9 principles for a better company password policy
Whether you like it or not, everyone relies on passwords – both at work and at home.
At work, some employees have different logins for every device, app and website. Others access everything through a Single Sign-On (SSO) service. However, many tend to use and reuse passwords that are easy to remember across most, if not all, of their logins. If any password is weak – even one – it could allow an attacker to slip past your company’s defenses. That’s why it’s critical that your business has the right password policy in place.
When it comes to organizational standards for passwords, two questions to consider for your policy are whether or not they are strong enough to thwart potential hackers, and will employees actually follow them?
Because if they’re too weak, your company will still be exposed. And if they’re too complicated, many employees will shrug their shoulders and continue to use weak passwords, or re-use the same password for all of their corporate devices and accounts.
If you’re struggling to find that balance, or not sure where to begin, this guide will help.