7 Tips To Improve The Security Of Your Company On The Internet If You Work From Home
To help employers of any company, large or small, Google explains the best practices that can be implemented for the security of your business when your staff works remotely.
1. More secure logins with two-step authentication: By setting up two-step verification, you significantly reduce the chances of someone gaining un-authorized access to your account. Our research found that an SMS code sent to a recovery phone number blocks 96% of mass phishing attacks and 76% of targeted attacks. Furthermore, the security keys could block 100% of mass phishing attacks, and 100% of targeted attacks.
2. Keep systems up to date: When it’s possible, enable automatic updates to ensure you have the latest security fixes and built-in malware and phishing protection. Automatic updating must be enabled for all software used by your company, as well as for the CMS of your website. If automatic updating is not possible, check periodically for available updates. Avoid using an application that does not offer security options (for example, those that do not have an update option).
3. Keep a backup copy of your company website: The backup copy of your company website will serve to restore it and recover the original content. If possible, use the automatic backup feature and make multiple copies (for example, one online and one offline)
4. Implements the HTTPS protocol: HTTPS is a mechanism that allows a browser or an application to connect securely with a website. When you load a web page over plain HTTP, your connection is not encrypted, which means that anyone on the network can see any information transmitted and received and can even modify the web content before you see it. On the contrary, your connection to a website is encrypted with the HTTPS protocol, so nobody can spy on you. The information you send to the website (passwords or credit card data) will be private.
5. Train employees: The training you provide to your employees to learn to be careful can improve your company’s security. It regularly offers training and resources, both general and specific; defines clear rules and responsibilities for employees (for example, how to install and use software); designs protocols for reporting security-related events and incidents, such as malware or phishing attacks, and rewards employees who report such incidents. It is essential to have guidelines for using social networks and processing sensitive data (privileged access, restricted access by default, and periodic audits).
6. Secure WIFI network: Run a router firmware update. Make sure you have a strong password, and consider replacing it, if you haven’t done so in a while with a new, extended, unique password. Remember to activate WPA2 encryption and enable the router’s firewall. If you have technically savvy employees, they should make the router ‘invisible’. This can be done from the router panel.
7. Use of work devices – Communicate to your employees that they should avoid using work devices for private activities to reduce the risk of phishing and malware. During the current coronavirus outbreak, people tend to seek up-to-date information about the spread of the virus and may unknowingly download malicious files that infect their work devices. Also, workers should use the screen lock even when at home, especially if they have children. Also, remind them not to share critical company information over unencrypted connections.
Don’t forget to provide your work-from-home employees with essential security tips like:
- Beware of phishing emails.
- Make sure you have the antivirus installed and fully updated.
- Check that your security software is up to date.
You can find more security tips online by visiting our Security Center and Google Account Security section. The National Cybersecurity Institute (INCIBE) also has valuable information to protect your company at this link.