Multi-factor authentication (MFA) is a security measure that requires users to provide two or more verification factors to access a resource, such as an application or online account. This method combines something the user knows (like a password) with something they have (like a physical token) or something intrinsic to them (like biometric verification). Implementing MFA significantly reduces the risk of credential theft and unauthorized access, making it much harder for threat actors to compromise accounts.

Organizations should take inventory of their network devices and software, removing unnecessary or unexpected hardware and software, and starting from a known baseline. Active management involves regularly updating devices, applications, operating systems, and security configurations. This proactive approach reduces the attack surface and allows organizations to adapt to dynamic threat environments, ensuring that systems remain secure and efficient.

A well-exercised system recovery plan is crucial for ensuring operational continuity during unexpected events, such as natural disasters or cyber threats like ransomware. This plan should include creating, reviewing, and practicing a comprehensive disaster recovery strategy that protects critical data and configurations. Regular testing and evaluation of the backup plan are essential to accommodate changes in the network environment, helping organizations mitigate the impact of disruptions and assure stakeholders of their resilience.