Onelogin is an application that helps organisations manage security.

It provides a Single Sign on Service for company applications, as well as providing a password management service for individual users. Going forward it will also allow IT to enforce multi-factor authentication on certain applications.

There are a few reasons we are implementing Onelogin.

1. Implementing Onelogin will improve the security stance of Pickerings. It will make company data more secure, and allow IT more control in keeping company data secure.
2. Shortly all companies that sell products to the US defence market, will be required to be audited for Security Standards. In order to comply with the new standards, we have to make improvements to the way users are accessing software and company services.
3. As Pickerings has gone through a rapid period of growth over the last few years, we have had 3 separate IT departments working individually. This implementation will see the whole of the Pickering group move towards a unified management of security.

Let's be honest - it can do!

There is always a balance between keeping company data and the company networks safe, and giving staff the tools and support to do their jobs as easily as possible. The IT departments work very hard across Pickerings to try to get this balance right.

Although there will be some changes coming up to the way you work, we have chosen a solution which we believe can be implemented with the minimum of day to day hassle for yourselves, and will eventually make your life easier.

Single sign on basically means you have one username and password to access lots of different applications and services.

Already in Pickerings we have implemented Single Sign on where we can. For example, if you are in the UK office you have a user name and password that logs you onto our company network. That same user name and password also gives you access to Office 365 and the company VPN.

If you are in the Czech office your company username and password gives you access to Zimbra and all internal company applications.

Implementing Onelogin will enable you to use single sign on across all of your applications.

It also means that you will only have to sign in ONCE on a device to be logged into all of your applications automatically.

Yes and No!

For some applications IT will enforce the use of the company user name and password.

For other applications, you will be able to set your own user name and password, but Onelogin will manage this for you so that once you have logged into Onelogin  you have access to all of your applications without having to log in again. That's why it's called Onelogin!

Multi-factor authentication is when you use more than one method of proving who you are when logging into an application or service.

For example, you may put in a password, and then be asked to put in a code that has been sent by SMS, or click a button on an app, or answer a question, or provide a hardware token.

Using more than one method of authentication greatly improves security.

Yes it can be, however, it is a necessary evil at this time.

However, using Onelogin to manage multi-factor authentication for Pickerings offers some real benefits that will reduce the hassle factor.

1. Rather than having to deal with multi-factor authentication for multiple applications during a day, you will only have to do it once* to access Onelogin which will then allow you access to your applications and services.

2. Onelogin uses AI to assess your general behaviour, and the riskiness of your environment, to decide how much checking is needed to verify you are who you say you are. For example, if you logging in from the company network, then multi-factor authentication may be bypassed, however if you are logging in from airport wifi, or a coffee shop in Nigeria/Russia/China or some such other risky environment, then Onelogin may prompt you for credentials more frequently.

1. It will give you one place to login to access all of your applications.

2. It will work across all of your devices including mobile devices.

3. The number of occasions you will be required to use multi-factor authentication will be reduced

4. It will keep you much more secure

5. You will be able to add personal applications and logins to Onelogin and manage them as well in a separate private area.

6. You will be able to change your Active Directory/Pickering password from within Onelogin. You will not need to be logged into the company network which is currently the case. This will benefit Sales Office staff in particular, who at the moment are not able to set their company password themselves.