A guide for managers and experts overseeing the areas of identity, security and compliance in organizations operating in regulated sectors.

Obtaining budget approval for cybersecurity initiatives is a challenge that many CISOs and enterprise architects face. Decision-makers need clear, practical justifications that explain the value of these investments in terms of reducing risks, ensuring compliance, and future-proofing the organization. Below, we outline four actionable executive summaries that security leaders can use to support budget requests for key cybersecurity goals: enhancing VPN security, ensuring compliance with DORA, implementing passkeys for critical applications, and meeting NIS2 requirements.

Extend Microsoft Entra security to every app. See how Secfense adds phishing-resistant passkey authentication without code changes or agents.

Enable phishing-resistant password recovery with Secfense. No code, no apps, no IAM changes - just smarter resets.

A leading insurer in Central Europe implemented MFA with Secfense in weeks—no code changes, full compliance, and future-ready for passkeys.

The Problem with Internet-Facing Systems Remote access is part of every modern organization. Employees, contractors, and partners depend on technologies like VPN gateways, Citrix servers, and Outlook Web Access portals to reach internal resources from the outside world.

UNIQA, one of the largest insurance groups in Central and Eastern Europe, has announced its partnership with Secfense, a Polish company specializing in advanced technologies for digital identity and access protection.

Sandis – an integrator and software provider for the insurance industry, selects and implements the Secfense User Access Security Broker solution in the WAGAS group. Thanks to the implementation, among other outcomes, The Polish Financial Supervision Authority (UKNF) recommendations regarding cybersecurity in 27 different applications are being realized.

Discover why phishing-resistant MFA is now the compliance baseline under DORA, NIS2, and PCI DSS 4.0 and how to secure legacy apps.