I'm looking for advice on how to ensure cybersecurity for my remote team, especially since we have employees working from home using their personal devices and connecting to the internet over public Wi-Fi. I'm curious about what realistic security measures we can implement to keep our data safe without going completely overboard with enterprise solutions. What setups have others found effective?
4 Answers
It really depends on the data you're trying to protect. If you're looking into securing documents or preventing data leaks, you might want to consider Zero Trust Network Access (ZTNA) as a good solution.
The best approach is to use a VPN with multi-factor authentication (MFA). Just remind your remote users to connect their printers via USB because they won’t be able to print while on the VPN. I've transitioned to a hybrid setup with Microsoft Entra, which works great for remote employees logging in with their Microsoft accounts.
Getting security right on personal devices can be really tricky, especially when people are hesitant to let the company software on their own machines. In the past, I found that users were okay with installing antivirus programs on their laptops, but it definitely depends on individual comfort levels.
A comprehensive security posture assessment can really help before allowing anyone to authenticate. You can set requirements like OS patches within the last 30 days and have antivirus up-to-date. If they don’t meet these, give them instructions to fix before connecting.
That's where enterprise browsers come in handy. Instead of pushing for full A/V or other security tools, you can just ask users to install a specific browser or extension that gives access to company resources while keeping them secure.