Businesses around the world are embracing for a new ‘normal’, where more employees will be working from home. The current pandemic is going to change many things for both small and large businesses, and while tough decisions are to be taken at times, one of the major concerns is related to cybersecurity. Traditionally, companies always had security concerns about employees using their own devices to get work done, but this might become a practice for at least a while. As WFH becomes necessary, how can managers and business owners address the possible risks and concerns? We have a few tips below that may come in handy.
- Train your people
This may seem hard in the current scenario, but having meetings online and encouraging employees to share their recommendations on WFH problems is necessary. Unfortunately, not many companies spent money on training employees about cybersecurity issues, impact and ways in which hackers can attack them, or aspects like social engineering, malware attacks, phishing and so on. Training your people to act more responsibly at work, while working from home, is necessary.
- Enable multi-factor authentication for every critical resource, account, user
Just a strong password is sometimes not enough, especially for employees who are accessing resources from different devices, from the comfort of their home. Consider enabling multi-factor authentication where possible, so that there is added security. This is particularly relevant and important for certain people, like privilege users or those who have access to UP cameras and video surveillance systems.
- Establish an incident response plan
What happens when someone’s laptop or device gets infected by malware? A lot of companies still don’t have a robust incident response plan for WFH-situation. Make sure that employees are aware of who to report, and how the matter will be resolved.
- Encourage basic cybersecurity practices
Ask employees to use a password manager to keep passwords safe, and if new products are being deployed, change all default details immediately. Secondly, ensure that employees have activated antivirus and antimalware software on their devices, and they should rely on VPN and encrypted connection where possible. Ask them to practice safe browsing, for which a list of dos and don’ts can be provided, and encourage reporting issues. You want an employee to tell the management about a possible glitch, which may be a serious cybersecurity issue.
WFH may not be viable for many companies and businesses, but may be necessary for some. Make sure your business is prepped!