Phone : +91 95 8290 7788 | Email : sales@itmonteur.net

Register & Request Quote | Submit Support Ticket

Home » Tag: Work from Home

Tag Archives: Work from Home

Home » Tag: Work from Home

12 Security tips for the ‘work from home’ enterprise

12 Security tips for the ‘work from home’ enterprise

If you or your employees are working from home, you’ll need this advice to secure your enterprise.

If you or your employees are working from home while our governments lurch awkwardly through the current crisis, then there are several security considerations that must be explored.

Your enterprise outside the wall

Enterprises must consider the consequences of working from home in terms of systems access, access to internal IT infrastructure, bandwidth costs and data repatriation.

What this means, basically, is that when your worker accesses your data and/or databases remotely, then the risk to that data grows.

While at normal times the risk is only between the server, internal network and end user machine, external working adds public internet, local networks and consumer-grade security systems to the risk mix.

Here are some of the approaches to take to minimize these risks.

1. Provide employees with basic security knowledge

People working from home must be provided with basic security advice: to beware of phishing emails, to avoid use of public Wi-Fi, to ensure home Wi-Fi routers are sufficiently secured and to verify the security of the devices that they use to get work done.

It is likely that attempts to subvert security using phishing attacks will increase at this time.

Employees should be particularly reminded to avoid clicking links in emails from people they do not know, and installation of third-party apps should be confined to bona fide app stores, even on personal devices.

Your people need to be in possession of basic security advice, and it is also important that your company has an emergency response team in place. People need to know who to contact in the event they detect a security anomaly.

2. Provide your people with VPN access

One way to secure data as it moves between your core systems and externally based employees is to deploy a VPN. These services provide an additional layer of security, which (in simplified terms) provides the following:

  • Hiding the user’s IP address
  • Encrypting data transfers in transit
  • Masking the user’s location

Most larger organizations already have a VPN service in place and should check they have sufficient seats to provide this protection across their employee base. Smaller enterprises may need to appoint a VPN provider.

There are lots of VPN service providers, but not all of them can be trusted. (Especially avoid the free services.) ExpressVPN and NordVPN appear to be good choices, but it is in your best interest to do your own due diligence before selecting a provider for your company.

Once chosen, you should ensure that all remote employees are provided with access to the service, and that they use it for all business-related activity.

3. Provision security protection

Make sure up-to-date security protection is installed and active on any devices that will be used for work. That means virus checkers, firewalls, device encryption should all be in palace. I have two articles which should help with some of this:

  • The macOS security guide
  • The iOS security guide

4. Run a password audit

Your company needs to audit employee passcodes.

That doesn’t mean requesting people’s personal details, but does mean passcodes used to access any enterprise services are reset and redefined in line with stringent security policy.

Alphanumeric codes, use of two-factor authentication should become mandatory, and you should ask your people to apply the toughest possible protection across all their devices. You should also ensure all your business-critical passwords are securely stored in the event anything happens to key personnel. An enterprise-focused password manager such as LastPass may help here.

5. Ensure that software is updated

Encourage your teams to upgrade their software to the latest version supported under the company’s security policy. (Some enterprises lag the release schedule for Apple software, though most don’t.) Activate automatic updating on all your devices.

6. Encourage the use of (secure, approved) cloud services

One way to protect your employee end points is to ensure your confidential information is not stored locally.

Content storage should be cloud-based where possible, and employees should be encouraged to use cloud-based apps (such as Office 365). It’s also important that any third-party cloud storage services used are verified for use by your security teams.

NB: This is particularly important if your business requires use of critical personal data.

7. Reset default Wi-Fi router passwords

Not every employee will have reset the default password for their Wi-Fi router.

If you have an IT support team, then providing telephone guidance to secure home routers should become a priority. You do not want your information being subjected to man in the middle, data sniffing or any other form of attack.

You may also need to make arrangements to pay for any excess bandwidth used, as not every broadband connection is equal. Some providers (most recently, AT&T) are making positive sounds around extending available data packages in the current crisis. Employees should be told to avoid public Wi-Fi, though doing so is made a little more secure if used with a VPN.

8. Mandatory backups

It will be useful to ensure that online backup services are used, if available.

Otherwise, employees should be encouraged to use external drives to back up computers. If you use a mobile device mananagement (MDM) or enterprise mobility management (EMM) service, then it is possible you’ll be able to initiate automated backups via your system’s management console.

(NB: I’m a little concerned about backup to local storage in employee homes, as this simply becomes another potential security problem.)

9. Avoid the use of USB sticks

Don’t use USB sticks at all if you can avoid it. There have been too many examples of such devices being infested with malware. The Department of Homeland Security has a page about this.

10. Use an MDM/EMM solution

It may make sense to deploy an MDM or EMM system at this time.

This will make it much easier to provision and manage your fleet of devices while also separating corporate from personal data. It also ensures device and Mac security can be better controlled.

This is a whole topic in itself, but the experts at companies such as Jamf, Addigy or even your Apple business advisor should be able to provide useful advice.

11. Develop contingency plans now

Triage your teams. Ensure that management responsibilities are shared between teams and ensure you put contingency plans in place now in case key personnel get sick. Tech support, password and security management, essential codes and failsafe roles should all be assigned and duplicated.

12. Foster community and care for employees

The reason many people are working from home is because there is a health pandemic. The grim truth is that your employees may get sick, or worse, during this crisis.

With this in mind, community chat, including group video chat using tools such as FaceTime or Zoom, will become increasingly important to preserving mental health, particularly for anyone enduring quarantine.

Encourage your people to talk with each other, run group competitions to nurture online interaction, and identify local mental health and grief counsellors who may help if the crisis becomes more extreme.

I have heard of one group of people working remotely that are using a home exercise app and Group FaceTime to exercise together during the day, which they think helps boost team feeling even while working remotely.

The bottom line is that your people are likely to be under a great deal of personal stress, so it makes sense to raise each other up through this journey.

Virtual Private Network ( VPN )

Virtual Private Network
( VPN )

Virtual Private Network ( VPN ) VPN Service Provider in India

Virtual Private Network ( VPN ) VPN Service Provider in India

VPN Service Provider in India

Firewall Firm, a VPN Service provider company in India, providing VPN Services on Firewall and providing support 24×7 for work remotely. A virtual private network (VPN) extends a private network across a public network, and enables users to send and receive data across shared or public networks as if their computing devices were directly connected to the private network. Applications running on a computing device, e.g., a laptop, desktop, smartphone, across a VPN may therefore benefit from the functionality, security, and management of the private network. Encryption is a common, though not an inherent, part of a VPN connection.

VPN technology was developed to allow remote users and branch offices to access corporate applications and resources. To ensure security, the private network connection is established using an encrypted layered tunneling protocol, and VPN users use authentication methods, including passwords or certificates, to gain access to the VPN.

A VPN is created by establishing a virtual point-to-point connection through the use of dedicated circuits or with tunneling protocols over existing networks. A VPN available from the public Internet can provide some of the benefits of a wide area network (WAN). From a user perspective, the resources available within the private network can be accessed remotely.

In other applications, calling a proxy a VPN is a marketing technique on the part of consumer VPNs. Internet users may secure their connections with a VPN to circumvent geo-restrictions and censorship or to connect to proxy servers to protect personal identity and location to stay anonymous on the Internet. Some websites, however, block access to known VPN technology to prevent the circumvention of their geo-restrictions, and many VPN providers have been developing strategies to get around these roadblocks.

Enterprise Infrastructure VPNs

Ratings
AnyConnect VPN by Cisco

AnyConnect VPN by Cisco

AnyConnect

by Cisco

4.5
“Cisco VPN is guenue and user-freindly software with less complex while establishment.”
FortiClient VPN by Fortinet

FortiClient VPN by Fortinet

FortiClient

by Fortinet

4.4
“Forticlient easy to install but muti function, Endpoint antivirus and VPN function too.”
Mobile VPN by Pulse Secure

Mobile VPN by Pulse Secure

Mobile VPN

by Pulse Secure

4.4
“The most important shield for your device”
Citrix Gateway (formerly NetScaler VPN, NetScaler Gateway or NetScaler Unified Gateway) by Citrix

Citrix

 

Citrix Gateway (formerly NetScaler VPN, NetScaler Gateway or NetScaler Unified Gateway)
by Citrix

4.5
“”Single url remote access and Secure interface.””
Cloud VPN by Google

Cloud VPN by Google

Cloud VPN

by Google

4.5
A Cloud VPN is a cloud-based network infrastructure that delivers VPN services.
GlobalProtect VPN by Palo Alto Networks

GlobalProtect VPN by Palo Alto Networks

GlobalProtect

by Palo Alto Networks

4.3
“Palo Alto GlobalProtect is a great option for a VPN client on Mac and PC”
Secure TLS VPN by Pulse Secure

Secure TLS VPN by Pulse Secure

Secure TLS

by Pulse Secure

4.4
“Very flexible product that can solve all our connectivity problems”
Mobile VPN with SSL by WatchGuard

Mobile VPN with SSL by WatchGuard

 

Mobile VPN with SSL

by WatchGuard

4.3
“Mobile VPN with SSL: Perfect VPN tool for connecting from differnet locations.”
IKEv2 VPN by Apple

IKEv2 VPN by Apple

IKEv2

by Apple

4.2
“Supremely Useful VPN Configuration Tool”
Check Point Capsule VPN by Check Point Software Technologies

Check Point Capsule VPN by Check Point Software Technologies

 

Check Point Capsule

by Check Point Software Technologies

3
“Checkpoint capsule for OOB”

VPN (Virtual Private Network) Service providers in Delhi NCR India

Work from Home Securely: Enterprise

Is your remote workforce expanding beyond your current mobile access or VPN solution? Deploy VPN Services to concurrently and safely connect remote employees and devices.

for more details, please contact us on

Sales :+91 958 290 7788 | Support : +91 96540 16484

Register & Request Quote | Submit Support Ticket

VPN Service Provider in India

Read More »

Information Security - InfoSec - Cyber Security - Firewall Providers Company in India

 

What is Firewall? A Firewall is a network security device that monitors and filters incoming and outgoing network traffic based on an organization's previously established security policies. At its most basic, a firewall is essentially the barrier that sits between a private internal network and the public Internet.

 

Secure your network at the gateway against threats such as intrusions, Viruses, Spyware, Worms, Trojans, Adware, Keyloggers, Malicious Mobile Code (MMC), and other dangerous applications for total protection in a convenient, affordable subscription-based service. Modern threats like web-based malware attacks, targeted attacks, application-layer attacks, and more have had a significantly negative effect on the threat landscape. In fact, more than 80% of all new malware and intrusion attempts are exploiting weaknesses in applications, as opposed to weaknesses in networking components and services. Stateful firewalls with simple packet filtering capabilities were efficient blocking unwanted applications as most applications met the port-protocol expectations. Administrators could promptly prevent an unsafe application from being accessed by users by blocking the associated ports and protocols.

 

Firewall Firm is an IT Monteur Firewall Company provides Managed Firewall Support, Firewall providers , Firewall Security Service Provider, Network Security Services, Firewall Solutions India , New Delhi - India's capital territory , Mumbai - Bombay , Kolkata - Calcutta , Chennai - Madras , Bangaluru - Bangalore , Bhubaneswar, Ahmedabad, Hyderabad, Pune, Surat, Jaipur, Firewall Service Providers in India

Sales Number : +91 95 8290 7788 | Support Number : +91 94 8585 7788
Sales Email : sales@itmonteur.net | Support Email : support@itmonteur.net

Register & Request Quote | Submit Support Ticket