Positive Technologies Protects Employee Remote Connections with Multifactor

2022: Secure remote connections with Multifactor

Positive Technologies implements the principles of effective cybersecurity, which involves building protection based on the definition of business-unacceptable events. This was reported by Positive Technologies on January 19, 2022.

Source: ksonline.ru

After the start pandemics , the company switched to hybrid operation, and remote connection became one of the promising vectors. attacks To mitigate the risk of implementing invalid events over a remote connection, the company has implemented a solution for multi-factor authentication both single sign-on and single sign-on. Multifactor

Positive Technologies experts "analysis of security by an external attacker shows that a hypothetical attacker can overcome the network perimeter in 93% of cases even without using methods. social engineering The main way to penetrate the corporate infrastructure is to select accounts. And data first of all, this is due to the fact that employees like to install simple ones, passwords including for accounts used to administer systems. And the absence of the second factor authentications allows you to access systems with a selected account. Therefore, the use of multi-factor authentication is a pressing need, especially in an organized remote access environment.

Multifactor integration has protected all types of remote connections to the company's infrastructure with an additional access factor, as well as implementing secure single sign-on (SSO) in enterprise applications. This made it possible to ensure that a potential attacker could not access correspondence on behalf of a particular user, even if he had a real login and password. The solution is used by all employees of the company.

Positive Technologies notes the technicality and convenience of multi-factor authentication (MFA) and SSO Multifactor, in terms of functionality and security of those at the same level with the solutions of foreign manufacturers. As part of the implementation project, Positive Technologies experts analyzed the security of the software product and issued a set of recommendations to improve the level of security that were quickly added to the product.

"One of the key principles of implementing security measures in Positive Technologies is the convenience of users: protection must not interfere with the productive work of employees. Multifactor has ensured the continuity and integrity of business processes without compromising security without creating an additional workload for technical support, " Positive Technologies CIO Alexander Aksyutik

"We are very pleased with the mutual cooperation with Positive Technologies. This is a vivid illustration of the shift in customer focus from on-prem to hybrid and cloud models of information security service delivery . We hope for a long and fruitful cooperation, " commented by Konstantin Jan, CEO of Multifactor

The effectiveness of the Positive Technologies protection system has been confirmed in practice: in 2021, the company conducted a series of cyber exercises on its own infrastructure. Teams of ethical hackers were aimed at implementing events unacceptable to the company, but could not implement them even if they successfully selected passwords for accounts. Remote access was protected. Public cyber exercises were held in November 2021. The company "Multifactor" intends to support and develop the product in the framework of cooperation.