Security teams can butt heads with other IT groups for many reasons, including password policies and patch management. Security wants passwords that are uncrackable and systems admins don’t want to be caught in the middle implementing policies. Educating users on the importance of passwords, along with tips and tricks on creating a secure password, is by far the cheapest method. Multifactor authentication, if implemented properly and comprehensively, can reduce reliance on a single, complex password and make it more difficult to crack.”]
Source: https://www.darkreading.com/analytics/-i-tech-insight-i-finding-common-ground-for-security-it-teams