A security process that requires users to provide two or more different authentication factors to verify their identity before accessing systems or data.
MFA significantly reduces insider risk by ensuring that even if credentials are compromised, additional authentication factors (something you know, have, or are) prevent unauthorized access. It's particularly effective against credential theft, social engineering, and account takeover attacks that could lead to insider incidents.