decrypting myths
One way to mitigate the risk of passwords being misused is to initiate frequent password resets . The problem with this approach is that employees are very likely to use their new password for other accounts as well . Reusing passwords is attractive for people because it can be a struggle to remember a number of complex passwords for different sites . But this dramatically expands the opportunity for cybercriminals to gain access to those passwords across a much wider range of potentially compromised websites .
So , what can be done ? One of the most effective ways to keep the login process for users as seamless as possible while strengthening protection against the threat of account compromise is to enable Multi-Factor Authentication ( MFA ) and Single Sign-On ( SSO ).
MFA adds an extra layer of security for the organisation . For example , an SMS token could be sent via text message or through a third-party app like Google Authenticator . The second form of authentication is required for users to be verified and granted access to the account . Without it , they remain locked out of the account . With the addition of SSO , users can also log into a single portal to gain access to a variety of independent cloud resources .
Comply with data privacy regulations
Data security and brand reputation are becoming increasingly interconnected for businesses that collect and store large amounts of customer information . There is a pressing requirement for companies to protect their customers ’
Consumers and businesses need to work together to ensure corporate and personal data remains secure .
data , especially as they need to comply with a widening range of regulations . There are few excuses for any organisation that fails to comply with the European Union ’ s General Data Protection Regulation ( GDPR ) or the California Consumer Privacy Act ( CCPA ) which have been in place for some
68 www . intelligentciso . com