Authentication Controls Clause Samples
Authentication Controls. Reduce risks associated with SS&C having access to Client Data by incorporating commercially reasonable authentication controls that conform to regulations applicable to SS&C, which at minimum, will include the use of multi-factor authentication where Client Data is being accessed. SS&C Personnel shall only perform actions within their role function and privilege level and strictly on an ‘as needed’ basis only.
Authentication Controls. We require that users or employees authenticate to access data by doing the following:
1. Our core business offering includes helping customers secure their physical network infrastructure, and we do this ourselves for any internally hosted data.
2. All access to customer data and internal data requires authentication with a username and password.
3. We require multi-factor authentication for all employees when authenticating to our most important services.
4. We require all employees to store password in a password manager such as 1Password.
5. We require that customers and employees share secrets using pre-approved, secure channels.