- Define approved hardware, software and cloud-based products allowed to be utilized by employees. Security and system usage policies should be defined, documented, distributed and trained upon. These policies should usage restrictions of company owned assets and define security requirements of personal mobile devices, laptops, etc.
- Define wireless home network (wifi) security requirements and publish “How To” guides:
-
- Change the default administrator password to a unique strong password,
- Create a different strong password for users,
- Restrict access to people you trust (family members you want on your network) and
- Set-up a guest network for guests and accounts that don’t need access to your primary network (i.e. TVs).
- Prohibit the use of company issued devices by anybody other than the employee of issue. If you leave your device, even for a moment, save your work and lock your device to ensure privacy and security. Press Windows logo key + L, or Control + Command + Q on a Mac, to quickly lock your screen. When you return, sign-in, and everything you had been working on will still be open.
- Ensure all files are stored within your organization’s cloud/environment. Regardless of your organization’s size, all files should be stored in a secure cloud environment (e.g. OneDrive, Google Drive, iCloud) and policies should dictate files not be saved locally or elsewhere. Be sure to configure the following security if it’s not already enabled:
-
- Multi-factor authentication
- File restoration features
- Version control
- Only cloud storage services verified for use by your security team should be utilized.
5. Define security requirements:
-
- Avoid Public Wifi: Policies should be implemented to require the use of a VPN when utilizing public wifi. Public wifi creates a significant security risk, as data is typically transmitted unencrypted and thus can be viewed by interested observers on the network.
- A VPN (or Virtual Private Network) is a service that allows you to connect to the internet by the means of an encrypted and secure tunnel. This way, all your traffic stays private and anonymous. Bitdefender VPN secures your online activity so that you remain protected each time you connect to unsecured wireless networks while in airports, malls, cafés, or hotels. This way, unfortunate situations such as theft of personal data, or attempts to make your device’s IP address accessible to hackers can be avoided. Restricted content can be accessed as well, no matter the country that practices internet censorship. It’s a good idea to use a VPN even at home.
- Multi-Factor Authentication (MFA or 2FA): Where-ever possible, organizations should require MFA to access company and/or cloud-based resources. Software such as Office 365 can (and should) be configured to require MFA when accessed from outside the corporate office.
- Password and an authenticator code.
- Password and finger scanner
- Encryption: Implement a policy that requires employees working from home to enable encryption.
- Use Wi-fi encrypted with WPA2. Note: All home routers support encryption.
- Encrypt local drives (e.g. laptop hard drive) with BitLocker or a similar tool. Many devices come with BitLocker already installed; just ensure it’s enabled.
While this is not a comprehensive list, it should give you a great start. If you are interested in earning continued professional education hours while learning more, the following webinar is available: https://www.illumeo.com/courses/securely-working-home
