Did you lose your keys?
Note: The following is a “Vigilize Post.” If you want regular fodder for your security awareness reminders, along with catchy subject lines if you intend to use e-mail, consider following us on www.twitter.com/vigilize! Each week we tweet a post that you are welcome to customize to your own situation. The tweet itself is designed to be an e-mail subject line that will entice your users to at least open the message. This is in reaction to a very common complaint from our ISO clients: “They don’t even open my awareness reminder e-mails.”
Protect Your Passwords!
The password is the “key” to our systems. We must protect our passwords much in the same way we protect our keys.
Do not share your passwords with anyone. In addition, passwords must not be:
- Written in any format
- Revealed over the phone to anyone
- Revealed in an e-mail message
- Revealed on questionnaires or security forms
- Discussed about in front of others
- Hinted at or made easy to guess
- Used in sync with or duplicated by personal passwords or Web accounts
- Shared with family members
- Shared when out of the office
- Typed in or saved in electronic documents
In addition, do not use the “Remember Password” feature found with some applications (e.g. Outlook, Netscape, Messenger, Mozilla). Anyone gaining access to your system could then easily gain access to confidential information.
Click here for more information about User Awareness Training.
The purpose of Vigilize is to respond to ISO’s complaints that users never read ISO’s “ongoing security awareness training reminders.” Our tweets are designed to be copied into the subject line of your awareness reminder, with the language on these pages put into the body. The goal is that the user will have to read the subject line to know to delete the message, and if they understand the subject line the reminder is communicated. If not, they will go into the message and read the reminder.
Feel free to use Vigilize in your own Security Awareness Program. Let us know if you have any ideas, suggested tweets, or ways to improve this FREE service.
A Webinar Back by popular demand! Based on what Dan is finding in reviews of several
While we’re not a news service, we often use current events to comment on trends and
Welcome IBA Forum attendees! Looking to set up your own program for people to work fr
A short. This presentation is intended for those who are planning to participate in a
An Update to the FFIEC Outsourced Cloud Computing Document In April 2020, the FFIEC r