Remote Workforce Security Checklist

IT Checklist

  • Enable Local Encryption
  • Confirm all local admin accounts and ensure they use strong passwords
  • Limit external sharing of cloud applications (OneDrive, SharePoint, etc.)
  • Enable MDM for remote wipe capabilities
  • Review and enable centrally monitored remote endpoint security tools
  • Provide ability to securely exchange files and information externally and internally (OneDrive, DLP, email encryption, etc.)
  • Enable Multi-factor Authentication for remote connectivity that expires after 4-8 hours of use
  • Review Incident Response Procedures with all relevant parties

Employee Checklist

  • Secure your workspace
    • Have the ability to lockup your laptop and any business relevant information when not in use
    • Ensure you can safely work and have work-related conversations without visitors eavesdropping or viewing your screen
  • Wireless security
    • Change your WiFi router passwords from the default, preferably using a random password generator
    • Enable WPA-2 or higher authentication on your WiFi network
    • Ensure your local router firmware is updated
  • Personal device security
    • Update device firmware for all devices on home network (computers, IOT devices, smart devices, etc.)
    • Change all passwords from their default values

Security Awareness Checklist

  • Corporate vs Personal
    • Do not share your corporate laptop for use with family or friends
    • All corporate activities must be performed on the device provided by the organization
  • Limit social media use
    • Don’t reveal business itineraries, corporate info, daily routines, etc.

Please note: these checklists are not exhaustive and are meant to be an example of general good practices. Your specific needs may be different.