Enforceable Password Policy

Owned by Roxy Sanchez
Last updated: Sept 23, 2024 by Benjy Meyer
1 min read

Does your organisation have an enforceable password policy?

Yes.

In accordance with Cyber Essentials we have a password policy for our internal team users when using our various cloud services. This includes definitions around the generation and storing of passwords, which we enforce via the 1Password application and the use of MFA wherever it is available.

Commonplace application users are subject to minimum password length and complexity rules, as follows:

  • 8 characters

  • 1 uppercase letter

  • 1 lowercase letter

  • 1 number

  • 1 symbol

  • Cannot reuse 5 of the most recently used passwords