Home → Best Practices → Network Security → End User Security

1.2. End User Security

• Must Have Practices

  • Provide appropriate training/documentation to protect against phishing, social engineering, etc.

  • Password management

    • Consider complexity, history, security

  • Policy and procedure for provisioning/deprovisioning of user accounts

• Best Practices

  • Use of multi-factor authentication

  • Use a password manager

  • Auto provisioning/deprovisioning of user accounts