Keep your data safe
What is MFA?
Multi-Factor Authentication (or MFA) is a simple to use technical solution which can be put in place to massively reduce the risk of account compromise and data breaches. Authentication is far more secure where it combines the use of more than one type of technology (multi factor), requiring not only password and username credentials but also a One-Time Passcode (OTP) generated by a token or mobile app. This ensures that if your credentials are stolen they cannot be used to access systems without access to your physical token or smartphone also. Maritech takes security extremely seriously and as such is making multi-factor authentication a default setting to protect your access to the Sea/ suite of applications and your data.
Why is MFA needed?
The cyber threats we all face continues to increase, with attacks becoming far more sophisticated, and as a result, more successful. These attacks often target specific individuals, using the correct business terminology and supporting information to add credibility. Hackers are really starting to do their research! These threats frequently take the form of a’ Phishing attack’ (a method of social engineering), most commonly via a malicious email, which is used to obtain your username and password credentials. Statistics show that Phishing is still the number one cause of data breaches and it is clear that basic username and passwords do not offer effective proception alone to combat this threat.
So, whilst as a business we're taking every precaution to keep the Sea/ platform safe from an infrastructure and penetration point of view, weak passwords and single login processes does present a risk. By rolling out MFA as standard, that risk is greatly reduced.
Other security controls at Sea/
Security as standard
Our information security management system is based upon the requirements of the international standard ISO 27001. Using this framework and the deployment of applicable security controls and technologies, we assess, manage, continuously review and improve information security related risks. We also ensure compliance with applicable legal and regulatory information security requirements.
ISO 27001 Certified
Certified in September 2020, demonstrating our ongoing commitment and continual improvement of information security, covering the design, development, provision and hosting of our applications and services.
Infrastructure, support, data, governance and development is wholly separate from the Clarkson's group. The data within your platform belongs to you, and is only visible to you and the counterparties with whom you chose to share it.
How does it work?
Set up MFA now
Setting up MFA couldn't be simpler, and only takes a couple of minutes. Click the button below to get started.
For ease and convenience, you can chose your method of authentication. Either opting for an SMS text message to be sent to your mobile, or by using an Authenticator App such as Microsoft or Google. Both are free and available from the App store or Google play. Once you have the app, you can link it to your account. All of these instructions are provided here.
Frequently Asked Questions
What if I forgot my phone?
If you don't have your phone on you then you can contact Sea/ support through chat, phone, or email firstname.lastname@example.org. We will need to manually verify your identity so an email with a verification code will be sent to your inbox, in which you will have to read back. Multi-factor authentication will be temporarily disabled upon successful verification.
What if I have a new phone?
If you obtained a new phone recently then multi-factor authentication will have to be reset. Send an email to email@example.com requesting to do so and we will proceed with the reset process as soon as we manually verify your identity through email.
I haven't received my code
If you haven't received your code click on 'RE-SEND CODE' on the login page to have a new code generated and sent to you.
Can I opt out?
We are making access via MFA mandatory for all users. Don't forget that Sea/ is a collaborative platform and therefore as well as your own data, you also have access to sensitive client and/or counterparty data too. If your login details were obtained, then you would risk exposing the information of those that you interact with on the platform. For this reason, and to protect everyone, we are making access via MFA mandatory.
What happens if I don't set up my MFA in time?
MFA will be automatically activated on your account by the 1st September 2021.
Can I change my MFA method?
Should you choose to switch from SMS to Authenticator app or vice versa, then:
- Navigate to Sea/ Preferences in your Sea/ home page
- Scroll down the 'Multi-factor authentication' section and click on 'Click here'
- You will be redirected to the initial multi-factor authentication screen where you can adjust the MFA method.