- 26 Oct
Access and Data of Your Remote Workers – Is It Secure?
Providing safe and effective protection for remote workers is not a new topic. But today, more than ever, this is a key priority of all IT Departments, large or small. The responsibility of keeping networks and data safe considering the exponential growth in remote workers is an onerous task. IT security teams need to be rigid when assessing and deploying tools and processes protect both the company’s interest as well as the remote worker’s productivity. These tools must rapidly evaluate, protect, manage, and optimize the way data is received, processed, and shared during a time when teams are encouraged (if not urged) to collaborate and remain productive while working remotely.
So, what are some quick wins for your company when it comes to remote worker cybersecurity? Below are our “3-2-1 tips, suggestions, and offer” that we have used while helping our clients protect their networks and data successfully and effectively.
3 Quick and Easy TIPS…
One…Enforce your password policies and educate users on the importance of keeping company passwords separate from often reused personal passwords. Also, if your company is configured with cloud services and has the capability to require two-factor authentication, turn it on!
Two…Use your device management tools to regularly push security patches and updates to your remote workers. These could be operating system patches, pattern file updates for anti-virus, rule updates for endpoint protection agents, etc. Encourage your associates to manually check for these patches on a weekly basis. Include a patch management “hot topic” section in the routine communications you share with your associates. Just get the word out that these are not voluntary but required and they protect the company as well as the equipment and data on the end user’s PC.
Three…Establish a hotline or other contact method to allow remote workers to contact you quickly the moment they suspect their PC has been compromised by nefarious emails, texts, or websites. Being able to isolate the infected user quickly will reduce the spread in terms of time and reach.
2 High-Value SUGGESTIONS…
One…Start an aggressive phishing/scam email prevention education program. To begin with, let associates know in advance that you will be “testing their awareness” with fact messages. Include tips and tricks to help spot phishing scams with the announcement. If deployed successfully, over time, the program will be engrained in the culture of your company and you should expect a significant reduction in compromised PCs and accounts.
Two…Complete an audit of your VPN and Firewall systems. Remove outdated firewall rules, open proxy policies, etc. Often, legacy software with firewall and proxy requirements get decommissioned, but the rules and bypasses remain. This is especially important if there has been turnover within your technical staff who were responsible for managing these services.
1 Can’t Lose OFFER…
One…When in doubt, leave it to the pros. If you have a fully staffed IT security department, have them provide suggestions and lead discussions with management to help explain the risks your company could be facing. Encourage involvement within all business units, support training programs, and lead by example.
If you don’t have staff with Cybersecurity Subject Matter Experts, call or email JETT (678-387-5717 or [email protected]) to schedule a FREE phone consultation. Our team of experts will craft and execute a security plan that aligns with your business needs and respects your budget requirements.
About the Author