What data elements are required to assist a user in resetting their password which reduces the possibility that someone else is impersonating the real user?

Security Strategy & RoadmapIT Strategy & Roadmap
3.3k viewscircle icon2 Comments
Sort by:
CISO/CPO & Adjunct Law Professor in Finance (non-banking)2 years ago

Kknowledge. It is important to explain to the user the reason for the additional factor, and that information publicly available about them isn't good for security.

Senior Director Of Technology in Software2 years ago

1. Mobile or Email validation - Send OTP on Mobile or Email only.
2. Two factor Auth
3. Security questions 

Content you might like

What do you consider to be the biggest success factors for adopting AI-enabled security solutions?

Read More Comments

How do you feel about Google potentially acquiring Wiz?

Very positive 20%

Positive52%

Neutral21%

Negative7%

Very negative

View Results

Do you currently have dedicated employees for offensive security (red teaming, pentesting, etc)?

Yes, one dedicated employee19%

Yes, multiple dedicated employees43%

No, but offensive security is covered by one or more employees as part of their role24%

No — we don’t handle offensive security internally12%

Other/don’t know2%

View Results

How are you securing WeChat? WeChat is a must-have communication tool in China. Our customers want to exchange confidential data using WeChat. I would welcome any legal and technical analyses of WeChat use in B2B context.

Read More Comments

When external volatility makes ROI calculations more complex, how do you maintain executive confidence in IT investments?

Read More Comments