Severance makes walled-off access look like a nightmare. In security it is one of our best protections: give every account only what it needs, so one bad click cannot light up your whole company.
Tag: mfa
What Your Cyber Insurance Application Is Really Asking
A client slid the form across the table with the look of a man who had been defeated by a PDF. It was his cyber insurance renewal application, and it had grown from one page last year to eleven this year. “I do not even understand half of these questions,” he said. “Can you just […]
The Password Talk You Need to Have With Your Team
Every engagement reaches a moment where I have to give the password talk. I can usually tell it is coming because someone, trying to be helpful, mentions the spreadsheet. The one with all the logins in it. Or the sticky note under the keyboard. Or the fact that the whole office uses the same password […]
Why Your Team Fights MFA (and How to Win Them Over)
The hard part of multi-factor authentication has almost nothing to do with technology. How to make the friction small enough that nobody bothers to fight it.