• DaGeek247@fedia.io
          link
          fedilink
          arrow-up
          1
          arrow-down
          2
          ·
          9 天前

          Not gonna get specific, but, I have access to a shitload of sensitive personal data. It’s more likely you ran into an agency policy rather than a federal policy.

            • DaGeek247@fedia.io
              link
              fedilink
              arrow-up
              1
              arrow-down
              2
              ·
              9 天前

              Yeah. My agency doesn’t use clearance level to determine security requirements. It’s likely your password manager policy is agency-specific.

    • naticus@lemmy.world
      link
      fedilink
      English
      arrow-up
      20
      ·
      10 天前

      Yeah idk about that. I’ve worked in state govt for a very long time and our cybersecurity controls essentially mandates we use one. I’m also in our security audit team and have to talk to state offices about our NIST controls regularly. And the NIST DOD controls are even more stringent than ours. Something sounds off.

    • bdonvr@thelemmy.club
      link
      fedilink
      arrow-up
      4
      arrow-down
      2
      ·
      10 天前

      Okay so remember the one or two ones you need there (try a passphrase!)

      For everything else - password manager.

    • renegadespork@lemmy.jelliefrontier.net
      link
      fedilink
      English
      arrow-up
      1
      ·
      edit-2
      9 天前

      I literally work for a state government and I use password managers for both work and personal.

      EDIT: For clarity, the data is hosted on-prem. I don’t send govt credentials to the cloud like a moron.