What data elements are required to assist a user in resetting their password which reduces the possibility that someone else is impersonating the real user?

IT Strategy & RoadmapSecurity
3.3k viewscircle icon2 Comments
Sort by:
CISO/CPO & Adjunct Law Professor in Finance (non-banking)2 years ago

Kknowledge. It is important to explain to the user the reason for the additional factor, and that information publicly available about them isn't good for security.

Senior Director Of Technology in Software2 years ago

1. Mobile or Email validation - Send OTP on Mobile or Email only.
2. Two factor Auth
3. Security questions 

Content you might like

When updating your board on current measures for cybersecurity and compliance, have you found there is more or less focus on compliance compared to last year?

Much more23%

More50%

Neither (same level of focus on compliance)24%

Less1%

Much less

View Results

I'm looking to go for the Certified CISO certification & training as I'm an aspiring CISO. Any recommendations and additional certifications that I should be doing along with that? I already have CISSP. 

Read More Comments

Does your IT team or your HR team absorb the costs of HR technology?

Read More Comments

AI deepfakes have cost the industry over $200M this year. As CISOs, can we scale detection fast enough, or is regulatory pressure the only way to drive adoption?

Read More Comments

Do you think your data security budget will likely increase or decrease within the next year?

Significant increase

Moderate increase60%

Minor increase20%

Neither – budget will likely be the same20%

Minor decrease

Moderate decrease

Significant decrease

Unsure for now

View Results