Given the highly sensitive nature of M&A deals done using Firmex, ensuring a secure experience is our highest priority.
Toronto, Ontario (PRWEB) September 16, 2014
Firmex has introduced a new, optional two-step authentication security feature, to make the Firmex login process even more secure. When enabled, users must verify their identity not only with a username and password, but also with a one-time use security code. The security code can be delivered via SMS text message, an automated voice call to the user’s mobile phone, or via email.
By requiring two identity factors – both ‘something you know’ (your username and password) and ‘something you have’ (your mobile phone, for example) – this security feature helps reduce the risk of compromised user accounts from phishing attacks and other online frauds.
Two-step authentication is another powerful security tool that Firmex administrators can apply to highly sensitive sites and projects, in addition to restricting user access by IP address, applying advanced password controls, and requesting unusual behaviour notifications. Unlike consumer-grade applications, Firmex’s two-step authentication is controlled by the administrator, ensuring high security standards across projects and users.
The Firmex Site Administrator can enable two-factor authentication for all users, or just selected ones. For example, two-factor authentication may be a requirement for all non-employees. Once enabled for a user, two-factor verification will apply to all their projects.
“Given the highly sensitive nature of M&A deals done using a Firmex virtual data room, ensuring a secure experience is our highest priority,” explained Elizabeth Caley, VP of Product Management at Firmex.
“Like all our other bank-grade security features, two-factor authentication has been designed with administrators in mind. They have complete control over how this additional layer of security is applied, based on their own security standards and policies.”
Two-factor authentication is now available to all Firmex users. Administrators are encouraged to contact their Account Manager or our Client Services Team for more information.