Improving cybersecurity for Remote Working

A migration to mass working from home might have been a trial by fire for many organisations, but IT and security systems should be an enabler of remove working and not an inhibitor.

 

In this helpful eBook, Mimecast draws together 13 recommendations to make working from home more seamless and secure:

  1. Review each business function’s key applications and business processes and assess each for remote work readiness and security

Design a strategy and supporting systems for each business function, planning a degraded functionality if necessary.

  1. Consume every application from the cloud

If an existing, critical application can’t be moved to the cloud, start the process of getting a new, cloud-based application to take its place, while prioritising continued VPN access for users of remaining on-premises applications.

  1. Use cloud-based or at least cloud-centric security solutions for every cybersecurity control

As you transition away from on-premises IT applications and data, ensure your cybersecurity controls are also cloud-based.

  1. Issue corporate laptops/mobile devices and use mobile device management (MDM) for BYOD devices

Either own the endpoint by issuing the laptop and including endpoint security on it or secure the business application portion of it via mobile device management (MDM).

Ensure all software updates, security, and helpdesk functionality can be done without requiring direct connectivity to the corporate network. Include hardware support for new and existing staff – have a process to issue new hardware and do break fixes without requiring visits to the office.

  1. Use multi-factor authentication
  2. Integrate your cloud security control activity, threat intelligence,
    and security telemetry into a centralised threat detection and response system (SIEM/SOAR), that is also cloud-based

Don’t use security controls that do not provide sufficient APIs and off-the-shelf integrations to get this done. The cloud should not replicate siloed on-premises security controls, and cloud-based security controls should enable visibility and investigation.

  1. Help employees properly secure their home networks

Employees’ home networks are part of your business continuity programme. Discourage the use of default admin passwords on routers and the use of weak or easily guessable WiFi access passwords. Require staff to have a minimally performing home network at the ready and prepare them to tether to their mobile devices for backup access to the internet.

  1. Be ready to intensify, personalise, and leverage the automation of your security awareness training programme

Provide regular and topical security awareness training videos – regular communication is key.

  1. Have a clear process for employees, and customers/partners if relevant, to report potential security issues they come across

People can be a very effective security early warning system. Provide a back-end process for the helpdesk and security team to collect, manage, triage, investigate, and act on reports.

  1. Use cloud-based collaboration tools such as Zoom and Slack

But also use their built-in security settings. This will ensure familiarity with such tools when home-working and avoid use of whatever is free or cheap, which could result in loss of security visibility and control.

  1. Don’t forget your IT and security teams. They must be able to work as remotely as everyone else in the organisation

See recommendation #1 – #3 above, but in the meantime continued VPN access is acceptable. Also, watch out for team burnout – working from home doesn’t mean working 24×7.

Plan for remote onboarding of new staff (including security staff). Even if you aren’t hiring, it is very possible that increased job sharing and shift work during the crisis will bring people into roles that they don’t normally do.

  1. Run regular tests of working from home when not in the midst of an emergency

Work out a week every year where everyone at your organisation works at home, with no exceptions. If needed, liberalise your non-emergency work at home policies so that your remote working systems are tested continuously throughout the year and people become accustomed to them before an emergency.

  1. After the current crisis, conduct a comprehensive retrospective…

… so that learnings can be recycled back into your programme and guide future investments, including after work from home tests. For extended disruptions, conducting selective mid-action reports can help guide mid-course corrections.

For additional reading on this subject matter, get the ‘Improving Cybersecurity for Remote Working’ eBook here:

https://gdpr.report/wp-content/uploads/2020/04/Mimecast-eBook-Improving-Cybersecurity-for-Remote-Working-13-Recommendations.pdf


Registration now OPEN for PrivSec Global
Taking place across four days from 30 Nov to 3 Dec, PrivSec Global, will be the largest data protection, privacy and security event of 2020.

Reserve your place today and gain access to the entire event free of charge. With all sessions available to view live or on-demand, you can build a personalised agenda based on your key focus topics and make the event fit around your work schedule.

We have been awarded the number 1 GDPR Blog in 2019 by Feedspot.