Password Reset Policy

~~When~~Policy Name: Password Reset Authorization Policy
Effective Date: 15th Oct 2024
Policy Owner: ICT Unit
Version: 1.0

1. Purpose

This policy establishes a ~~user~~clear and secure process for handling password reset requests to protect organizational resources and sensitive information. It ensures that any request for a password reset ~~from~~is verified through a user's direct supervisor before action is taken.

2. Scope

This policy applies to all employees and contractors using the organization's IT systems, including all ICT personnel who handle password reset requests.

3. Policy Statement

To maintain security and ensure accountability, the ICT team ~~via~~will ~~call,~~not ~~confirmation~~process ~~must~~any bepassword ~~requested~~reset ~~from~~requests unless authorization has been provided by the user's direct supervisor. This ~~confirmation~~ensures ~~request~~that isonly invalid requests are fulfilled.

4. Procedure Overview

Users requesting password resets must do so by contacting the ~~form~~ICT ofteam via the Service Desk.

The ICT team will generate a confirmation ticket ~~via servicedesk~~ to the ~~email~~direct supervisor of the ~~direct~~user ~~supervisor.~~requesting ~~Upon~~the reset.

Only upon receipt of confirmation from the supervisor will the password reset be executed.

5. Responsibilities

ICT Team: Ensures compliance with this policy and processes password reset requests only upon receiving avalid confirmation.

~~successful~~Supervisors: Verify and approve legitimate password reset requests.

Employees~~confirmation,~~: Request password resets through the ~~request~~proper ischannels ~~processed.~~and follow organizational guidelines.

6. Non-compliance

Failure to follow this policy may result in delayed response times or denial of password reset requests. Repeated violations may be subject to further review.

7. Review

This policy will be reviewed annually or as needed to accommodate changes in technology or security requirements.