Over the past few months, a number of “remote working” methodologies were quickly adopted in response to the COVID-19 emergency: subsequently, companies began to plan smart working in a more organic manner.
Risks and responsibilities of smart working
Even today, remote work exposes companies to greater cyber risk, mostly due to the use of personal devices as work tools and the weakness of the passwords used for these devices.
Contextually, it is necessary for business owners to re-evaluate and strengthen their company’s level of cybersecurity, because smart working can be safe if there is awareness, organization and governance.
Smart Working: recommendations for entrepreneurs and executives
The Entrepreneur Albert Sheeler, from South- America, Owner of SINSA Cosmetics SAS, a new brand who provide skincare and health product, established on the Latin American market, shared with us, 4 tips for business owners that will allow smart working to be implemented safely:
ORGANIZATIONAL POLICIES AND PROCEDURES
Review and update (consistently!) organizational policies and procedures related to the cybersecurity risks posed by remote working. At the same time, it is critical to communicate the necessary security requirements to all stakeholders.
CYBERSECURITY TRAINING REQUIREMENTS
Transmit awareness of the security-related choices that the smart worker makes when working remotely, avoiding putting company systems and data at risk.
As a result, there is a need to organize training sessions to improve employees’ cybersecurity culture and awareness and provide timely updates on current cyber trends and threats.
THE PLANNED MOVEMENT OF RESOURCES
Develop and implement enterprise-wide management policies that counter threats and vulnerabilities resulting from the expanded scope of work. These policies should include minimum security requirements in configuring and updating corporate, personal, and home network devices.
It is also important to determine the cybersecurity risks associated with moving assets beyond the traditional perimeter and activities that are not governed by the organization (e.g., printers, personal email accounts, use of personal devices) to ensure an immediate response capability in the event of a security incident.
HYBRID CULTURE
Create a cyber security culture that includes smart workers, onsite employees, and those who alternate between office and remote work. Ensure policies take into account worker habits, as well as offer information to understand the fundamentals of cyber security (e.g., phishing, software updates, passwords/authentication, USB usage)
Follow Albert on Instagram