During an on-site security assessment, you observe that employees are working in an open-plan office area. The organization has recently faced issues with unauthorized access to sensitive information. Which of the following practices should be recommended to mitigate the risk of sensitive information being acquired by shoulder surfing?
Enforcing a clean desk policy at the end of each day
Requiring biometric authentication for device logins
Promoting a culture of using secure lock screens when stepping away
Implementing privacy filters on monitors