What is the problem?
1) People will write down passwords if they are too complex.
2) Hackers have great tools to get uninformed people to give up their passwords unintentionally.
3) Even the best passwords can be hacked.
What are the solutions?
1) Stop forcing passwords expirations and replace with a password manager (LastPass, Keeper Security, etc.).
2) Turn on Multi-Factor Authentication (MFA) on all services.
3) Setup Single Sign-On (SSO)
4) Use bio recognition as a factor for MFA (Finger Print Reader, Facial Recognition, etc.)
Get the security add-on
Enterprise Mobility and Security (EMS). EMS can protect Office 365, G Suite and traditional on-premise Windows Server solutions (RDS and File Sharing). Bundled in you get not only the feature above but Mobile Device Management, Managed Antivirus, email and file encryption, and many other security solutions. You can do some truly amazing things with EMS like firewall corporate data from personal data on BYOD devices.
Get fingerprint readers for mobile devices. USB fingerprint readers are available for under $50. There are even Bluetooth fingerprint readers available that can protect not only computers but corporate data on mobile devices (phone and tablets) when used in conjunction with EMS.
Of course, General Networks Corporation (GNC) is here to help with engineers trained on deployment of multiple security tools and training options.