diff --git a/RuleDocumentation/AvoidUsingConvertToSecureStringWithPlainText.md b/RuleDocumentation/AvoidUsingConvertToSecureStringWithPlainText.md
index af41498ee..e6af00af1 100644
--- a/RuleDocumentation/AvoidUsingConvertToSecureStringWithPlainText.md
+++ b/RuleDocumentation/AvoidUsingConvertToSecureStringWithPlainText.md
@@ -10,6 +10,10 @@ The use of the `AsPlainText` parameter with the `ConvertTo-SecureString` command
 
 Use a standard encrypted variable to perform any SecureString conversions.
 
+## Recommendations
+
+If you do need an ability to retrieve the password from somewhere without prompting the user, consider using Windows Credential Store as used in the BetterCredentials module ( https://www.powershellgallery.com/packages/BetterCredentials/4.4/Content/BetterCredentials.psm1). If that does not work, consider using Azure KeyVault (https://azure.microsoft.com/en-us/services/key-vault/) or AWS KMS (https://aws.amazon.com/kms/).
+
 ## Example
 
 ### Wrong