Password Expiry Ineffective, says Cyber Expert

Password Expiry Ineffective, says Cyber Expert

Employing automatic password expiry for security purposes is no longer effective and can lead to increased costs, reduced production and vulnerable accounts, says the National Cyber Security Centre.

Blogging on the NCSC’s website, a representative of the security group, ‘Emma W’, wrote that password expiry has become:

 

“…a blunt instrument that casts a long shadow over organisational security.”

She added that while changing passwords on a regular basis may, on the face of it, appear to be a practical way of enabling increased security, evident exists that the cons outweigh the pros by some distance.

There is a greater chance that regular changing of passwords will encourage less secure practices, such as choosing weaker passwords, noting them down on paper, using them across more than one system and only modifying them slightly, such as adding a symbol or number.

Emma W wrote on the blog:

“Password expiry might initially look like a quick and easy way of helping to manage the risks. However, it rarely delivers the headline benefits it promises, and mostly just creates fresh vulnerabilities instead.”

Passwords have become the bane of many an existence, with new website users being forced to create more complicated ones. The security behind it is increasingly important, however. This is especially the case in business, where data kept behind passwords is often held on thousands of customers, if not more. This is just one example of why creating cyber security jobs in order to enlist trained professionals is so vital to today’s business. Most firms are simply unaware of the basics.

Our accreditations & Partners

  • REC Member
  • VTC - Virtual Technology Cluster
  • RANT Events
  • Bloom Nepro
  • YPO
  • Crown Commerical Service

Thanks

Success

Thanks

Success

Thank you for signing up to the acumin alerts.

Send CV

Send us your CV and have our recruiters match you to the ideal opportunities

Do you already have an account with us?

Log in

Want to have an account with us?

Register

Want to just send us your CV?

Upload only doc, docx, odt, pdf format file.

By submitting your registration and CV to us you are agreeing to join our database and to be contacted about relevant jobs industry communications. Please read our terms of business for more information.

Password reset

If you need a reminder for your password, fill out the field below

Log in

Access your account to edit your contact details, job alerts or to upload a new CV

Thank you

Success

Thank you for successfully uploading your CV.

Acumin Alerts

Success

Thanks for registering for Acumin alerts.

Acumin Alerts

Unfortunately your CV could not be uploaded

Please make sure your CV is one of the following file types: doc, docx, odt, pdf, rtf

Acumin Spam

Unfortunately your submission has been declared spam. Please try again.

Vacancy

Success

Thank you for submitting your vacancy.

Register

Create an account to register your contact details, sign up for job alerts and upload your CV

Success

Thanks for registering for Acumin alerts. To get the most out of Acumin's service why not register with us?

Upload only doc, docx, odt, pdf format file.
- Practitioner
- Commercial

I agree to the terms and conditions and to be contacted by recruiters:

I agree to receive marketing communications relevant to my job search:

I agree to receive Jobs By Email for the following professions:
- Business Continuity Management
- Counter Fraud
- Cyber Security
- Executive Management
- Governance & Compliance
- Information Security & Risk Management
- Penetration Testing & Digital Forensics
- Sales and Marketing
- Sales Engineering
- Security Management
- Technical Security
- Information/Risk Assurance
- Identity Management
- Application Security
- Security Architecture
- Dev/Sec Ops
- DV & SC Cleared Jobs
- Programme & Project Management
- CISO/CSO

Submit a Vacancy

Use the form below to submit a vacancy