Security breaches happen – to just about every organization. That’s an ugly truth. Unfortunately, data security breaches are becoming an increasingly routine occurrence. Yet, the majority of these breaches don’t come from outside hackers and malware – they come from poor security practices that are very avoidable.
Did you know? 70% of all reported security breaches came from within the organization, according to a survey of 163 Fortune 1000 companies conducted by the Ponemon Institute.
Your company may be vulnerable due to the actions of your employees, policies and daily practices. Ensuring proactive policies, training and compliance can do a great deal to address this common area of security risk.
To help our clients implement or update data security policies, we have created a new best practices document with actionable best practices for implementing a password policy, including sample policy language.
One of the keys to a password policy is implementing password best practices. Here’s an excerpt of our recommended do’s and don’ts for password security:
- Use character complexity
- Enforce password history
- Use a minimum password age
- Contain less than eight characters
- Birthdays or other personal information
- Family names, pets, friends, co-workers, etc.
- Word found in dictionary (English or foreign)
Make sure everyone is on board with the password protection standards within your company, and enforce the rules to ensure you are protected from security breaches.