The preferred and most common access vector for hackers and spammers is with valid user credentials!

Firms can no longer solely rely on passwords, regardless of their complexity, for the protection of their systems and data. Over 30% of users admit to re-using passwords from personal accounts at work. And since passwords have become more complex, users often rely on insecure methods to store their password from post-it notes to non-encrypted files on their computers.

The bottom line is that all firms should employ a multi-factor authentication process.

What is Multi-Factor (2FA)?

Multi-factor authentication is a security protocol where a user must enter more than one security factor to enter a system. Most commonly, this will be the user’s password followed by numeric code which is delivered directly to the user. There are two step methods, like a password and a known pin (two things you know) or the more secure option of two separate factors.

A two-factor method will have at least two of the following options:

1) Something you know - like your password AND

2) Something you have - like a cell phone with a text token OR

3) Something you are - like a biometric option (fingerprint)

Is multi-factor a hassle?

No. It takes seconds to enter the secondary code and the security benefits vastly outweigh typing a few extra numbers. Access your computer resources without multi-factor authentication is eating from one hand, texting in the other all while driving without a seat belt.

How does it work?

ProCirrus offers 6 methods for multi-factor authentication. You can have multiple options set up on your account as backups in the event your primary option is unavailable.

It’s super simple.

When you log in, you will be prompted for your OTP (one-time passcode). Depending on your preferred method (see below) you simply enter that code and you are logged in!

The 6 Multi-factor Options

Meet compliance requirement or just do the right thing

Whether driven by compliance requirements or simply to adopt security best-practices, adding multi-factor authentication is one of the biggest security returns for the lowest cost and effort your firm can make. There is no defensible rational for not employing multi-factor authentication!