Nynke Damstra
Nynke is a technical information security officer at Mediahuis with 7 years of experience in information security, including 5 years with Mediahuis. Nynke has been focused on both technical security implementation and security awareness during her time at Mediahuis.
Session
Have you ever encountered some hashes in a pen-test, cracked them only to find the results to be anywhere from “not great” to “downright depressing”? We have, and it encouraged us to implement monthly password cracking cycles. We use the results as a driving force to change behaviour around password usage. This talk will not be a technical deep dive on password cracking; rather, it will focus on how to use the results to get people to change their password behaviour. I will share the approaches we tried at Mediahuis: why quite a few didn’t work, which approaches did work, and some of the obstacles we’ve encountered along the way.