The best way to fix a data breach is to prevent it from happening in the first place. Since over 81% of successful data breaches are caused by stolen or compromised employee passwords, getting your password security under control is a big step towards preventing a security breach in the workplace. Here are 6 tips.
Require the use of strong passwords
When employees are allowed to choose their own passwords, they tend to pick passwords that are very weak or easy for a cybercriminal to guess, such as their birthdate, their pet’s name, or a common password like qwerty123. A strong password is at least 8 characters long (the more, the better) and uses a mixture of both uppercase and lowercase letters, a mixture of letters and numbers, and at least one special character, such as an exclamation point, the # sign, or the @ sign.
Don’t let employees reuse passwords
SecureAuth found that 44% of people admit to reusing their personal passwords at work. If your employees’ personal accounts are breached, and they’re using the same passwords to get into organizational portals or apps, your company can end up compromised due to another company’s data breach. To prevent a security breach, assign your employees a different, strong password for every work account.
Mandate the use of multi-factor authentication (2FA)
Multi-factor authentication (2FA) prevents data breaches by stopping cybercriminals from accessing accounts even if they have the account password. With 2FA, they’ll still need the second factor to get in. Require your employees to use 2FA on every account and app that supports it.
Enforce role-based access control (RBAC)
RBAC with least-privilege access is key to data breach protection and prevention, as it prevents employees from accessing systems and data that they have no authorization to access. Grant your employees just enough system access to perform their jobs, and no more.
Prohibit employees from sharing login credentials
Credential-sharing negates attempts to enforce RBAC, and it opens up the company to cyberattacks if an employee goes rogue and decides to misuse their access. Shared credentials also mean that former employees still have access to their ex-employer’s systems even if their own credentials were disabled.
Mandate the use of a password manager
The first five tips are impossible to enforce without mandating the use of a robust password management solution like Keeper Business. A password manager enables IT administrators to mandate and enforce good password practices and is also easier and more convenient for employees. Since the password manager automatically generates strong passwords and keeps track of all login credentials, administrators can ensure that employees are using strong, unique passwords for every account, and employees don’t have to worry about losing or forgetting them.
Keeper Business helps prevent data breaches
Keeper’s business password management solutions give organizational IT administrators complete visibility into employee login credentials, enabling them to monitor and control password usage across the organization, including remote employees, and enforce policies such as strong passwords, RBAC, and 2FA. When employees leave the company, their credentials can be easily disabled. Keeper is affordable, easy to set up and manage, and offers enterprise-level protection that scales with your business, making it an ideal solution for organizations of all sizes.
Not a Keeper customer yet? Download our 14-day trial now!