Heart suggests organizations create a strong password policy for users throughout the organization.
A strong password should be:
- Nonsense words or word phrases that are not found in a dictionary
- A combination of upper and lower case letters
- A combination of letters, numbers, and symbols
- At least nine alphanumeric characters long
- Free of personal information such as: birthdates, anniversary dates, social security numbers, phone numbers, etc.