Intelligent CISO Issue 38 | Page 29

The importance of password security has arguably never been more important . s digital-first
It ’ s clear more needs to be done by businesses to provide the technology and training to ensure better cyberresiliency across the board .

? editor ’ s question

The importance of password security has arguably never been more important . s digital-first

A approaches and distributed workforces become the status quo for many industries , raising awareness around the importance of password security has arguably never been more important . And with recent NCSC research finding that people are using passwords which are an easy target for hackers , it ’ s clear more needs to be done by businesses to provide the technology and training to ensure better cyber-resiliency across the board .

It is imperative that we secure systems and infrastructure to ensure that the right people have the right access to the right assets at the right time . No more , no less . Importantly , we now live in an era where we do not need passwords alone – or sometimes at all – to enable trusted access . Multi-Factor Authentication is a useful tool , using more personal
RAMSÉS GALLEGO , INTERNATIONAL CHIEF TECHNOLOGY OFFICER , CYBERRES , A MICRO FOCUS LINE OF BUSINESS

It ’ s clear more needs to be done by businesses to provide the technology and training to ensure better cyberresiliency across the board .

attributes such as biometric data in someone ’ s voice , or devices , such as a code sent to an individual ’ s watch , to replace or augment passwords .
Yet despite these advances , there is no doubt that , for now , passwords aren ’ t going anywhere anytime soon . What ’ s more , boosting password security – and cyber-resiliency more widely – cannot be achieved by technology alone . Businesses must ensure they are educating their employees on best practice cybersecurity hygiene , beginning with how to create strong passwords and the importance of using different ones for different applications and services . Not only that , they must also make sure workforces understand the various tactics used by hackers to target unsuspecting users , from phishing to fake websites . Crucially , increasing awareness among staff on how they could potentially be putting their organisation ’ s data at risk is key , especially as workforces continue to access systems remotely during and after the pandemic . www . intelligentciso . com
29