Security has traditionally been very heavily reliant on identity in the past, principally username and password. But, as technology has moved forward, username and password are too easy to crack. If your security relies on username and password alone, whether this is for local applications, email or cloud-based applications, you are a prime target for hackers.
The hackers of today are equipped with a much more robust toolset than in the past. Password crackers, brute force attacks and one of the currently preferred methods, phishing attacks, make it easy for bad actors to compromise the integrity of your organization.