Innovative Penetration Testing Services - Lean Security

View Original

Secure Setup for Remote Working

The current COVID-19 outbreak has forced people around the globe to work from home. It has led millions of workers to sign into their work networks via cloud-based apps. While the switch has been smooth for some people, it can increase the risk of cyber threats.

Here are a few ways businesses and employees can ensure cybersecurity while working remotely.

For Businesses

1.      Set up two-factor authentication (2FA) – Numerous services and websites use two-factor authentication to ensure that their company logins are not solely reliant on passwords alone. 

2.      Plan your remote working arrangements – Assess your network security and outline detailed guidelines about working from home aligned with the company’s policies. Teach your staff about data protection and intrusion prevention so that your data is safe from being lost or stolen.

3.      Don’t forget to back up the data – Use the 3-2-1 rule while backing up the data. Make three copies of the backup in two different formats. Save at least one copy off-site. 

4.      Ensure that you have enough licenses for VPN – When the number of staff working remotely increases, companies must have enough network bandwidth and VPN (a virtual private network) licenses to accommodate. 

5.      Limit VPN usage – Ensure that you regulate VPN usage. Allow 12 hours of VPN access at max for each user per day and automatically log them off once the time ends. 

For Employees

1.      Use an office laptop – Avoid using your laptop for office work. Your personal laptop may not be equipped with network security tools needed to ensure a safe work network compared to the office laptop. 

2.      Update your personal laptop – If in case, you can’t use a company laptop and have to use your personal one, update its security software. Follow your company’s data protection measures and avoid browsing for personal things while working.

3.      Avoid public Wi-Fi – To ensure a secure network, use a VPN server dedicated by your company. However, we vigilant of the phishing attacks that can steal your VPN login credentials. If you don’t have VPN security, ensure that you use Pretty Good Privacy (PGP) or email encryption.

4.      Prepare backup – Having options like external hard drives and USBs for backups can put you in a good position if something goes wrong. 


Looking for a managed security service?

Strengthen your network against cybercrimes. Contact Lean Security. We use premier web security assessment technology to offer effective penetration testing services to all our clients. Our source code review and network vulnerability assessment help you mitigate the risks of losing sensitive information and various other cybersecurity threats.