Keep your username and password protected.
Always use a complex and strong password.
Change your password as required by policy or sooner if suspect it has been compromised
Be careful when opening attachments or documents from people you don't know.
Report anything suspicious to your manager and IS Security
Use multi-factor authentication (MFA) whenever possible to provide an additional layer of security.