Professional Documents
Culture Documents
The purpose of The IT Director’s Guide to Passwords and Cyber Essentials is to detail
how password policy and password security play a role in achieving Cyber Essentials
accreditation. In this presentation we are going to explain every single characteristic of
this guide and why is this so important.
ABOUT SPECOPS
Specops Software
develops unique password
management and desktop
management products
based on Microsoft
technology. We build on
top of Active Directory
and Group Policy with
innovative, simple, and
cost-efficient solutions for
organizations around the
world.
Cyberattacks are on the
rise in the UK. The
number of cyberattacks
made on UK businesses
in the first quarter of 2019
increased 122 percent
compared to last year.
THE CYBER ESSENTIALS SCHEME
According to the UK government, the Cyber Essentials security controls can prevent
around 80% of cyberattacks. The controls are mandatory for all government contracts
that involve handling personal information and delivering certain information
communications technology products.
CONTROL TOPICS INCLUDED IN THE SCHEME
Secure
Firewalls Configuratio
n
Patch
Management
1. SECURE
CONFIGURATION
AND
PASSWORDS
SECURE CONFIGURATION AND PASSWORDS: OBJECTIVE
If you are planning for Cyber Essentials accreditation you will need to make sure
your password policy is up to the challenge. Shift the password burden away from
your users, and place it instead on the technical systems. For example, you could use
a password blacklist to stop leaked passwords, lock accounts after repeated login
attempts, and stop periodic password expirations while continually checking for
compromised passwords. You should also limit the number of users who have
privilege access, and use those accounts for only the task that is required of them.
CONCLUSION
Password Policies and Good Password Management Practices are basically essential nowadays in a technological
world. Most of the information we have available is already up somewhere on the internet, and if we aren’t careful
enough, we might lose some part of it, and maybe all of it. Passwords aren’t a joke and have never been, for it we
have to take special care when we are making one, and with the ones we already have. It’s very important we know
the minimal characteristics for a password to be strong and protect it with policies and protocols so we can be sure
that we are secure.