To be efficient, an MFA strategy must be able to pass the trojan test being: If a trusted user’s computer accessing your critical infrastructure has been infected by a trojan, will you be able to detect such threat and block the attacker?

Will the hacker be able to access the same sensitive information as the legitimate owner of the computer? Since a trojan give the hacker complete remote control of the computer and all its inherent security measures, it is critical to ensure that the legitimate user is the only one who can provide sufficient proof of his identity. Finally, a last question: Does validating the identity enough when giving access to information and systems? The choice of the correct MFA solution must answer to all of these questions and ensure that your information is protected against the most sophisticated threats.

Ez-TFA offers a range of solutions protecting your critical information from the infrastructure (physical or virtual), the environments (Windows or Linux) and the application levels (custom or SAAS).

The post Using Multi-Factor Authentication appeared first on EZ-TFA.com.

In order to be effective, a risk-based approach must be defined in a long-term cybersecurity strategy. It involves defining the corporate risk profile by performing a holistic assessment of all the current threats that all businesses must face a business and the vulnerabilities likely to impact the unauthorized access to its sensitive data. As stated previously, the continuous evolving threats can only be matched by a conscious shift towards risk-based approach to even the odds in a war that often feels lost before it begun. To build a solid risk-based strategy, organizations must have a sound understanding of their risk profile and key business processes, understand where mission critical and sensitive information are stored and their lifecycle. Assets and processes are then assigned a risk level ranging from low, medium, to high and risk levels.  This process is called an asset classification process. IT departments build disaster recovery plans using a similar process and organization must take this purely technological process to a more business level where both IT and business stakeholders identify critical assets based on the impact on confidentiality, integrity and availability throughout all the inventoried business processes.

Ez-TFA provides remote access governance solutions that will simplify the protection against risks associated to remote access to your critical assets while providing business aligned solutions rather then technical based solutions.

The post A risk-based approach appeared first on EZ-TFA.com.

Another example is the new challenges that come with the cloudification of assets. Knowing where the cloud assets are located, the corporate information they process and store, and the most suitable cyber security controls to deploy targeted without increasing the operational burden and over extending the cyber budget is a key success factor. Securing complex environment comprised of multiple environments such as Windows and Linux operating systems, in different clouds such as Google, Azure and AWS requires new cyber security strategies. This is due to the different sets of cyber threats and challenges that impact each operating system, thus necessitating the need for different controls. EZ-TFA understands those threats and provides cyber security solutions that help you protect your critical assets and information, on site or in the cloud.

The post Securing the cloud appeared first on EZ-TFA.com.