I was in charge of password policy for a healthcare app. We tried to use phrases, often cited as more secure than character/length requirements.
The doctors hated it. They didn't understand what a phrase was, it was too different from every other system they interacted with, and it was extra cog load in their already busy days.
> it was too different from every other system they interacted with
Translation: they couldn't use the same standard password they use for their banking, their email (also used for 2fa), Facebook, and this porn site they found by clicking on a pop-up ad.
Why not just have a length requirement and recommend a phrase? “Passphrase” isn’t that common a word, so it merits an explanation. But “your password has to be long, but you don’t need to use special characters, and can use regular english word if you want” is surely easy enough to understand.
Agree that you are likely the suffer invisible discrimination, but consider using this as a filter. Companies that know ahead of time and proceed with an interview might just be a better place for you to work.
Hello, HN. Afoundria is hiring a Front-End Developer in Austin, Texas. Afoundria is a healthcare startup headquartered in Austin, Texas with three product lines:
Emergency department nurse and physician charting, post-acute charting and transition of care,
data services (mostly moving large blocks of HL7 data from one party to another)
We have offices in Austin and Dallas and the usual startup perks like daily ping-pong; bowling, roller skating, and TopGolf outings; and a fridge full of beer. Many of us have worked together 10-15 years or longer because we get a kick out of solving healthcare problems for our users.
We don't ask trick interview questions or ask you to solve ridiculous puzzles. If you can get along well with a team and write solid code, we'd love to talk to you. Also, we value diversity. Everyone is encouraged to apply if you meet the requirements.
Technology Stack:
CentOS/Apache/MySQL/Tomcat, Groovy/Grails web framework, HTML/CSS/JS front end <-0-0-0-0-0 This is you
We often have personal relationships with our users because we -like- to do business that way, but also it's the only way to really find out what they need, and then turn that knowledge into useful features. You will have a lot of autonomy to come up with new ideas and design/develop them, and the code you write will go into production immediately.
Summary:
Front-end developer located in Austin, proficient in "the way" of Javascript, good enough at HTML and CSS to create fully functional layouts from mockups, immediate start date, salary range is $85k-$100k/year
Submit resume and anything else of interest to jobs@afoundria.com. We'd love to see your GitHub, HN, or Reddit profile, etc.
Would be interested to hear the outcome. The letter to the client is snarky:
"I’ve only been running companies for 3 years now so I don’t have nearly the experience as <redacted>, but it’s been my experience that when spending money generates more than the spend, it’s always a good idea to continue and even increase that action."
I would have briefly summarized the return on the client's money in bulleted form and omitted nearly everything else. Have you actually measured or estimated the ROI based on the improvements you stated?
Of course the letter is snarky. They cancelled a long standing contract with very little notice, no explanation and made it quite clear the decision was final. I avoid feet kissing is such situations ;-)
The doctors hated it. They didn't understand what a phrase was, it was too different from every other system they interacted with, and it was extra cog load in their already busy days.