Ensure IAM user password is rotated every 90 days or less

It is recommended that passwords be regularly rotated. If your AWS account does have a password policy that requires password rotation, ensure that the IAM user passwords are changed according to the current password policy. Rotating passwords will reduce the window of opportunity for a password that is associated with a compromised or terminated account to be used. passwords should be rotated to ensure that data cannot be accessed with an old password which might have been lost, cracked, or stolen.