Tech

Information Technology Policy – Strong Passwords

Strong  photoA strong password is vital to protecting the data assets of The Company. All employees, staff, and others who access data assets, the network(s) owned by The Company must adhere to the password policy.

Network Passwords

Password Length: A network password must be seven digits or longer.

Password Digits: A network password must contain at least one letter and one number. It is encouraged to have at least one symbol. It is encouraged to have at least one capital letter.

Ineligible Passwords: A network password must not be the staff member’s name, first middle or last, their spouse’s name or the name of their children. It should not have their job title or company name.

Examples of Good Passwords: K1ttyc@T, 0r@nge3, orange12#, $hoesRfun2, fuzz!ki77y

Password Rotation: The network will force the network password to change at least quarterly (4 times a year, every three years).

Ease of Memory: The password should be easy to remember for the staff member. Names of pets, important places or dates are all acceptable.

No The Company staff member will not email their password to anyone.

No The Company staff member will not give their password to anyone.

No The Company staff member will not write their password in, on, or around their work area.

Program Passwords

Password Length: A network password must be seven digits or longer.

Password Digits: A network password must contain at least one letter and one number. It is encouraged to have at least one symbol. It is encouraged to have at least one capital letter.

Ineligible Passwords: A network password must not be the staff member’s name, first middle or last, their spouse’s name or the name of their children. It should not have their job title or company name.

Examples of Good Passwords: K1ttyc@T, 0r@nge3, orange12#, $hoesRfun2, fuzz!ki77y

Password Rotation: It is suggested the password for programs be changed quarterly.

Ease of Memory: The password should be easy to remember for the staff member. Names of pets, important places or dates are all acceptable.

No The Company staff member will not email their password to anyone.

No The Company staff member will not give their password to anyone.

No The Company staff member will not write their password in, on, or around their work area.

Wireless Network Passwords

Password Length: A network password must be seven digits or longer.

Password Digits: A network password must contain at least one letter and one number. It is encouraged to have at least one symbol. It is encouraged to have at least one capital letter.

Ineligible Passwords: A network password must not be the staff member’s name, first middle or last, their spouse’s name or the name of their children. It should not have their job title or company name.

Examples of Good Passwords: K1ttyc@T, 0r@nge3, orange12#, $hoesRfun2, fuzz!ki77y

Password Rotation: It is suggested the password for programs be changed quarterly.

Ease of Memory: The password should be easy to remember for the staff member. Names of pets, important places or dates are all acceptable.

No The Company staff member will not email their password to anyone.

No The Company staff member will not give their password to anyone.

No The Company staff member will not write their password in, on, or around their work area.

All password policies should be put in staff handbook and included in computer education trainings.

 

Comments Off on Information Technology Policy – Strong Passwords