The security stack has grown, but audits still stumble on passwords. CISOs see this every year. An organization may have strong endpoint tools, layered network defenses, and a documented access policy. Then the audit turns to shared credentials, spreadsheet-based password storage, or accounts that no one can clearly explain. At that point, the discussion stops being about maturity and starts being about gaps. Passwords remain one of the most common access mechanisms across enterprise systems. … More
The post Passwords are still breaking compliance programs appeared first on Help Net Security.
This article has been indexed from Help Net Security
Read the original article: