Secure Password Change

I am a computer systems analyst for a medium size organization. When our users get locked out of their system or can’t remember their password, we change it over the phone. We are looking for a more secure way to do this. Any suggestions?