Preventing Security Breaches When Employees Work From Home
Home networks and personal devices create security risks that office environments don't have. Here's how to protect your business from the specific threats remote work introduces.
When employees work from home, your business data passes through home networks that you don't control, on devices that may have family member accounts, and over public internet connections. The attack surface expands significantly. Here's how to manage the specific risks remote work introduces.
Home Network Risks
Home routers are typically consumer-grade, often use default passwords, and rarely receive firmware updates. A compromised home router can intercept traffic from every device on that network — including the work computer. Require VPN for all business system access so that traffic is encrypted even over a compromised home network.
Shared Devices and Family Members
Business data should never be accessed from devices shared with family members. A child downloading games on a family computer that also has business email is a real risk. Require separate business devices — or use MDM with device compliance checks to prevent unmanaged devices from accessing business systems.
Public Wi-Fi
Coffee shop, airport, and hotel Wi-Fi are frequently targeted by attackers. Require VPN whenever employees use any network that isn't their home network. Better yet: issue employees a business-grade mobile hotspot device so they never need to use public Wi-Fi for work.
Physical Security
Screen lock, cable locks for laptops in mobile environments, and clear desk policies for sensitive documents all matter for remote workers. A forgotten laptop in a car is the easiest data breach imaginable — and it's preventable with full-disk encryption and a cable lock.