Many small business owners had heard of remote working and were aware of its growing popularity a couple of years ago. However, for many, the need to plan for, implement and manage a remote working model seemed too difficult.

The covid-19 pandemic forced many businesses to switch to a remote working model. In some cases, this switch happened overnight.

The sudden change left many small businesses vulnerable to cybersecurity breaches. While offices are generally equipped with secure measures to protect a business’ data, it is the home networks of employees that have become easy targets for cyber criminals.

Fortunately there are steps you can take to strengthen your barriers and protect your business data while you and your employees work remotely.

It is critical your entire team follows best practice to protect your business and client data from cybersecurity threats. Exposure to a cyber security breach can lead to significant business interruption, reputation damage and costly litigation.

The following are 5 cyber security practices to help you and your team when working remotely.



1. Protect Your Networks

Allowing your employees to work remotely using their standard home network leaves your organisation vulnerable to a cybersecurity attack. Hackers are more likely to infiltrate home networks so you need to weigh up your access options. Access options include:-

• Virtual Private Network (VPN):- a VPN creates a secure ‘tunnel’ between your business network and an employee’s device. It offers an extra layer of protection, making it difficult for third parties to break through.

• Portals:- a portal is a virtual desktop that your employees can log into to access company data and applications. A portal keeps your business’ information secure in one place. Furthermore, it allows you to restrict access to certain sites and software within the portal.

• Direct application access:- this allows your employees to work remotely within certain applications only. It limits the amount of data at risk. Direct application access is a very low-risk option, however, it may also hinder team  productivity.

2. Use Two-Factor Authentication

Two factor (2FA) authentication requires an employee to log into business accounts or portals by verifying their identity using a code sent to their mobile device or email address.

Even if a cybercriminal gets hold of an employee’s password, they still won’t be able to log into any company accounts where 2FA is required. This extra layer of protection is simple yet very effective.

3. Separate Business and Personal Use

If your employees are using business owned devices to work from home, it is prudent to restrict access to certain programs and data.

Many apps have tracking codes or malware that could present a risk to your business. Make sure your employees use business owned devices for work purposes only.



4. Consider Mobile Devices

Smartphones are ubiquitous these days. Most employees use their personal devices when working from home to check emails and use business communication platforms such as Slack, Google Chat and Microsoft Teams.

These devices can present a cybersecurity threat. Make sure your employees use a 2FA system to access these accounts from their mobile devices.

Consider purchasing mobile device management software. Such software will allow you to locate a device and wipe it of any business data in the event the device is lost or stolen.



5. Provide Regular Training

A study by IBM found that human error contributes to 95% of cybersecurity attacks, so employee education is the most powerful way to keep your business safe.

Thorough cybersecurity training should not simply form part of the employee on-boarding process. Provide your team with regular cybersecurity training to ensure they have up-to-date knowledge of the best practices to follow.



Summary

Remote working certainly presents a new set of cybersecurity challenges for small businesses. However, this ‘new’ practice doesn’t have to render your business vulnerable.

By providing staff with relevant and comprehensive training and protecting your networks, you can mitigate many of the cybersecurity risks that come with working from home.