IT security in the home office: 8 tips

Achieving more IT security in the home office for companies

However, working from home can also have its downsides - keyword "IT security". Hackers are increasingly taking advantage of the fact that many people are working from home. Between January and April 2020 alone, Interpol observed almost one million spam messages, 737 serious incidents caused by malware and almost 50,000 malicious URLs in explicit connection with coronavirus.

If administrators neglect the issue of IT security when working from home, it can quickly turn out to be an expensive nightmare for companies. A study by Allianz Global Corporate & Specialty (AGCS) found that cyber damage caused by external incidents such as DDoS attacks, phishing/malware or ransomware campaigns account for around 85 per cent of cyber insurance claims.

Work seamlessly and productively with IT security, even when working from home

Below are 8 tips on how IT teams can enable seamless and productive working from home while maintaining a high level of IT security.

I. Master the move to the home office

In order to organise the move of employees to the home office securely, there are some elementary points to consider with regard to IT security. These range from the provision of standardised hardware and replacement devices to the provision of an antivirus solution and the adjustment of firewall settings. The internal servers should be prepared for encrypted external access. A standardised software inventory and uniform patch statuses are particularly important. In addition, distribution profiles must be created and Windows updates must be fully installed to ensure IT security in the home office.

II Provide licences quickly and in sufficient numbers

One point that is often neglected concerns software licensing. On the one hand, users should be able to provide the licences required for home office solutions quickly and reliably. On the other hand, IT teams should ensure that home office workstations are not under-licensed and that sufficient licences are available for onboarding.

III Ensure a standardised software version and security features

In order to ensure remote IT security for company networks in the home office, a standardised software inventory and up-to-date security patches at all branch offices are essential. Home offices in particular do not usually have the kind of firewall structure found in companies, making it much easier for unwanted spies or malware to break in. With a centralised endpoint management solution, the latest versions of deployed software and Windows updates can be distributed automatically - even to clients that are only in temporary use and may not be in the domain.

Based on the update database published by Microsoft, home workstations should be scanned regularly for missing updates and patches. Based on the values determined, patches can be distributed smoothly - ideally fully automated and controlled by the administrator.

IV. always create a stable remote connection

A stable, uninterrupted remote connection is essential to ensure that software can be transferred at any time and that the company client and home office PC are always on the same, up-to-date patch status. Software should therefore only install the updates that the individual clients actually need. This saves time and bandwidth.

V. Additionally provide relief with FTPS repositories

When it comes to providing their external computers with updates, many companies face the additional challenge that company lines are extremely busy. With FTPS repositories, which provide software, operating system and Windows patch resources, IT teams can massively reduce the load on the company infrastructure and thus contribute to IT security in the home office.

Alternatively, software updates are not even installed via the company network, but the home office computer receives them directly from the cloud. For example, via a special service that makes important software packages available online and always up-to-date.

VI Optimise your support

IT teams should also be able to provide reliable and prompt support remotely. This gives employees the opportunity to discuss problems directly with the IT department so that no security gaps arise. This can be implemented particularly well using helpdesk software - ideally integrated into a holistic endpoint management solution. In this way, IT can be well supported all round, even when working from home.

VII Make your employees aware of security risks

The "human factor" is still one of the biggest security risks. This also applies to working from home. Employees should therefore be sensitised to the topic of IT security in the home office through training and clear rules. Which email attachments should not be opened? Which links should not be clicked on? What particular risks are posed by social engineering?

VIII Communicate contact persons for emergencies

Remote work also requires contact persons in the event of an emergency. As an employee, what should I do if I cannot connect to the company network, if certain programmes cannot be started or if they cause problems? The IT department should designate contact persons and communicate contact details for such questions.