During an on-site security assessment, you observe that employees are working in an open-plan office area. The organization has recently faced issues with unauthorized access to sensitive information. Which of the following practices should be recommended to mitigate the risk of sensitive information being acquired by shoulder surfing?
Promoting a culture of using secure lock screens when stepping away
Requiring biometric authentication for device logins
Implementing privacy filters on monitors
Enforcing a clean desk policy at the end of each day