# Ocrolus guards against credential theft and password reuse with Bitwarden password management Ocrolus builds a successful security program with Bitwarden Password Manager. --- Many businesses employ two-factor authentication (2FA) or single sign-on (SSO), but may not offer their employees a business password management solution. Findings from the [2023 Bitwarden World Password Day Survey](https://bitwarden.com/it-it/resources/world-password-day/) support this: only 23% of respondents said they were required to use a password manager in the workplace.  According to Julian Cohen, VP of Security and Chief Information Security Officer (CISO) at [Ocrolus](https://www.ocrolus.com/), a New York-based document automation software provider, more businesses should consider deploying password managers. In the case of Ocrolus, the company opted to deploy Bitwarden. Says Cohen, “With credential theft and password reuse being used for account takeover and quickly becoming one of the most commonly used attacks against organizations, we put together a comprehensive plan for account security that of course includes things like [2FA](https://bitwarden.com/it-it/blog/top-10-burning-questions-on-2fa/), [SSO](https://bitwarden.com/it-it/blog/enterprise-passwordless-sso-brings-better-productivity-and-user-sign-in/), and compromised credentials monitoring. But for users’ main SSO accounts or for systems that don’t support SSO or 2FA or other shadow IT systems, or just one-off accounts…the most effective control is a password manager.” Cohen advises employees to use a [unique and random password](https://bitwarden.com/it-it/blog/how-long-should-my-password-be/) for each account. He believes the easiest way to do so is to leverage one generated by a password manager. As password managers also store the passwords, he considers the technology to be a “low friction” and effective way to keep passwords secure.  Other findings from the [World Password Day Survey](https://bitwarden.com/it-it/resources/world-password-day/) lend credence to this notion. The vast majority, 85%, of global respondents reuse passwords across multiple sites and 58% rely on memory for their passwords. One-fifth (20%) of global respondents report being affected by a data breach in the past 18 months. While being caught up in a data breach may not be preventable, they tend to have a ripple effect for those who reuse their passwords. Getting people to adopt new tools, especially those for security, helps keep companies protected and secure. On the flip side, it also requires extra steps from IT and users. Ocrolus relied on the [Bitwarden SCIM (System for cross-domain identity management)](https://bitwarden.com/it-it/help/about-scim/) to automatically provision members and groups. It also provides training and documentation for users on how to use Bitwarden and explains to users why it is effective.  “We get a lot of support from our techops team at Ocrolus,” says Cohen. “They provide technical support for Bitwarden, use it themselves, and when provisioning new accounts and storing shared credentials.” In considering how Ocrolus has built a successful security program - a program that now includes Bitwarden - Cohen believes the company has benefited by having a good inventory and situational awareness of where things are, understanding the riskiest parts of the organization, and focusing on prioritization. “You can always engineer yourself to death in trying to secure something or try to implement every kind of tool,” says Cohen. “What I always do is start with my adversaries. If we can understand who our adversaries are, how they plan and operate, what their goals and motivations are, and what their resources and constraints are, we’ll be able to understand what our adversaries are likely to see and how they plan and operate.” In doing this, believes Cohen, companies can better understand what types of attacks they are likely to see so they can use that information to determine the best security tools to implement. In many instances, that toolset likely includes a password management solution. ## Table of Contents [Watch the interview](https://bitwarden.com/it-it/resources/ocrolus-guards-against-credential-theft-and-password-reuse-with-bitwarden/#watch-the-full-interview/) [Get started with Bitwarden](https://bitwarden.com/it-it/resources/ocrolus-guards-against-credential-theft-and-password-reuse-with-bitwarden/#get-started-with-bitwarden/) Learn more about the annual [Open Source Security Summit](https://bitwarden.com/it-it/open-source-security-summit/). ## Watch the full interview! [![YouTube Video](https://img.youtube.com/vi/cGyKYiVI0FM/maxresdefault.jpg)](https://www.youtube.com/watch?v=cGyKYiVI0FM) *[Watch on YouTube](https://www.youtube.com/watch?v=cGyKYiVI0FM)* > Visit [opensourcesecuritysummit.com](https://bitwarden.com/it-it/open-source-security-summit/) to learn more about this annual conference. ## Get started with Bitwarden Ready to try out Bitwarden for your business? Start a [7-day business trial](https://bitwarden.com/it-it/pricing/business/) today to keep your team and company colleagues protected online. ## Ottieni subito una sicurezza per le password potente e affidabile. Scegli il tuo piano. ## Personale ### Hai appena iniziato? *Ottieni una gestione di base delle password oggi stesso. Sempre gratis.* [Crea un account gratuito](https://bitwarden.com/go/start-free/) --- ### Premium **$1.65** *al mese* *Con fatturazione annuale a 19,80 USD* Scopri le funzionalità premium - Autenticatore integrato - Allegati file - Accesso di emergenza - Blocco del phishing - Report di sicurezza e altro Condividi gli elementi della cassaforte con un altro utente [Crea un account Premium](https://bitwarden.com/go/start-premium/) --- ### Famiglie **$3.99** *al mese* *Fino a 6 utenti, con fatturazione annuale a 47,88 USD* Proteggi gli accessi della tua famiglia - 6 account premium - Condivisione illimitata - Raccolte illimitate - Spazio di archiviazione dell’organizzazione Condividi gli elementi della cassaforte tra sei persone [Inizia la prova gratuita per Famiglie](https://bitwarden.com/go/start-families-trial/) --- Prezzi indicati in USD e basati su un abbonamento annuale. Tasse escluse. ## Business ### Teams *Per team e aziende in crescita che devono muoversi rapidamente.* **$4** *al mese / per utente, con fatturazione annuale* **Nessun compromesso** Tutte le funzionalità Premium, più funzionalità avanzate come: - Condividi le credenziali in modo sicuro - Controlla le attività con i log eventi - Sincronizza la directory esistente - Automatizza il provisioning con SCIM [Avvia la prova gratuita](https://bitwarden.com/go/start-teams-trial/) --- ### Enterprise *Per aziende che necessitano di protezione e controllo avanzati.* **$6** *al mese / per utente, con fatturazione annuale* **Massima protezione** Tutte le funzionalità Premium e Teams, più funzionalità di livello enterprise come: - Controllo granulare degli accessi - Integrazione SSO senza password - Recupero account semplificato - Flessibilità di self-hosting - Mitigazione dei rischi con Access Intelligence [novità] - Piano Families gratuito per tutti gli utenti [Avvia la prova gratuita](https://bitwarden.com/go/start-enterprise-trial/) --- ### Parla con il team vendite *Per le grandi organizzazioni, parla con un esperto di un piano su misura e scopri come Bitwarden può:* *al mese* - Ridurre il rischio di cybersecurity - Aumentare la produttività - Integrarsi perfettamente Bitwarden si adatta ad aziende di qualsiasi dimensione per portare la sicurezza delle password nella tua organizzazione [Parla con il team vendite](https://bitwarden.com/talk-to-sales) --- Prezzi indicati in USD e basati su un abbonamento annuale. Tasse escluse.