In an increasingly distributed workforce, how do we give access to the right people while keeping the wrong ones out? How do you stop your employees (and yourself) from using the same password across various business applications, bank accounts, and social media platforms? When an employee logs into a sensitive business application, how can you be sure the authorized user is legitimate?
To answer these questions, we’re excited to announce a partnership with Okta, the leading independent identity provider. Okta supports small businesses and the world’s leading organizations alike through a large product suite that includes single-sign-on (SSO), universal directory, and multi-factor authentication (MFA). As part of our partnership, Coalition policyholders will be able to access Okta’s suite of tools and services at a reduced cost.
Adding IAM as another acronym to the security space, Okta specializes in the core of security — identity. With single-sign-on, Okta lets users access multiple applications more securely by tying all the login experiences and credentials into a single pane of glass. No more reusing the same password repeatedly, which is a major security risk and common vector of attack by bad actors.
Further, through user lifecycle management, Okta gives IT the control it needs to grant employees access to the applications and tools they need with the click of a button. More importantly, it gives IT the power to remove access to all applications with the same button. Finally, for access to more sensitive information and company assets, Okta can require that users provide a second layer of authentication to prove who they are — think a text message with a code to input or an email with a link to click.
As you can see, it is so much more than just login credentials. That doesn’t mean you’re off the hook for poor passwords, though.
Passwords are the virtual keys to the kingdom, but unlike keys, passwords can and should be changed often. The relative strength of a password should always be taken into account. The beauty of using a password management solution like Okta is they take the guesswork out of it. Through SSO, Okta will randomize the passwords of all the applications managed by their platform on a regular basis.
You can also set reminders within their platform to change your password, adjust the required strength, and automate password resets by you and your team. Remember to be as vigilant about your passwords as you are with your house keys; approximately 80% of email intrusion incidents happen because of weak or stolen passwords. However, even with stolen, leaked, or weak passwords, one of the most effective methods to mitigate the risk of email-based or app-based cybersecurity incidents is to enable multi-factor authentication (MFA).
In the real world, we’re often required to provide ID when performing general tasks, but can you think of a time when you were required to provide two forms of ID? Perhaps a fingerprint. Or, less common, but very cool; a retinal scan. These are additional factors of authentication that offer additional proof that you are who you say you are.
In the digital world, the equivalents to the above may be an email, SMS (text message), or app-based token or code generator. To reduce loss and the likelihood of a claim, it is critical that businesses use MFA on all business-critical applications and systems such as email accounts, internal services, and third-party services. Once again, Okta to the rescue! Okta allows you to customize which applications and systems require an additional layer of authentication and will automatically inquire for another factor prior to access.
What does our partnership with Okta mean to our policyholders?
To learn more about Okta and the discounts available to Coalition policyholders, log in to your policyholder dashboard. We’ll get you started!