In our current “Information Age,” businesses and individuals have developed a vast dependency on the Internet for efficient access to personal and business information. However, with the ever-present threat of unauthorized access to data, it is imperative that all companies and individuals develop best practices to safeguard their data and to limit their exposure to potential financial loss.
ExponentHR wants to assist our clients in this regard (1) by encouraging your organization to utilize the features available in the Password Management utility to require your employees to employ strong password practices, and (2) by providing additional website security features in ExponentHR that will further enhance your overall efforts to secure your data. More details are provided for each of these features in the links below.
While most of these features are provided to you as “optional” security measures, ExponentHR recommends implementation of each of these features in a comprehensive effort to establish a “best practices” environment to guard your data from unauthorized access or misuse. The consequences of unauthorized access to Personally Identifiable Information and the potential misuse of financial data must be weighed by you in determining whether such features should be activated for your organization.
Available Features to Better Protect Your Company and Employees:
Implement Strong Password Requirements
Force Employees to Create New Password on a Scheduled Basis
Utilize Secondary Authentication Requirements
Administering Management Site PIN Requirements
Set Lockout Thresholds for Invalid Login Attempts
Set Timeout Thresholds for Inactive Website Sessions
Designate Locations (IP Addresses) where Managers can Access Management Site
Additional Features to Manage Employee Login Credentials and Site Restrictions:
Resetting a User's Password Duration
Unlocking a User's Login Credentials
Clearing a User's Login Credentials
Deleting a User's Password History
Deleting a User's Recognized Device History
Resetting a User's One-Time Passcode Enrollment Deadline
Designate Locations (IP Addresses) where Employees can Report Time