That's defense in depth. 🔒
Here are three options based on different tones: digital guardian phishlabs
Most organizations focus on stopping the phishing email from arriving. But what happens when a credential is stolen despite your filters? That's defense in depth