In our continuous improvement efforts around cybersecurity, we have launched a new Information Security Bot - "CP Info Security Bot", to help drive real-time behavior change.
If the Bot detects an insecure activity being performed by an employee, the Bot will provide an immediate notification.
For example: It will give you a "Heads Up" that you are using the same password for the site that you have just accessed and also in your Okta account.
It will give you 3 options - to change your password at that moment or to change it later or to confirm that it's a mistake.
See the following deck which highlights the full details:
CP Info Security Bot Powered by Savvy
Change to user experience: Okta password expiration when reused -
- The Savvy playbook is updated to take action on the users' account when the user is reusing the Okta password on multiple websites.
- When someone logs into Okta and Savvy detects that their password has been reused elsewhere, it sends a command to Okta to expire their password. Savvy also pop up and inform the users of that action.
- As part of this automation, as email is also sent out to the user with subject line "Okta Password Reset due to Reuse".
- This is also mentioned in the document on slide no. 8.
