1576 Sweet Home Rd, Buffalo, NY 14228

Cybersecurity Best Practices for Remote-Work during the Coronavirus

Cybersecurity Best Practices for Remote-Work during the Coronavirus

Cybersecurity Best Practices for Remote-Work during the Coronavirus

The Coronavirus (COVID-19) has affected individuals and businesses across the world. Organizations need to take significant preventative action to protect their corporate networks as employees work from home.

Substantial caution should be exercised when implementing any remote access to your network.

Consider the following cybersecurity best practices:

  1. Before any home user is granted remote access capability, their home computer/laptop must be evaluated:
    1. An up-to-date operating system, e.g., Windows 8 and above
    2. Operating system is set to automatically install updates
    3. Internet browser are updated to the latest version and future updates are installed immediately
    4. Anti-virus is installed and scanning daily, e.g., Windows Defender, Sophos, or Norton
    5. Automatic lockout after 15 minutes of inactivity is enabled
  2. Utilize a Virtual Private Network (VPN) solution over a Remote Desktop Protocol (RDP)/remote-desktop solution such as TeamViewer or LogMeIn. Most modern firewalls are capable of provisioning secure VPN accounts, check with your provider.
  3. Ensure all remote access accounts have 15+ character passwords with numeral and special character complexity requirements.
  4. Many companies are using remote desktop software such as TeamViewer, LogMeIn, NinjaRMM, or a similar platform. If you are using any of these platforms, ensure that the application is appropriately up-to-date/patched and that you are using 15+ character passwords with numeral and special character complexity requirements.
  5. Ensure multi-factor authentication (MFA) is available and enabled for all remote access accounts.
  6. Advise employees to avoid public Wi-Fi networks, particularly when working with customer or other sensitive data.
  7. Avoid non-secure/non-corporate managed file sharing services.
  8. Ensure chat system (e.g., Microsoft Teams or Slack) encrypt messages in transit and at rest.

These best practices are a “start” to help your organization safely transition employees to remote work and keep your business running smoothly. This list represents a few among many cybersecurity best practices for remote access. For best results, all “access control” matters should be rigorously evaluated by experienced and credentialed cybersecurity practitioners.

 

© 2020 GlobalSecurityIQ, LLC