Welcome to โAsk Deb from QA,โ a new column from MxD.
Every week, Deb from QA โ with decades of experience on the factory floor โ will answer your questions to demystify and explain the digital manufacturing industry.
Please submit your questions to debfromqa@mxdusa.org
Deb: Our employees are working from home because of the pandemic, and weโre running into so many tech problems that weโre disabling multi-factor authentication. Is this a bad idea?
Yes. This is a terrible idea.
Thanks for reading, folks, see you next week!
OK, let me explain this a bit deeper. Multi-factor authentication verifies your identity by requiring more than one password before signing you into a network. For example, you may log in with a password and then have to enter another code thatโs texted to your phone, just to doubly make sure itโs you and not some evil hacker.
Itโs the physical world-equivalent of having locks on your door and a security guard at your front desk.
When you turn off MFA, youโre essentially inviting anyone and everyone to walk into your factory, roam around unescorted, and dig through your filing cabinets. Are you fine with that?
If youโre working from home, thereโs also a decent chance youโre using a personal computer โ not every organization can issue a corporate laptop. So now, youโve exposed your company data to more risk, just as youโve removed the extra protection of multi-factor authentication. Not good.
Plus, your home WiFi probably isnโt as secure as your corporate network. Also not good. (Pro tip: Your home WiFi network should have a password โ and it should not be โpassword.โ)
The thing to know about cybersecurity is youโre never 100% immune from hackers; itโs all about reducing risks. Think of MFA as using hand sanitizer or wearing a face mask. Youโre increasing the odds that bad things wonโt happen.
There are some good resources out there about cybersecurity and how companies can implement safer work-from-home protocols: Check out this video and article from friend-of-MxD Brian Haugli, who once led the Pentagonโs program for cybersecurity. Brian knows what heโs talking about.
Bottom line: Itโs never a good idea to get rid of multi-factor authentication, and certainly not now.
Iโve got a feeling that remote working will become more regular in our industry, even after this pandemic passes. Why not lay the groundwork now, so you can feel confident that your most sensitive data remains secure?
Assuring quality,
Deb
Watch Brian Haugliโs excellent recent webinar for MxD โCybersecure While Working from Home,โ where he gives guidance for manufacturers with a remote workforce during the pandemic.
Deb from QA wants to hear your questions. Send โem to DebfromQA@mxdusa.org and sheโll answer as soon sheโs done with her shift.
