In a world that’s built on technology, nothing is more important than security. Your small actions make a big difference for your security, both at home and at Johnson & Wales.
October is National Cybersecurity Awareness Month!
As part of our ongoing commitment to protect the security and integrity of our systems and data, we have implemented a new password change policy. Effective immediately, all JWU email and network accounts will require password changes every 90 days. We are making this change retro-active to the July password reset, meaning many passwords must be changed in the next 5 days.
-
Why is this important?
Cyber threats are constantly evolving, and strong password management is a key defense in protecting against unauthorized access to our systems. Regular password changes help mitigate the risk of breaches caused by compromised credentials, ensuring that our information remains secure. While we already use Multifactor Authentication (MFA) as an additional security layer, regularly updating your password adds another critical layer of protection.
- Best Practices for Password Security
To help you adapt to this policy, we recommend using the following best practices:
- Use Strong, Unique Passwords: Passwords should include a mix of letters, numbers, and special characters. Avoid using common words or easily guessable combinations.
- Never re-use your JWU email and password for other logins: Always use unique passwords for each account you use. If one account is compromised in a data breach, attackers can use the same username and password to gain access to other accounts, a technique known as credential stuffing.
- Utilize Password Manager Tools: Consider using a password manager to generate and securely store complex passwords for your accounts. If you prefer, most web browsers also offer features to save and manage your passwords securely.
- Never Share your Password: Your account password should never be shared with anyone, including IT personnel. No one in the institution will ever ask for your password, so if someone requests it, please report it immediately.
- Never Share MFA Codes: Just like your password, your MFA code is a unique security feature that should never be shared with anyone, including IT personnel. No one from JWU will ever ask for your MFA code, so if someone requests it, please report it immediately.
Additional information can be found here
- Next Steps ?
Employees and Students should change their passwords this week. Employees will receive desktop notifications when your password is nearing expiration, and students will see notices when logging into email. Instructions on how to change your password can be found here. Remember to update all your devices will your new password!
We appreciate your co-operation and dedication to maintaining our cyber security. If you have any questions or need assistance with password management, please feel free to reach out to the IT Service Desk.
Always remember! If you have any doubts about an email forward it to phishing@jwu.edu and our team can investigate the email.
Information
The Office of Information Security Services (ISS) aims to facilitate and further the Mission and Guiding Principles of the University while maximizing the confidentiality, integrity, and availability of the JWU’s distributed information technology assets, systems, networks, and data.
Be aware... Click it with care |
Care to be aware! |
Report an Incident |
||
|
Don’t be Quick to Click…beware of the emails that intend to steal your valuable information |
Looking for resources to help |
Feel there’s something odd in the email or your account? Please report the incident and our team of experts will take a look at it for you. |
||