With increases in the number of people working remotely, it is important that we also take care. Awareness and preparedness are both vital.
Workers should be suspicious of emails from people they don't know -- especially if they ask to click on links or open files.
Phishing messages
try to create an impression of urgency in order to panic you into clicking on a link. Also watch for emails sent from people you do know, but they are asking for unusual things. If a request seems odd or suspicious -- so double check by phone.
Basic security advice for employees working from home includes
·
Verify secure wifi connection. Most wifi systems at home these days are correctly secured, but some older installations might not be.
·
Fully updated anti-virus system in place.
·
Up to date security software. Security tools such as privacy tools, add-ons for browsers etc need to be up to date.
·
Remember to back up periodically. All important files should be backed up regularly.
·
Lock your screen when not using your work computer.
·
Check if you have encryption tools installed and use a secure connection to your work environment.
Things employers can do:
·
Provide initial and then regular feedback to staff on how to react in case of problems. Who to call, hours of service, emergency procedures and how they may evolve.
·
Give suitable priority to the support of remote access solutions. Employers should provide at least authentication and secure session capabilities (essentially encryption).
·
Ensure adequate support in case of problems. This may require setting up special scheduling rotations for staff.
·
Define a clear procedure to follow in case of a security incident.
·
Consider restricting access to sensitive systems where it makes sense.