A company undergoes a security audit and finds that their password policies are lax, with most employees using easily guessable passwords. As a security auditor, what would be your primary recommendation?
- Enforce a strong password policy
- Implement Multi-Factor Authentication
- Increase lockout time
- Regular password audits
Enforcing a strong password policy would be the primary recommendation, as it directly addresses the core issue of weak passwords. This policy would mandate criteria like password length, complexity, and change frequency. While MFA and regular audits are beneficial, addressing the root cause is essential.
Loading...
Related Quiz
- Imagine you're leading a testing project for a major e-commerce platform. Your team finds a bug but is unsure of its severity. Who in your test organization should ideally determine the impact and priority of this bug?
- The _______ section of a test plan specifies the items that are subject to testing.
- A _______ Tester focuses on ensuring the usability and overall user experience of the application.
- System testing is conducted on a _______ software to evaluate its overall behavior.
- How is the "Defect Removal Efficiency" metric typically calculated?