The rapid spread of COVID-19 Globally has tested the IT competency of many businesses as staff work remotely during isolation or as a precaution. Unfortunately, not all are fully prepared for this rapid shift to remote working with a good percentage already back in the office or due back in the coming weeks. The need to respond quickly to support normal business activity can leave businesses and their employees exposed to increased cyber risks.
For Businesses, here are our 5 top tips to keep cyber safe online:
1. Regularly review cyber policy
If you have not completed a comprehensive review of your companies cyber security policy in the past 3-months it is highly recommended to do so at the earliest opportunity.
It is advised that they are regularly reviewed and updated, however, based on recent events it would be advisable to complete a thorough review soonest to ensure the policy remains accurate and relevant.
If you don’t have a cyber security policy or it needs assistance from cyber security experts our cyber engineers can provide the right guidance for and your business.
2. Extend your security periphery
You now have many home networks where your company data may be processed. Your staff are likely using either a Remote Desktop Protocol (RDP) or Virtual Private Network (VPN) to connect to the business systems and maybe using their own device to connect. Have your IT support/supplier check for/install endpoint management on those devices to keep them safe. Have them consider Bitlocker technology if the devices are at risk of being stolen, to encrypt your data at rest. Have your IT security team/supplier assess each staff members’ internet connection for vulnerabilities. If you don’t have these capabilities in house, our Working From Home employee vulnerability assessment could be of assistance, starting at £150 per IP address. Contact Matthew Roberts directly for an accurate quote via email@example.com.
3. Secure every connection
Remote connectivity needs to be properly configured to keep staff and data safe. Have your IT support/supplier check for a properly configured and strong (minimum TLS1.2) SSL certificate. Have them consider locking down the VPN connections so they cannot connect to the corporate network and browse the internet at the same time (VPN split tunnelling).
4. Setup two-factor authentication
Two-factor, or better yet multi-factor, authentication should be made available where ever possible. This is an added layer of protection if an account is compromised. The extra step could be a test message or email however the most secure method is by using a biometric data, such as facial recognition or fingerprint scan to verify it’s you.
5. Make your premises secure
All your staff are at home, your business premises become an easier target – make sure security systems are operational, data rooms are adequately secured and alarmed, and consider having your IT Support/Supplier close all network ports that are available in open spaces throughout the building.
Most importantly, if you’re unsure about anything security-related, check! This list is by no means exhaustive. Use further tools to stay secure when working from home and take precautionary measures when you and your workforce return to the office.
Riela Cyber comprises cyber security experts that can provide guidance, services and support to further protect your business from cyber-based risks. If your company could benefit from further specialist advice to protect your business please contact: