To guard against the latest cyber threats, it is essential to stay up-to-date with the most current user permissions. Two-factor authentication is crucial. The digital landscape is constantly changing and cybercriminals always one step ahead. To improve security, organizations should implement centralized solutions for authentication and identification of users (IAM). These solutions can be paired with improved user education.
Commonly, 2FA is implemented by having users utilize an authenticator application on their personal devices. This will ensure that only the device of the user is used to sign into HubSpot which reduces the chance of theft or lost credentials.
For instance, Duo Security, a 2FA solution that was acquired by Cisco in the year 2018, provides mobile device support to its customers. The platform of the company uses FIDO and Web Authentication API standards (WebAuthn) to allow mobile device authentication by accessing built-in capabilities on iOS, Android and Windows smartphones. This is a convenient way for users to verify their identity without the need for an IT professional to update apps or change settings, and it helps to stop them from accidentally bypassing security controls.
Other methods to implement 2FA are to require that it be enabled in certain geographical areas or use diagnostics and cataract surgery network data to verify the user’s location, and block authentication attempts from suspicious networks such as Tor, VPNs, and proxy servers. These policies can also be set up and enforced from the IAM solution’s administrator dashboard.
Additionally it is crucial to be aware that the process of implementing and rolling out 2FA will take some time. To speed up the process, it is best to choose an IAM solution that allows users to self-remediate by removing 2FA if the authenticator application is not functioning.