Remote work is pretty common these days. Not as common as it was two years ago, per se, but definitely more common than it was ten years ago. Despite this, most employees still treat their home office like just a corner of their house—or worse, they still work from their couch. From an ergonomic perspective, not great. From an IT perspective, it’s a nightmare. Every time you log in with the same weak password you’ve been using since undergrad, or connect to an unsecure network, IT people everywhere exhale profoundly.
Hackers don’t need much to get access to valuable information, and they have a knack for targeting employees most likely to—albeit accidentally—give them what they need. Therefore, having a secure work-from-home setup isn’t optional.
Emphasising Security When Working from Home
The freedom and flexibility of working from home are unparalleled, no arguments there. Despite endless conversations about productivity concerns and strained teambuilding, for the most part, remote workers have no issues getting the job done.
The real challenge, which often goes overlooked, is about account, device, and network security. IT professionals usually oversee office setups, whereas at home, it’s up to employees to ensure everything is sufficiently secure and privacy-oriented.
Accounts Protection
Yes, everyone knows it’s important to secure personal finance accounts. But other online accounts, especially for work, hold a surprising amount of sensitive data (which often pertains to other people). Remote employees need to ensure that these accounts are not low-hanging fruit for hackers or ransomware operators. The key is in the password.
Default or reused credentials can be cracked in literal minutes, and if one password gets compromised, others could also be at risk. It is essential to choose a strong password for all of your accounts. It’s also essential that each password is completely unique. Here are the fundamentals of a strong password:
- 14+ characters or a random phrase with four or more unrelated words
- A mixture of uppercase and lowercase letters, plus numbers, plus symbols
- Completely unique, never used anywhere else
Look, it’s not easy to remember a trillion different passwords that are 14+ characters each. It is easy to sign up for a trustworthy password manager application, which can not only store all of your account passwords, but also help you create a strong, nearly uncrackable one in less than one second. For a remote work setup, investing in a password manager is worth it.
One last essential account security tip: always opt for multi-factor authentication (MFA) if available. That way, even if someone does get access to your super-strong, unique, never-leaked password, they still can’t get into your account without an extra step. Most MFA processes can be set up through your account settings.
Device Security
If someone swipes your device or even accesses it without your permission for a few minutes, they may be able to get their hands on a lot of sensitive information.
Get in the habit of locking your computer (returning to the idle password login screen) every time you step away from it, even if you usually live and work alone. Sure, a spy will unlikely come in through your home window and bug your computer while you’re in the loo. However, constant practice is a good way to ensure you don’t leave your device open in public, where someone may take advantage of it. You can also set your device to automatically lock after a few minutes of inactivity.
You must also always keep track of device software updates. Cybercriminals often target unpatched systems since known vulnerabilities are easy to exploit. You can set your device to receive automatic updates:
- In a Windows device, go to Settings → Update & Security → Windows Update → Enable auto-updates.
- In macOS, go to System Settings → General → Software Update → Enable automatic updates.
Network Security
Office networks are often very well protected, thanks to your IT department. At home, it’s important that workers take their own steps to ensure they are working over a safe network. Your home router can be secured by considering the following steps:
- Change the default username and password
- Rename the SSID with a neutral name
- Use WPA3 encryption, if available
- Create a guest network for visitor devices
- Keep your router firmware updated
Even with a secure router, it’s advisable to use a VPN for PC to have extra protection. A VPN can be easily installed on your device or, depending on the company, accessed via browser. Most modern services offer protection for more than one device, so you can also protect additional work devices like tablets and mobile phones, as well as personal devices.
Bottom Line
Working from home is all about preparation for success. Don’t skimp on equipment, tools, or practices that can protect yourself and your company. Do your IT team a favour: enjoy the flexibility of a home office setting without being too laissez-faire. Take the time to evaluate the security of your current setup and make changes where needed.
