Security is the responsibility of all users in your organisation. Teach staff to ‘lock’ their computers when not in use, so that other users cannot access them if they are not there. Alert your staff about the threat posed by social engineering – a process scammers use to manipulate an unsuspecting person into divulging sensitive details such as security codes or confidential information. Lock computers to prevent people from accessing them while they are in use. Use strong passwords for your user accounts and never write their passwords down.”]
Source: https://www.csa.gov.sg/gosafeonline/go-safe-for-business/smes/security-is-everybodys-responsibility