Multi-Factor Authentication
Annodata’s comprehensive cyber security strategies are aligned with industry best practices, such as the NIST Cyber Security Framework.
Why it's essential for your business
There have been an alarming number of devastating cyberattacks throughout the world, including in the UK and Ireland.
Ransomware attacks on manufacturers conducted by cybercrime groups, have resulted in months of supply chain issues, costing organisations millions in damages. However, whilst attacks have received national news coverage, there have been many attacks on smaller businesses that have not made the news headlines.
Annodata can help your resist falling victim to a cyberattack, by reducing risk in your organisation. Is your business lacking in simple security controls, such as Multi-Factor Authentication (MFA)?
of data breaches involve the use of unauthorised credentials
of businesses use multifactor authentication
of account compromise attacks can be blocked by MFA
What is Multi-Factor Authentication?
MFA is an identity validation method that requires the user to provide two or more forms of identification to log into their account. These forms of identification typically include something the user knows (such as a password or PIN), something the user has (such as a trusted device or hardware key) or something that the user is (such as biometrics information, including fingerprints or facial recognition).
In terms of user experience, if MFA is enabled, an employee will enter their username and password into an application or service, and then it will ask for the second authentication method. If they are using an authentication app on their phone it could provide a 6-digit number, they must enter to access their account. Some businesses have even removed the need for passwords altogether, only using the identification methods of something a user has and something that they are.
Strengthens Security
There are several reasons why your businesses should implement MFA that will strengthen your Identity and Access Management (IAM) security policy. It is widely recognised that the UK’s most generic form of cyberattack is phishing. Whilst MFA will not stop phishing attacks, it does significantly reduce the chance of a phishing attack being successful in compromising a user’s account.
For example, many phishing attacks include a malicious link that will take the user to a false sign-in page. Even if an employee were to click on the link and enter their username and password if MFA is enabled, the hacker will not have the second form of authentication. Whilst it is possible for a hacker to social engineer their way into acquiring the second form of authentication, it is significantly less prevalent, and can be mitigated in several ways.
Protects Against a Variety of Attacks
MFA can protect against a variety of other attacks.
If your employees reuse passwords across multiple accounts, they are at risk of falling victim to a credential-stuffing attack. This form of attack is where hackers find user credentials, typically through prior data leaks, and use these usernames and passwords to access other accounts. If an employee has reused the same password, these attacks have a high success rate. Thankfully, they can easily be mitigated with the use of MFA, as the hacker does not have access to the second form of authentication. MFA can also protect against keylogging attacks, as even if the second form of authentication is a one-time passcode, it will change every time an individual attempts to log into the account.
Meets Regulatory Requirements
If your business needs to meet industry standards, MFA is a necessity.
PCI-DSS (Payment Card Industry Data Security Standard) requires businesses to have MFA enabled for remote access to the cardholder data environment.
Cyber Essentials certification requires the implementation of MFA on administration accounts, and any accounts that are accessible via the internet.
Most insurance companies will require companies to implement MFA on all accounts to qualify for cyber insurance.
Improves the User Experience
It may seem counterintuitive that adding another step to the login process. MFA can be implemented alongside single sign-on (SSO) to both improve security and the user experience.
SSO is a technology that allows employees to authenticate credentials once to access the organisations systems, services and solutions required for their role. This includes all Microsoft applications, as well as thousands of other SaaS applications.
SSO improves the user experience and increases productivity as it means that your employees spend less time entering credentials, and they only need to remember one password and have one method of MFA.
Why Multi-Factor Authentication is essential
How we can help
Many businesses do not have the required expertise to implement MFA correctly, especially if they want to use SSO.
Annodata can help you implement MFA, as well as SSO and even password less authentication. It is also important to note that MFA is not the only security control required to protect your business from cyberattacks. Our security experts can also help safeguard your entire IT ecosystem with a comprehensive security solution, tailored to your business needs.
Putting the ‘multi’ Into Multi-Factor
If you are looking at developing your in-house security teams and policies, then Annodata can assist you with your MFA delivery. Our service can make the experience smooth and convenient while remaining compliant with additional security factors in mind.
We can offer key service features within the MFA solution and provide a health check.
These key service features are expanded with additional support using our knowledge and accreditations, best summarised within three stages of the service delivery.
Service Onboarding
ServiceOperations
ServiceContinuity
- Microsoft Healthcheck
- Pre-requisite technology evaluation
- Rollout communications & instructions
- Application management
- User administration
- Healthcheck – check-ups
- Help Desk support
- Advisory technical support
- Technology partner escalation
