IT Checklist
- Enable Local Encryption
- Confirm all local admin accounts and ensure they use strong passwords
- Limit external sharing of cloud applications (OneDrive, SharePoint, etc.)
- Enable MDM for remote wipe capabilities
- Review and enable centrally monitored remote endpoint security tools
- Provide ability to securely exchange files and information externally and internally (OneDrive, DLP, email encryption, etc.)
- Enable Multi-factor Authentication for remote connectivity that expires after 4-8 hours of use
- Review Incident Response Procedures with all relevant parties
Employee Checklist
- Secure your workspace
- Have the ability to lockup your laptop and any business relevant information when not in use
- Ensure you can safely work and have work-related conversations without visitors eavesdropping or viewing your screen
- Wireless security
- Change your WiFi router passwords from the default, preferably using a random password generator
- Enable WPA-2 or higher authentication on your WiFi network
- Ensure your local router firmware is updated
- Personal device security
- Update device firmware for all devices on home network (computers, IOT devices, smart devices, etc.)
- Change all passwords from their default values
Security Awareness Checklist
- Corporate vs Personal
- Do not share your corporate laptop for use with family or friends
- All corporate activities must be performed on the device provided by the organization
- Limit social media use
- Don’t reveal business itineraries, corporate info, daily routines, etc.
Please note: these checklists are not exhaustive and are meant to be an example of general good practices. Your specific needs may be different.