In the digital world we live in, cybersecurity is an important topic. We do everything we can to make the Spend Cloud as secure as possible. But we also need your help with this.
What can I do to improve my own cybersecurity?
Create as long a password as possible for your Spend Cloud account, at least 15 characters. To make this password easy to remember, you can make it into a sentence. It does not matter whether it contains special characters or numbers, as long as the password is long.
To remember a long password, you can use a free password manager, such as Bitwarden. Then you can generate a unique and difficult-to-hack password for each account, without having to remember it all yourself. The password manager does that for you.
Do you want to ensure that your users no longer have to enter a password at all? We can arrange that too. You can do this with Single Sign On. Would you like to know more about this? Then contact your account manager for more information.
Inform your employees about the dangers of phishing, vishing and smishing. An accident is in a small corner. You can read exactly how important we consider cybersecurity in this blog.
Spend Cloud Guidelines
If you have administrator rights, you can edit the password settings of your Spend Cloud environment. You do this in the config settings section. Based on the latest legislation and security advice, we have activated a number of settings by default for your Spend Cloud environment. Here, you can view the settings, modify them if needed, and take a screenshot to provide to your accountant. Below, we explain the different settings and our recommendations.
090 - Requesting a Password
If this setting is enabled, users can request a new password, which will be sent to them via email.
Recommendation: Always keep this setting enabled so users can retrieve a new password when logging in for the first time or if they forget their current password.
007 - Changing Passwords
If this setting is enabled, users can change their password in their profile settings.
Recommendation: Always keep this setting enabled so users can change their password at any time.
008 - Changing Password After First Login
With this setting, users must change their password immediately after their first login.
Recommendation: Always keep this setting enabled so users create their own password instead of continuing to use a temporary, weak password.
010 - Minimum Password Length
This setting defines the minimum number of characters a password must have.
Recommendation: Require at least fifteen characters for passwords. The longer the password, the harder it is to guess.
009, 244, 245, 246 - Password Complexity Requirements
When enabled, passwords must include letters (at least one uppercase), numbers, and special characters. Additionally, users cannot include their first name, last name, or username in their password.
Recommendation: These settings are optional as long as the minimum password length is set to fifteen characters.
011 & 012 - Password Expiration
Here, you can specify whether users must change their password after a certain period.
Recommendation: Require users to change their password at least every 180 days.
167 - Incorrect Password Attempts
This setting determines how many times users can enter an incorrect password before being temporarily locked out.
Recommendation: Allow a maximum of five attempts before locking the account temporarily. This prevents unlimited login attempts with incorrect passwords.
176 - Reusing Old Passwords
This setting determines how many password changes must occur before a user can reuse an old password.
Recommendation: Prevent users from reusing a password for at least five changes—but the higher the number, the better.