[AISWorld] Episode 40 -- Implementing Phishing Resistant Multi-factor Authentication

[Dave Chatterjee]

Dear Colleagues:

Greetings!

The Cybersecurity and Infrastructure Security Agency (CISA) recently (Oct
31, 2022) released fact sheets urging all organizations to implement
phishing-resistant multi-factor authentication (MFA). In this episode, *George
Gerchow, Chief Security Officer and Senior Vice President of IT, Sumo Logic*,
and I have an in-depth discussion on this very important security subject
matter. The scope of coverage ranges from providing an overview of MFA and
its benefits to discussing the challenges and hurdles of implementing
phishing-resistant MFA, recommended implementation approaches, and the
future of MFA. I hope you enjoy this episode of *The Cybersecurity Readiness
Podcast Series.*

*A short clip from Episode 40: *https://youtu.be/uQt_d6AUC40

*Full Episode 40: *https://www.dchatte.com/podcast/

*Prior Episodes*

#1 -- Role of Top Management in Cybersecurity Governance
<https://www.dchatte.com/podcast/> -- *Guest:* Rohit Verma, CEO of Crawford
and Company

#2 -- Protecting Academic Institutions from Ransomware and Other Forms of
Attacks <https://www.dchatte.com/podcast/> -- *Guest:* Garry Scobie, Deputy
Chief Information Security Officer, The University of Edinburg

#3 -- Going Above and Beyond the Mandated Checklist
<https://www.dchatte.com/podcast/> -- *Guest:* Tushar Sachdev, Executive
Vice President, and Chief Technology Officer, KORE Wireless

#4 -- The Human Vulnerability Factor <https://www.dchatte.com/podcast/> --
*Guest:* Jenny Radcliffe, also known as “The People Hacker,” a
world-renowned Social Engineer

#5 -- Being An Effective Chief Information Security Officer (CISO)
<https://www.dchatte.com/podcast/>-- *Guest:* Richard Biever, Chief
Information Security Officer, Duke University

#6 -- Holistic Approach to Cybersecurity Readiness
<https://www.dchatte.com/podcast/>-- *Guest:* Ram R. Kumar, Executive
Director, AT&T Business

#7 -- Multidisciplinary and Integrative Approach to Cybersecurity Education
<https://www.dchatte.com/podcast/> -- *Guest:* Dr. Jimmie Lenz, Dir. Master
of Engineering in FinTech and Master of Engineering in Cybersecurity at
Duke University's Pratt School of Engineering

#8 -- What Does Good Cyber Governance Look Like? A Legal Perspective
<https://www.dchatte.com/podcast/> -- *Guest*: Rois Ni Thuama, Ph.D.
(Doctor of Law), Head of Cyber Governance, Red Sift

#9 -- Cybersecurity Risk Reduction Tips for Small and Medium-Sized
Enterprises (SMEs) <https://www.dchatte.com/podcast/> -- *Guest*: Mike
Benz, Partner | Fractional CIO at Fortium Partners

#10 -- Passwordless Authentication: Myths and Realities
<https://www.dchatte.com/podcast/> -- *Guest*: Ori Eisen, Founder, and CEO
of Trusona

#11 -- Fly the Plane: A CIO's Approach to Cybersecurity Readiness
<https://www.dchatte.com/podcast/> -- *Guest*: Dr. Timothy Chester, Vice
President of Information Technology, The University of Georgia

#12 -- Ignorance is not bliss: A Whole-of-Enterprise Approach to Threat
Management <https://www.dchatte.com/podcast/> -- *Guest*: Anne Leslie,
Threat Management Consultant, IBM Security

#13 -- Cybersecurity is Patient Safety <https://www.dchatte.com/podcast/>
 -- *Guest:* Stoddard Mannikin, Chief Information Security Officer,
Children's Healthcare of Atlanta

#14 -- Enhancing Organizational Readiness by Simulating Cyber Attacks
<https://www.dchatte.com/podcast/> -- *Guest:* Prof. Robert Austin, Ivey
Business School, London, Ontario, Canada

#15 -- Significance of the Human Element in Cybersecurity
<https://www.dchatte.com/podcast/> -- *Guest:* Prof. Missy Cummings, Pratt
School of Engineering, Duke University

#16 -- Role of Emotional Intelligence in Creating a Healthy
Information Security Culture <https://www.dchatte.com/podcast/> -- *Guest*:
Nadja El Fertasi, Human Readiness and Resilience Expert and former NATO
senior executive

#17 -- Reducing the Carbon Footprint <https://www.dchatte.com/podcast/> --
*Guest*: Andy Bates, Chief Development and Strategic Partnership Officer,
Global Cyber Alliance

#18 -- Securing the Smart Supply Chain <https://www.dchatte.com/podcast/>
 -- *Guest*: Alan Mihalic, President IoT Security Institute

#19 -- Making Cybersecurity Communication Effective
<https://www.dchatte.com/podcast/> -- *Guest*: Marcin
Ganclerz, Cybersecurity Awareness & Training Expert

#20 -- A Deep Dive into Ransomware Attacks and Negotiations
<https://www.dchatte.com/podcast/> -- *Guest*: Art Ehuan, Vice President,
Palo Alto Networks, and Former FBI Special Agent

#21 -- Dealing with Cyber Trauma <https://www.dchatte.com/podcast/> --
*Guest*: Patrick Wheeler, a Luxembourg-based cybersecurity practitioner and
Director of the Cyber Wayfinder Program

#22 -- Is Cyber Insurance Necessary? <https://www.dchatte.com/podcast/> --
*Guest*: Erica Davis, Erica Davis, Global Co-Head of Cyber, Guy Carpenter &
Co

#23 -- Is Cybersecurity Regulatory Compliance Good Enough?
<https://www.dchatte.com/podcast/> -- *Guest*: Dixon Wright, Vice
President, Vice President, Compliance Management and Automation Platform,
Coalfire

#24 -- Thinking Like A Hacker <https://www.dchatte.com/podcast/> -- *Guest*:
Ted Harrington, Executive Partner at Independent Security Evaluators

#25 -- Perspectives of a Global Chief Information Security Officer
<https://www.dchatte.com/podcast/> -- *Guest*: Vishal Salvi, CISO & Head of
Cyber Practice at Infosys

#26 -- Reducing the Disconnect Between Security and Development Teams
<https://www.dchatte.com/podcast/> -- *Guest*:  Harshil Parikh, CEO and
Co-Founder Tromzo

#27 -- Actionable Threat Intelligence and the Dark Web
<https://www.dchatte.com/podcast/> -- *Guest:* Victoria Kivilevich,
Director of Threat Research at KELA Group

#28 -- How to Tackle Burnout in Cybersecurity
<https://www.dchatte.com/podcast/> -- *Guest:* Thomas Kinsella, Co-Founder
& Chief Operating Officer at Tines

#29 -- Global Security and Post Breach Management Best Practices
<https://www.dchatte.com/podcast/> -- *Guest:* Tim Callahan, Senior Vice
President and Global Chief Information Security Officer, Aflac

#30 -- The State of Attack Surface Management
<https://www.dchatte.com/podcast/>-- *Guest:* David Monnier, Team Cymru
Fellow

#31 -- Preparing for the Future of Device Management
<https://www.dchatte.com/podcast/>-- *Guest:* Mike McNeill, CEO, Fleet
Device Management

#32 -- Bridging the Gap Between Intentions and Practicality in Cybersecurity
<https://www.dchatte.com/podcast/> -- *Guest:* Daniela Almeida Lourenco,
Chief Information Security Officer (CISO) at Tinka

#33 -- Skilling Up for Security Operations Center Roles
<https://www.dchatte.com/podcast/> -- *Guest*: James Risler, Senior
Manager, Cisco Learning and Certifications

#34 -- Detecting Malicious Insider Threats by Monitoring User Journeys
<https://www.dchatte.com/podcast/> -- *Guest*: Doron Hendler, CEO, and
Co-Founder at RevealSecurity

#35 -- Securely Migrating to the Cloud  <https://www.dchatte.com/podcast/>
-- *Guest:* Keith Weller, former Vice President, Enterprise Technology
Services, American Cancer Society (ACS)

#36 -- Is Cybersecurity A Moving Target at Academic Institutions?
<https://www.dchatte.com/podcast/> -- *Guest:* Tej Patel, Vice President,
and CIO at Stevens Institute of Technology

#37 -- Comprehensive Asset Discovery <https://www.dchatte.com/podcast/> --
*Guest: * Huxley Barbee, Security Evangelist at runZero and former
Cybersecurity Practice Lead at Cisco

#38 -- Cybersecurity As A Strategic Opportunity
<https://www.dchatte.com/podcast/> --* Guest:* Kal Sambhangi, Senior Vice
President, Cybersecurity Strategy and Architecture at Truist

#39 -- How do SMBs protect themselves from ransomware attacks?
<https://www.dchatte.com/podcast/> --* Guest:* Grayson Milbourne, Security
Intelligence Director at OpenText Security Solutions


Thanks

Dave Chatterjee (https://dchatte.com)
*Latest Publication*: Preventing Security Breaches Must Start At The Top
<https://iby.imd.org/magazine/preventing-security-breaches-must-start-at-the-top/>
 (
https://iby.imd.org/magazine/preventing-security-breaches-must-start-at-the-top/
)