Brandt Hospitality case study

No breaches. No cyber insurance premiums.

Brandt Hospitality prevented a breach, reduced IT overhead, and kept cyber insurance costs flat with Beyond Identity’s phishing-resistant, device-bound authentication.

Get a demo

Eliminate identity-based attacks

Context
Brandt Hospitality Group is a builder, developer, and operator of hotels across the United States, partnering with major brands like Marriott, Hyatt, IHG, and Hilton. Their IT team focuses on enabling seamless operations for staff while maintaining strong security measures against cyber threats.
Results
Checked
Eliminated Phishing and Help Desk Attacks

Prevented password-related phishing attempts, reducing security risks for hotel staff and the IT department

Checked
Reduced IT Overhead

Streamlined authentication processes, minimizing support requests and administrative burden

Checked
Prevented Rising Cyber Insurance Premiums

Prevented cyber insurance costs from rising by deploying phishing-resistant MFA

Checked
Seamless User Authentication

Enabled a frictionless passwordless login experience without requiring phones, codes, or hardware keys

Example H2

Challenge

Brandt Hospitality Group operates hotels across the U.S., where employees across multiple locations need secure yet seamless access to internal systems. The hospitality industry is a frequent target for phishing and identity-based attacks, as employees are trained to be helpful and responsive, making them more vulnerable to social engineering tactics.

The company was facing pressure from their cyber insurance provider to implement a phishing-resistant MFA solution to maintain compliance and avoid rising premiums.

When looking at solutions, other MFA providers required employees to use personal devices, hardware keys, or manually enter authentication codes. This would add friction to the user experience and take employees away from time focused on caring for guests. 

Additionally, with a front line workforce, Brandt needed a secure authentication solution that would integrate seamlessly with their existing infrastructure while eliminating the risk of compromised credentials. 


Solution

Beyond Identity’s phishing-resistant, device-bound MFA seamlessly integrated into Brandt Hospitality Group’s existing infrastructure, providing a frictionless yet highly secure authentication experience.

According to Josh Johansen, Head of IT at Brandt Hospitality Group, “Beyond Identity makes our phishing training obsolete, because now we are constantly protecting our end users with the TPM and that embedded secure enclave.” 

For Brandt Hospitality, security solutions must not only protect against threats but also enhance the employee experience. The ease of use and seamless authentication process were key factors in choosing Beyond Identity. Employees no longer have to manage MFA codes, push notifications, or second devices / hardway keys: authentication just happens in the background, improving both security and operational efficiency.

"Beyond Identity has been second to none. What we do in hospitality is try and make things as easy as possible for our guests. Beyond Identity does exactly that but for our end users " Johansen adds.

Results

Deploying Beyond Identity provided Brandt Hospitality Group with a seamless, phishing-resistant authentication solution that improved security while enhancing the user experience. The IT team prevented phishing attacks, experienced fewer password-related IT support requests, and avoided the rising costs of cyber insurance premiums. 

Eliminating Phishing Attacks

"The first time I got a phone call from a manager saying ‘Hey, I really need to know my password.’ Because we do use Beyond Identity, we knew that was a phishing attempt. That was a watershed moment for us to know we made the right choice.” " said Josh Johansen, Head of IT.

Without passwords, one-time codes, or push notifications, Brandt never has to worry about any employee falling for the largest threat vector plaguing organizations today: identity-based attacks. 

Frictionless Authentication, Massive Time Savings

With Beyond Identity, authentication happens seamlessly in the background, improving efficiency for employees at every level.

  • Employees do not need to enter authentication codes or use personal devices
  • IT help desk requests for password resets and account lockouts have significantly decreased
  • Managers and staff can focus on reliable guest service rather than authentication issues

Preventing Cyber Insurance Rising Premiums

Beyond Identity played a key role in preventing cyber insurance premiums from rising for Brandt Hospitality Group. Insurers recognized the added security benefits of phishing-resistant MFA, reducing the organization’s overall risk profile.

"One of the benefits that we've seen with our cyber insurance is that our premium has remained flat ever since we've rolled this out. They're very pleased we're using a phish resistant MFA partner like Beyond Identity."

Key Benefits to Brandt Hospitality Group

  • Eliminated phishing-based attacks
  • Seamless authentication without phones, hardware tokens, or MFA codes
  • Reduced IT support burden with fewer password-related tickets
  • Avoided rising cyber insurance costs through improved security posture