With a rapid increase in telecommuting, every device, email server and Wi-Fi network accessed outside the business network is a new potential entry point or vulnerability for hackers to exploit. Business owners, must establish strict policies and employee guidelines to ensure that we don’t have a cybercrime crisis during this unprecedented push to work remotely. Follow these seven tips to help reduce threats:
1. Issue security policy guidance and rules.
Annual trainings and email reminders from the IT department are not enough to keep good cyber habits top of mind for employees. A fresh reminder can go a long way to reinforce security best practices.
2. Set up a VPN.
A VPN system creates an encrypted tunnel that your internet traffic travels through so it can’t be seen by third parties. Setting up a virtual private network (VPN) can seem daunting, but just requires a couple hours to configure and isn’t technically difficult. VPN with multifactor authentication should be used as it is the strongest defense.
3. Require Use of Encryption and Wi-Fi Protected Access (WPA) to Secure Networks.
While no Wi-Fi is totally secure, private, password protected networks are significantly more secure than public Wi-Fi networks – especially those offered in cafes, hotels and other public places. Remind your employees that they can always ask a business that offers public Wi-Fi if private password protected networks are available.
4. Password-Protect Devices Used By Employees and Third Parties.
Require employees to use strong passwords that contain letters, numbers and special characters. Remind employees to avoid using the same password on multiple devices/accounts.
5. Maintain Anti-Virus and Anti-Malware Software.
Remind employees to install and regularly update adequate security software on all electronic devices they use to perform work remotely. That can be a phone, tablet, laptop, etc. Some employers are eliminating BYOD (bring-your-own-device) options and mandating that employees use only employer-supplied equipment and devices.
6. Power Down.
Encourage employees to power down computers when not in use. Powered off, computers are not accessible or susceptible to attacks or intrusions from the internet.
7. Back Up Data.
Regularly backup your businesses’ sensitive information and, depending on the importance of the data, make sure it is encrypted. Secure backups are the best strategy to prevent critical business disruptions in case of a ransomware attack.
To learn more about digital defense tools individuals can use to protect their personal information, contact your local Rural Mutual Insurance Agent.