The best policy is to use Two Factor authentication and not rely just on a password. But alas human kind has no time for that, so here is a simple but rock solid advice on how to choose the password.
Through 20+ years of effort, everyone is successfully trained to use passwords that are hard for humans to remember and easy for computers to guess.
(hint: advice is in the cartoon bellow)
[Source]