Do you have valuable domains in your account? You can additionally secure them by defining a security scheme for them. It is a set of operations that require additional authorization for a particular domain, even if these operations can be carried out without it on other domains.
For example, according to the default settings, it is required to authorize such operations as retrieving the AuthInfo code or pushing a domain to another account. For selected domains, you can also decide that changing DNS servers or redirection also requires such authorization. In combination with multi-user account access, this allows very flexible security settings for your domains.