Understanding Our Password Policy
We're Gleneagles JPMC, and as part of the IHH Healthcare network, we are committed to upholding the highest standards in IT security and governance. Our practices and policies are in alignment with the group-level IT policies set by IHH Healthcare, ensuring a cohesive and secure approach across all our operations. This Password Policy reflects our dedication to maintaining robust security measures tailored to meet the overarching guidelines of IHH Healthcare and the specific needs of our environment at Gleneagles JPMC. Understanding and adhering to these policies is essential for safeguarding our systems and data.
Summary of Our Password Policy
1. Password Creation:
- User Accounts: At least 8 characters.
- Service Accounts: At least 16 characters.
- Privileged Accounts: Either an 8-character password with a second factor like SMS or biometrics or a 16-character password.
2. Password Complexity:
- Must include both upper and lower-case letters.
- At least one number (0-9).
- Should be different from your user ID.
- Use of special characters (e.g., $, #, @) is recommended.
3. Initial and Default Passwords:
- Change your initial password after the first successful login.
- Avoid using default passwords for administrative accounts.
4. Avoid Common Password Pitfalls:
- Don’t use passwords with less than eight characters.
- Avoid dictionary words, personal information, or obvious number patterns.
- Never use passwords like “Password123” or “Welcome123”.
5. Password Changes:
- Regularly change your passwords:
- Every 90 days for user accounts.
- Every 60 days for privileged accounts.
- Service accounts have exempted (non-expiring) passwords.
6. Password Protection:
- Do not share your passwords with anyone.
- Never write down passwords or store them without encryption.
- Do not use the "Remember Password" feature in applications.
7. Additional Security Measures:
- Use different passwords for personal and work systems.
- Implement multi-factor authentication where possible.
- Avoid repeating the same passwords for different systems.
8. What to Do if Your Password is Compromised:
- Immediately report to the IT helpdesk.
- Change all your passwords.
Remember: Secure passwords are not just an individual responsibility but a vital part of our collective security at Gleneagles JPMC, in line with IHH Healthcare's standards. Your diligence in following these guidelines helps protect your data and the integrity of our entire organization.