Actionable Data to Enhance and Tailor Security Awareness Training
An organisation’s security is only as strong as its weakest link which more often than not is the employees. Poor password choice still sits extremely high on the top most common origin points of breaches and provides a low barrier of entry into an organisation when no additional authentication controls are in place. Even with additional controls, it often makes an attacker’s job harder but doesn’t fully restrict access to all available company data.
Ensuring only strong passwords are used across an organisation is the dream but in reality, it is an ongoing training and educational battle that most CISOs will know only too well. All the while, the trust is on the employees to make sure they are using unique and “strong” passwords and as we all know, trusting employees in security matters is often not the best option.
Oxford Systems offers an Active Directory Password Audit service which aims to shift some of the trust and responsibility off of the employees and instead place it with the internal IT / security team. This is a regular service which is designed to rotate along with your current organisational password policy. The passwords of users across the estate are assessed to identify weak passwords that are currently in use by employees and importantly trends across the organisation, such as:
Common words and themes
Password repetition
Password structural patterns
Trends over time
The purpose of this services is to identify critically weak accounts in order for passwords to be immediately rotated as well as to guide staff security awareness training and password policy. In establishing trends and statistics in the form of raw data and graphs from the passwords obtained, it is possible to build invaluable insight into your organisations weakest link and ensure you are well armed for the ongoing security education battle.
We serve cookies. If you think that's ok, just click "Accept all". You can also choose what kind of cookies you want by clicking "Settings".
Read our cookie policy