The recent MGM breach was made possible by a bad actor social engineering the help desk into providing them access. Does your organization take steps to authenticate callers to your help desk before the help desk performs any actions that may allow access (changing passwords, resetting/disabling/reconfiguring MFA etc.) If yes, how have these methods worked out? Were they effective and did you get any pushback from users?
Sort By:
Oldest
Co-Founder in Services (non-Government)a year ago
on a separate note, as an idea, have rules that will alert if people want to disable MFA. Chief Information Security Officer in Healthcare and Biotecha year ago
YesIT Analysta year ago
Yes, Service Desk must call them back at their number listed in the company directory. No user pushback.