Password-less MFA Everywhere: Dream, Delusion or Reality?
Everyone knows the ability to stop lateral movement is key to any organization’s cyber security posture. So why has no one solved this problem in a cost-effective and scalable way? MFA sought to remedy this age-old problem, but breaches continue, and MFA hasn’t proven the panacea. While password-less MFA works well in modern SaaS cloud application, adapting it for on-prem environments has proven far from effective.
Recently, Zero Networks hosted an interactive webinar to discuss some of the challenges with implementing MFA everywhere and explore practical elements required to deploy MFA pervasively to every modern or legacy environment.
The featured guest speakers included:
- Tal Be’ery, a cyber veteran of over 20 years
- Peter Vallianatos, Sr. Director of Security & Infrastructure, CTO at The Walsh Group
- Benny Lakunishok, CEO and Founder of Zero Networks
Want to watch the full webinar?
Some of the Key Takeaways
Why does lateral movement still exist today?
To prevent lateral movement, companies need a closed network which entails restricting every individual’s access to exactly what they need. However, this process is manual and tedious – unscalable for most organizations – and leaves room for error or oversight for those with the workforce.
Why aren’t companies implementing MFA everywhere?
MFA was created with cloud native SaaS applications in mind, so organizations often think they are implementing MFA everywhere by protecting these assets. But when looking at an organization as a whole, there are on-prem and virtual machines that were not originally built to support MFA. Thus, the associated applications and protocols are often excluded from the MFA requirement.