That password change policy is against NIST guidelines as it leads to passwords that are easier to remember and as such easier to crack.
https://www.isaca.org/resources/isaca-journal/issues/2019/volume-1/nists-new-password-rule-book-updated-guidelines-offer-benefits-and-risk