Kesler, in his prior position as a security chief at a healthcare group, needed to make such a trade-off when he applied multifactor authentication. He says his govt colleagues knew the worth of MFA but in addition had issues concerning the further time it will add to accessing functions.
“We acknowledged that we needed to be sensible about how and after we required folks to make use of that second issue,” Kesler explains. “We determined it couldn’t be each time they accessed a pc, as a result of we had medical doctors and nurses transferring between gadgets and sufferers ceaselessly all through the day and we couldn’t ask them to reauthenticate each 5 minutes. It could be a big impression on workflows the place minutes and seconds matter.”
So security and enterprise collectively determined to require MFA for onsite customers for the primary entry of the day solely, “so that they weren’t continuously nagged by means of the day to try this second issue,” Kesler says.
8. Staying on the job within the face of massive (and frequent) trade-offs
Maybe one of many hardest trade-offs CISOs could make is to remain on the job even after they’ve made much more trade-offs than they’d like, Allen says.
