Identity Hygiene
Guidance for passwords, MFA, account recovery, and access reviews.
Secure Access / secure.mrpearson.net
Secure Client Access
A security-first access surface for client login, protected workflows, VPN-aware operations, and account safety guidance.
ops@secure.mrpearson.net:~$
./route --service=secure --domain=secure.mrpearson.net
[CONTROL] Public admin access restricted at Nginx
[AUTH] Client sessions protected with CSRF and secure cookies
[READY] Security access guidance prepared for customers
MFA
VPN Layer
CSRF
Form Defense
TLS
Secure Transport
>_ Capability Layer
What This Site Handles
Each subdomain has a clear job while staying connected to the main Pearson Cyber Defense service ecosystem.
Protected Access
Designed to pair client workflows with VPN and network access policy where required.
Incident Intake
Security event reporting path for suspected phishing, account compromise, or device risk.
>_ Operating Model
How It Works
Simple steps, clear ownership, and a professional customer experience across the service lifecycle.
01
Verify the user and organization context.
02
Route normal users to the client portal.
03
Route privileged access through VPN and allowlisted networks.
04
Escalate suspicious activity through documented response steps.
Security Controls
- HTTPS enforced
- Secure cookies
- CSRF protection
- Admin network restrictions
- Stripe webhook validation
Client Guidance
- Use MFA where available
- Report suspicious emails quickly
- Never share passwords
- Use the portal for service requests
>_ Next Step
Connect This Service To Your Environment
Tell us what you want this subdomain to handle and we will map the right access, content, and support workflow.