Password Security Policy

Subscriber Content
Screenshot of the first page of Password Security Policy

This tool contains four sample policies that establish a company’s guidelines regarding secure and consistent system passwords.

Sample procedures include: users must not write down or otherwise record their passwords in readable form near the system to which the password pertains; passwords must not be written down and left in a place where others might discover them; if a password must be written down, it must be secured and far away from the system to which it pertains; and users must choose passwords that are challenging for others to guess but easy for them to remember, so users do not feel compelled to write down a password in order to remember it.


Topics
Data Security
Identity and Access Management
IT Security
Privacy
IT Risk
Risk Assessment

Related Resources

Memos

IT Network Security Scope Memo

Policies & Procedures

IT Auditing and Logging Standard Policy

Checklists & Questionnaires

General IT Controls Review: Passwords Questionnaire

Free Trial

Sign up for a free, no-obligation trial to start exploring our timesaving, valuable resources.

Let's Do It