All user accounts may now be enabled to require MFA (multi-factor authentication) [also called 2FA, 2 Factor Authentication]. Once configured and enabled for an account the system will require the use of an authentication code generated by one of the many authenticator applications such as Google Authenticator, Authy, Duo or LastPass. This option is enabled on the user profile page of the interface, Zendesk article here and screen shot below:
