit access to the record, but they are NOT the owner.
What should DreamHouse Realty do to achieve this goal?

The organization has conducted and completed Security Awareness Training (SAT) for all employees. As part of a new security policy, employees who did not complete the SAT have had their accounts suspended. The CTO has requested to be informed of any accounts that have been re-enabled to ensure no one is in violation of the new security policy.
What should you do?

Your Chief Information Security Officer is concerned about phishing.
You implemented 2 Factor Authentication and forced hardware keys as a best practice to prevent such attacks.
The CISO is curious as to how many such email phishing attempts you've avoided since putting the 2FA+Hardware Keys in place last month.
Where do you find the information your CISO is interested in seeing?

Your organization's Sales Department uses a generic user account ([email protected]) to manage requests.
With only one employee responsible for managing the departmental account, you are tasked with providing the department with the most efficient means to allow multiple employees various levels of access and manage requests from a common email address.
What should you do?

The executive team for your company has an extended retention policy of two years in place so that they have access to email for a longer period of time. Your COO has found this useful in the past but when they went to find an email from last year to prove details of a contract in dispute, they were unable to find it. It is no longer in the Trash. They have requested that you recover it.
What should you do?