Need the opposite costume, the overly eager sys admin.

• wants to force password changes once a month for security
• constantly changing security policies to reflect the flavor of the month
• constantly sends out phishing emails tests, wonders why no one replies to any of his emails

Clicks on everything or is too scared to click on anything and never learns how to use the software

Password expiration is no longer considered a best practice. FYI.