With more companies opting for permanent or hybrid WFH models (including LanYap), cybersecurity is a huge concern. That’s because before last year, most companies didn’t have the hardware, software, or infrastructure to support a near 100% remote workforce – let alone having a robust security framework in place. So, how can your company ensure sensitive data isn’t at risk? What do you need to know about WFH security in order to keep employees productive and data secure? Let’s dive in.

1. Start with a VPN – A VPN or Virtual Private Network is a must for WFH environments. A VPN encrypts internet traffic, making it unreadable to anyone unauthorized who intercepts it. Having a VPN is one thing but making sure employees use it is quite another. Ensure that all employees, contractors, and freelancers exclusively use the VPN when working and anytime they are accessing company data, software, applications, or content remotely.

2. Secure home routers – Unfortunately, many of your employees may be using a router with a generic password. Most people don’t change their home router password after installation. By changing it to a strong password, WFH employees can prevent malicious activity on their home network, and they can steer clear of potentially costly security breaches. Consider tools like LastPass, an application that securely stores passwords and helps users generate much stronger passwords than individuals typically create. For example, instead of fluffy123 for an email account password, LastPass may suggest um340J3Dt2ZH, and the tool’s ‘vault’ will store and remember that password. Additionally, require your team to install firmware updates so there are no security gaps, and the system can correct any known vulnerabilities proactively.

3. Turn on 2-factor authentication – If a data breach does occur and cybercriminals steal employee credentials, two-factor authentication can stop them from doing damage. It’s a process that adds an additional layer of security to accounts by using text, email, or a fingerprint scan as verification methods. Office 365, Google, and nearly all other business applications offer multi-factor authentication options. 

4. Use firewalls for cloud services – We all know that firewalls help prevent cyber threats from entering your company’s network. But how do they work when everyone is working outside the network, from home? Next-gen firewalls create a barrier between your team’s devices, the internet, and cybercriminals by closing ports that allow communication. This capability lets firewalls prevent malicious software or applications from sneaking in and stealing data. Installing a cloud-based firewall in popular cloud service providers such as AWS, Microsoft Azure, or Google Cloud, gives businesses the ability to provide consistent, secure connectivity to individuals in a WFH environment. 

5. Train on phishing scams – Unfortunately, COVID-19 has pushed phishing scams and scammers into high gear. WatchGuard Technologies released its annual findings showing the COVID-19 era threat landscape as vicious as ever. Hackers continue to target corporate networks and WFH environments. Help employees understand how to identify and handle a social-engineered phishing attack. Suspicious emails from people they don’t know or even emails sent from co-workers who have an unusual request should be flagged. The Center for Internet Security offers other helpful tips. 

Circle the wagons

Do you have questions about securing WFH environments? Want help comparing technology providers who offer similar services? Call or email us. We can establish a rock-solid plan for securing your in-office, hybrid, or remote work environment.