Which Salesforce add-on should be recommended for compliance with ISO 27001 security requirements?

Salesforce Shield is the optimal choice for ensuring compliance with ISO 27001 security requirements. This add-on provides a comprehensive suite of security and compliance functionalities, including platform encryption, event monitoring, and field audit trail features, which are crucial for meeting the stringent standards outlined by ISO 27001.

ISO 27001 emphasizes the importance of information security management systems (ISMS) and requires robust measures to protect sensitive data. Salesforce Shield helps organizations achieve and maintain compliance by enabling strong encryption of data at rest, which adds an additional layer of data protection. Furthermore, it offers rich monitoring capabilities that help businesses track access and modifications to sensitive data, reinforcing accountability and transparency in data management.

While the other options offer valuable features, they do not collectively address the full scope of requirements necessary for ISO 27001 compliance. For instance, Setup Audit Trail provides tracking of configuration changes, and Field History Tracking aids in maintaining historical changes to records, but neither is sufficient on its own to meet the comprehensive security standards of ISO 27001. Classic Encryption offers basic encryption capabilities, but it lacks the advanced functionalities required for a complete compliance solution that Shield provides. Thus, Salesforce Shield emerges as the most suitable recommendation for organizations seeking to align with ISO 27001 standards.