This article was originally published in Allwork.Space
- The coronavirus outbreak forced many organizations to implement work from home policies immediately.
- The move has revealed a serious gap in digital transformation preparedness, particularly as it relates to cybersecurity.
- Cybersecurity is as much an IT issue as it is an HR issue; organizations need to ensure that they have the right infrastructure in place, but also that they have and enforce the right policies and processes to protect their employees and important data.
- By ensuring your organization has the right infrastructure, tools, and processes in place to protect employees and data.
- By training employees on how to use emerging technologies, how to follow processes, and teaching them basic cybersecurity housekeeping skills.
Cybersecurity Tips for Companies and Employees
- Provide workers with company owned devices.
- Provide workers with access to a VPN.
- Have strict processes in place on how to log in to the company network, how to share information with stakeholders, and what types of networks employees are allowed to use.
- Provide easy to digest cybersecurity information to all remote employees.
- Create and enforce password policies (using an uppercase letter, using numbers, using symbols, minimum length, etc.). Consider encouraging people to change their passwords regularly.
- Provide online security training, even if it has to be done virtually.
- Consider implementing two-factor authentication when possible.
- Ensure that company emails have a robust spam filter setup, this will decrease the possibility of an employee falling victim to a phishing attack.
- Remind employees to keep all software and remote collaboration tools updated.
- Create a quick response guideline should anyone fall prey to a cybersecurity attack.
- Ensure your home network is secure.
- Turn off your Bluetooth, particularly in public places and when there’s no need for it.
- Double-check the sender of emails, particularly if they’re asking you to download anything or click on a link.
- Use a VPN.
- Ensure you’ve installed and updated any antivirus software.
- Update any software, platform, and application you use for work.
- Encrypt and password protect company files that you need to send. If you need help, reach out to your company’s IT team.
- Inform your IT team immediately if your device has been compromised or if you suspect you’ve been a victim to a cyber attack.
- Install trustworthy anti-malware software on your device.
- Use multi-factor authentication.