You are the Information Security Director for a medium-sized company. You recently experienced a ransomware attack that cost the company $500,000.00. After the attack, your CEO held a meeting and info

You are the Information Security Director for a medium-sized company. You recently experienced a ransomware attack that cost the company $500,000.00. After the attack, your CEO held a meeting and informed you and the other IT professionals that it “WILL” not happen again. Write a Directive to the company's employees summarizing the requirement for all personnel to adopt the new 2-factor authentication for IT equipment access. Include a 30-day timeline to adopt the new policy and the consequences of not adhering to it. Instructions:

•    Write a 400-500 word policy using APA format.•    Your essay should include an introductory paragraph and a conclusion.•    Follow APA format for structure. An APA template is attached here. Conduct research associated with 2-factor authentication and, at a minimum, cite 3 credible references beyond the course materials. Please note that Wikipedia, Investopedia, and similar websites are not credible academic references.