Social Media Account Security
In an effort to further protect Vanderbilt’s digital identity and online reputation, and to strengthen the security related to Vanderbilt social media accounts, Web Communications is recommending that social media account managers update the passwords for all accounts that your area is responsible for.
This initial recommended password change should ideally be completed prior to the beginning of the Fall 2016 semester.
The password to the social media profiles that you manage for Vanderbilt is the only protection available for these accounts that allow immediate communication with prospective and current students, faculty, alumni, parents, and community members. Protecting the security of these accounts is a very important part of ensuring they are not overtaken for malicious purposes.
To increase security, we are recommending changing social media passwords at the beginning of each semester.
- All passwords should be reasonably complex and difficult for unauthorized people to guess.
- Employees should choose passwords that are at least eight characters long and contain a combination of upper- and lower-case letters, numbers, and punctuation marks and other special characters such as !@#$%^&,*).
- Do not include words related to your department.
- A password should be unique, with meaning only to the employee who chooses it. That means dictionary words, common phrases and even names should be avoided. One recommended method to choosing a strong password that is still easy to remember: Pick a phrase, take its initials and replace some of those letters with numbers and other characters and mix up the capitalization. For example, the phrase “This may be one way to remember” can become “TmB0WTr!”.
- Do not re-use passwords you have used previously.
- If someone who has access to the account leaves Vanderbilt, passwords should be changed immediately.
- If an account is managed by a single individual who leaves Vanderbilt, be sure that the account is transferred to someone else before their departure, and then change all passwords.
- Passwords should not be shared via email. When possible, share the password verbally with shared account managers. If this is not possible, you can share the file securely using VUIT’s secure file transfer website.
- The email address associated with the account should be a Vanderbilt email account.
Platform Specific Additional Security Options
- Twitter login verification
- Facebook login approvals
- Snapchat login verification
- LinkedIn two-step authentication
If you have any questions, please contact the Web Communications Help Desk at http://web.vanderbilt.edu/help.