This is an automated archive.
The original was posted on /r/cybersecurity by /u/Canadutchian on 2023-08-15 16:58:29+00:00.
Hello everyone! I’m looking for thoughts and input on best practices to securely store credential information for my IT needs. As a bit of background, I’m the IT (a department of 1) for a company and for a long time I’ve managed to ‘make do’ with storing and securing my credential info. Usernames, passwords, MFA info, security questions, etc.
Past practice was that my predecessor kept a Word document on the fileserver. Of course that’s hidden away behind logins and permissions, but this style of data storage gives me the heebie jeebies.
So I figure; “lets talk to some more experienced people!”
What do you suggest is the best way to store all that data, keeping in mind the following points:
It needs to be shareable (for if we ever get a second IT staff, or if I’m on vacation and my boss requires access There is an “IT cellphone” for MFA purposes It needs to be secure. I can’t lay awake at night wondering if someone’s going to steal my Word document
Of course I could grab something like a password vault, but are the better or more secure options available?
Thanks in advance!