2FA - when required by your vendors, do you stipend your staff?
-
@breffni-potter said in 2FA - when required by your vendors, do you stipend your staff?:
"It depends" on way more factors than 2FA.
Do they currently have work emails on their personal device?
If yes, why does introducing 2FA suddenly require stipends? If no, then provide them with physical tokens for 2FA instead.Maybe they "have to" vs. "they can"?
-
@scottalanmiller said in 2FA - when required by your vendors, do you stipend your staff?:
@breffni-potter said in 2FA - when required by your vendors, do you stipend your staff?:
"It depends" on way more factors than 2FA.
Do they currently have work emails on their personal device?
If yes, why does introducing 2FA suddenly require stipends? If no, then provide them with physical tokens for 2FA instead.Maybe they "have to" vs. "they can"?
Actually, in most of their cases, we purposefully prevent it. ActiveSync and Webmail are both deactivated for most of those users.
-
I wouldn't stipend the staff, the data usage is minimal.
-
@dbeato said in 2FA - when required by your vendors, do you stipend your staff?:
I wouldn't stipend the staff, the data usage is minimal.
The question is - is there any type of legal requirement here?
-
@dashrender Good question...Let me check...
-
@dashrender Are these trainees or just part time employees?
-
-
@dbeato said in 2FA - when required by your vendors, do you stipend your staff?:
https://cng.ncsu.edu/cng-docs/resources/Stipend_vs_SalaryQAsession12072010.pdf
Not really sure where you're going with this one.
-
@dashrender the Stipend part, are we talking about an Employee or Trainees/Interns
? -
@dbeato said in 2FA - when required by your vendors, do you stipend your staff?:
@dashrender the Stipend part, are we talking about an Employee or Trainees/Interns
?you post talks about stipends for non staff, and salary for staff.
I'm talking about stipends for staff.
-
If employees are required to use personal devices, I'd think there should be some sort of stipend or payment for them. Legalities are probably different for each location tho, so might want to touch base with the lawyer's office.
-
@dashrender I Guess I am confused by the terminology of a stipend. I usually would use stipend with interns while with employees it will be a payment, reimbursement or extra pay.
-
@dbeato said in 2FA - when required by your vendors, do you stipend your staff?:
@dashrender I Guess I am confused by the terminology of a stipend. I usually would use stipend with interns while with employees it will be a payment, reimbursement or extra pay.
Regular employees get stipends as well.
-
@dbeato said in 2FA - when required by your vendors, do you stipend your staff?:
@dashrender I Guess I am confused by the terminology of a stipend. I usually would use stipend with interns while with employees it will be a payment, reimbursement or extra pay.
Google Definition
https://i.imgur.com/EJY0EWZ.pngOK I see where the confusion can come from.
To me a stipend can be paid to anyone, payrolled employee or not. From my experience, a stipend is not considered pay from a taxable point of view, but my experience is probably limited. Again, to me a stipend is paid to compensate someone for some expense they have on the companies behalf, instead of the company paying for it itself.
Of course the above definition does not imply that at all. -
@dashrender Yeah, but for what you want then yeah they should get some sort of pay.
-
Why not buy them some cheap Android Tablets. I mean you can pickup some really cheap ones, less than 50 bucks. As long as they are on the wifi then they use those. You have total control over the 2FA devices that way.
-
@penguinwrangler said in 2FA - when required by your vendors, do you stipend your staff?:
Why not buy them some cheap Android Tablets. I mean you can pickup some really cheap ones, less than 50 bucks. As long as they are on the wifi then they use those. You have total control over the 2FA devices that way.
Now they are carrying around two devices with them, phone and this tablet.
-
@dashrender said in 2FA - when required by your vendors, do you stipend your staff?:
Of course calls, like SMS, are totally hackable with SS7 redirects. But again, I'm not controlling these systems.
PCI was on track to get rid of SMS for 2FA, I assume HITECH is also. Why not use an app (VIP is my favorite).
-
@dashrender said in 2FA - when required by your vendors, do you stipend your staff?:
@penguinwrangler said in 2FA - when required by your vendors, do you stipend your staff?:
Why not buy them some cheap Android Tablets. I mean you can pickup some really cheap ones, less than 50 bucks. As long as they are on the wifi then they use those. You have total control over the 2FA devices that way.
Now they are carrying around two devices with them, phone and this tablet.
It's worse than that. The device battery 6 months in last 10 minutes, the screen takes 2 minutes to use because it's some ancient touch screen, the Android release is 4 versions behind. The MDM API's are so crippled you can't get Airwatch or any real MDM solution to work. When you have labor resources that cost $100-500 an hour WTF would you try to save a few $ per person that will cripple their workflow? I've seen so many people try this and fail.
For what it's worth hospitals devices tend to be shared on call devices. My wife's on-call phone is locked down so tight that if she takes 2 steps out side air watch bricks the device till it comes back in the hospital. They use special Android devices that are properly patchable, have the full KNOX API's for air watch to hook, and have extra battery kits and hot docks everywhere.
-
@john-nicholson said in 2FA - when required by your vendors, do you stipend your staff?:
@dashrender said in 2FA - when required by your vendors, do you stipend your staff?:
@penguinwrangler said in 2FA - when required by your vendors, do you stipend your staff?:
Why not buy them some cheap Android Tablets. I mean you can pickup some really cheap ones, less than 50 bucks. As long as they are on the wifi then they use those. You have total control over the 2FA devices that way.
Now they are carrying around two devices with them, phone and this tablet.
It's worse than that. The device battery 6 months in last 10 minutes, the screen takes 2 minutes to use because it's some ancient touch screen, the Android release is 4 versions behind. The MDM API's are so crippled you can't get Airwatch or any real MDM solution to work. When you have labor resources that cost $100-500 an hour WTF would you try to save a few $ per person that will cripple their workflow? I've seen so many people try this and fail.
For what it's worth hospitals devices tend to be shared on call devices. My wife's on-call phone is locked down so tight that if she takes 2 steps out side air watch bricks the device till it comes back in the hospital. They use special Android devices that are properly patchable, have the full KNOX API's for air watch to hook, and have extra battery kits and hot docks everywhere.
Does Airwatch work well? We looked at AirPatrol but it was insanely expensive (like ~$2500 per access point).