IT Outsourcing organizations including IT Services, BPO (Business Process Outsourcing) and KPO (Knowledge Process Outsourcing) companies choose AuthShield for the ability to offer two-factor authentication for all their remote employees who are accessing private data of their customers. Protecting sensitive information is a business requirement, and also an ethical and legal requirement. The threats may extend from misuse of official mails, copying confidential data or inserting backdoors into critical applications. AuthShield solution consistently integrates with VPNs, servers, and web applications that have business sensitive data of their customers and gives enterprise administrators piece of mind that their network remains secure from unnecessary risk.
AuthShield two-factor solutions help BPO and KPO organizations to meet
As per ISO 27001 controls ‘A.11.1.1: Access Control Policy’ and ‘A.11.4.1 Policy on use of network service’ , it is highly suggested to implement two-factor authentication for remote access logins for employees, administrators and other third party shareholders. AuthShield also provides requirements for establishing, implementing, protecting and continuously improving an Information Security Management System.
The decree of The Payment Card Industry Data Security Standards (PCI DSS) is that organizations who ‘hold, process or pass’ cardholder information should meet a minimum level of security. Part of this security is to protect remote logins with strong authentication. According to section 8.3 organizations must implement two-factor authentication for remote access to the network by employees, administrators and third party associates.
The Health Insurance Portability and Accountability Act (HIPAA) requires covered entities which includes health care providers, health insurance companies and other health maintenance organizations to implement procedures to verify that a person who is seeking access to electronic protected health information is the one claimed. Hence two-factor authentication is the most truthful and secure way to ensure medical records are kept safe.
Service organizations handle sensitive information daily, and SAS 70 audits can help to ensure the information is handled and protected properly. Implementation of two-factor authentication is one of the key instructions as part of the logical security needs to meet SAS70 audit Criteria.
Copyright - All Rights Reserved © INNEFU | Powered by ITPL