Kesler, in his prior function as a safety chief at a healthcare group, needed to make such a trade-off when he carried out multifactor authentication. He says his govt colleagues knew the worth of MFA but in addition had considerations in regards to the further time it will add to accessing functions.
“We acknowledged that we needed to be good about how and after we required individuals to make use of that second issue,” Kesler explains. “We determined it couldn’t be each time they accessed a pc, as a result of we had docs and nurses transferring between gadgets and sufferers regularly all through the day and we couldn’t ask them to reauthenticate each 5 minutes. It will be a big influence on workflows the place minutes and seconds matter.”
So safety and enterprise collectively determined to require MFA for onsite customers for the primary entry of the day solely, “so that they weren’t always nagged via the day to do this second issue,” Kesler says.
8. Staying on the job within the face of huge (and frequent) trade-offs
Maybe one of many hardest trade-offs CISOs might make is to remain on the job even after they’ve made much more trade-offs than they’d like, Allen says.
