One positive outcome from the pandemic has been the widespread adoption of teleworking (also referred to as remote working). While some business leaders were initially sceptical, teleworking has now become a popular, practical and effective way of working.
Thanks to an increasing acceptance of new ways of doing business globally, it appears that teleworking is something that is here to stay with the numbers of remote workers actually rising at rates above those predicted.
And it is important to understand that just as with any shift in working patterns, there are challenges that need to be addressed. Despite its popularity, teleworking has the potential to make workers more vulnerable to cybercrime. In fact, some reports noted a marked increase in cyber attacks as a direct result of remote working.
With all this in mind, we take a look at what you can do to keep yourself secure against cybercrime if you are currently teleworking or are considering making the switch.
Invest in software
It was once the case that cybersecurity was little more than installing a firewall and an antivirus solution on your computer, and that would keep you protected against cybercrime. Today, things are different, and many hackers use more sophisticated and advanced techniques as a part of their criminal activities.
However, these types of software still have an important role to play. Unfortunately, it is true that many workers do not install antivirus or firewall software on their computers at home. This is a huge oversight and it can leave staff vulnerable to the most basic types of attack. But there is no excuse here, these types of software are easily available and take no expertise to install.
Reduce your number of ‘attack surfaces’
It is important to understand how cybercriminals work when they attack to hack your system. Crucially, many workers don’t understand that every programme that they use can potentially be utilised by hackers. When software is not updated regularly or has vulnerabilities that a hacker can exploit, this can be an easy way into your system for them.
As such it is important to minimise the potential attack surfaces as much as possible. In practice, this means reducing the number of pieces of software that you use on a day-to-day basis. Deleting them from your machine helps to minimise the chance of a criminal hack occurring.
There are a number of other, more technical ways to reduce your attack surface, and it is always a good idea to speak with your IT team to understand if there are better ways to keep you secure.
Avoid shadow IT
Along the same lines, it is important that anyone teleworking should minimise their use of shadow IT. If you have never heard of the term, shadow IT refers to apps and software that workers install on their work devices without approval from the IT team. This typically occurs because a piece of software offers something useful or convenient for staff. However, it can also present a huge cybersecurity challenge.
Whenever a piece of software or an app is approved by the IT team, it has been checked to ensure that there are no inherent vulnerabilities and that the software is properly patched and updated. For shadow IT, these protections are not in place. This means that by using the software you could potentially open yourself up to being hacked.
Follow cybersecurity best practice
It is still surprisingly common that workers will follow strong cybersecurity practices in their personal lives but do not apply the same standards at work. This is important because it can mean that fundamental aspects of cybersecurity are being missed. For example, on the use of passwords. At home, you may be more likely to use a strong password, but at work, your focus may be more on something you can easily remember.
Additionally, it is important to apply basic rules of common sense when it comes to checking emails and any time that you are presented with something originating outside your organisation.
Carry out penetration testing
It is sometimes forgotten that one of the most important aspects of cybersecurity is understanding whether it is effective or not. Carrying out tests and checks on your system plays a vital role in securing staff no matter whether they are teleworking or going into the office to get things done.
One of the key types of security assessment comes in the form of penetration testing. Penetration testing is ‘a form of ethical cyber security assessment designed to identify and safely exploit vulnerabilities affecting computer networks, systems, applications and websites so that any weaknesses discovered can be addressed’.
Conducting regular penetration testing helps to make sure that the cybersecurity that you have in place is effective. Additionally, it can test how the system stands up to a real-world attack rather than simply relying on the theory of its effectiveness.
Separate work and personal devices
Many workers fail to make a separation between their work and personal devices. This can become a problem, especially if other family members are likely to use the same devices for personal use.
Allowing members of your family, who may not be as cyber-aware as you are, to use a computer with access to work data can be a huge mistake.
It is definitely possible to conduct teleworking in a manner that is just as safe as working in the office. However, doing so means taking precautions and thinking carefully about how you use devices and software.
Author: Justin Aldridge
Contact us
If you are an individual or a company and are interested in a procedure, contact us. We work with expert lawyers in Spanish immigration and expatriate legal and tax issues:
