No work on the "family PC" In the home office, work should only be performed on the company's own devices with approved software. Hard disk encryption should be standard.
Network provides security
Access to the company network from the home office should always be secured by a Virtual Private Network (VPN) solution. This is the only way to ensure that confidential documents and communication cannot be
cannot be read or manipulated.
Double is better
We know it from online banking or online payments with credit cards: The transfer is only released when, after the payment has been confirmed, the additional confirmation is made via the mobile app or a number code sent by push message.
sent via a push message. This is called multifactor authentication. If a factor is guessed or stolen, there is at least one additional barrier that prevents a successful breach of the system.
Open sesame (not)
Many cell phones or Internet browsers offer to store passwords. While this is convenient, it poses a security risk. One remedy is password managers, where all passwords can be stored securely.
Password guidelines can also be specified. Access must be protected using multifactor authentication.
Secure video conferencing
During the lockdown, Zoom, Skype & Co. were in constant use. If you use virtual collaboration tools, make sure that the data transfer is end-to-end encrypted - i.e., your data cannot be read on its way to the other party.
cannot be read on its way to the other party. This is guaranteed with professional video conferencing tools. Messengers such as WhatsApp or Facebook Messenger should not be used for company communications. And: If you
share your desktop, make sure that only what is necessary for the meeting can be shown.
Keep it tidy
Encourage your employees to leave their homeoffi ce workstation "clean" - just as they do in the office - keyword "clean desk policy". This means that when they leave their workstation (even for short breaks), the computer must be locked.
and at the end of the working day, all printouts and storage media containing personal data must be removed from the workplace. Windows and doors must also be closed when leaving the home office.
Do not use printouts containing fi rm data that you no longer need as "scratch paper" - this could make them accessible to unauthorized persons. Paper documents must be shredded using a paper shredder or a
a disposal company certified in accordance with ÖNORM 2109. If no document shredder is available in the home office, the documents can be brought to the office at regular intervals and destroyed there.
Even in the homeoffi ce, make sure there are adequate backups. It's best to continue storing data on the company's central systems - where backup solutions are hopefully exi sting.
USB stick, no thanks
The use of external data carriers, such as USB sticks, external hard drives or even smartphones, which are brought in or used by people from outside the company, harbors a number of risks.
Please find the complete article in the attachment!