Collector - April 2021 - 21

that their folks need more training about
how to stay safe at home. "
For instance, your remote security
training could cover:
* Why employees should never connect
to public Wi-Fi.
* How to keep corporate data private in
your home, for example by not letting
your computer screen face a doorway
or window.
* A recent public phishing scheme and
how it could have been prevented.
Tailor your data security training to each
department's needs and responsibilities. " A
blanket security policy and generic security
training will only take organizations so far-
plus, workers are apt to pay better attention
if the security advice is specific and relevant, "
according to the Malwarebytes study.
You could also try placing security
reminder messages on lock screens and
creating a two-way communication channel
between employees and the company's
IT team. Encourage employees to report
anything that looks suspicious, and explain
what that reporting process looks like:
who takes the reports and how quickly you
should submit them.
The cybersecurity arm of the U.S.
Department of Homeland Security, the
Cybersecurity and Infrastructure Security
Agency, found that organizations that don't
use multi-factor authentication for remote
access are more susceptible to phishing
attacks. At the very least, require employees
to use strong passwords. (Read the CISA's
password tips here: http://bit.ly/cisapassword.)
A paperless desk is a secure desk, but this
is tougher to monitor when your employees
are working from home. General Credit
Service has tackled this problem by giving
remote workers whiteboards and dry erase
pens for notes that they must erase each day.
" We don't want them to have papers
sitting around, " O'Callahan said.
When employees are working off-site, it's
difficult, if not impossible, to keep track of
who might be in the same room with them
while they are working or who can see their
computer screen. Make sure they know
that nobody else should use work-issued

COLLECTOR 04.21

equipment except the employee-even if
your 5-year-old is screaming for a TV show
or your teenager has to look up something
for a school project.
" Those are the things that we did tell them
to be conscientious of, " O'Callahan said. " We
ask them to do their best to try to remain in
the proper work environment. "
O'Callahan estimates that he spends 30%40% more time monitoring workstations
and troubleshooting issues than he did when
everyone was in the office. He can remotely
access employees' computers to help them or
monitor their workstation, but twice he's had
to drive to an employee's house to address a
computer problem in person.
" Everything just takes a little longer, " he
noted.

THE ONLY WAY FORWARD
IS THROUGH
The remote workforce may be here to
stay, but the way companies approach
remote security is constantly in flux. The
big question is: do companies understand
which data security investments they
should be making?
" It's questionable, " McManamon said. " I
think a lot of companies understand that there
are requirements they should be meeting, but
are they making progress in achieving the right
level of security? I don't know. "
The reason, however, isn't that companies
are cheap or ignorant. Rather, McManamon
said, " it's that it requires vigilance. And it's
ongoing. There is always a new type of attack
out there, especially with phishing and social
engineering. Companies need to stay up to
date with the latest security technologies that
use advanced machine learning analytics
combined with human intelligence in the
form of 24x7x365 monitoring. In addition,
you have to make sure that you're working
with your end users to make sure that their
training is up-to-date, and they're aware of
these latest and greatest types of phishing
attempts. Your employees are your front-line
defense against attackers. "
Anne Rosso May is the communications director
and editor-in-chief for ACA International.

1

The biggest risks to your
organization stem from
social engineering attacks
and inadequate security
measures.

2

Remote employees
should be using a
VPN with multifactor
authentication to connect
to your system.

3

Train employees on how
to stay safe when they
are working from home, even
if they have had in-office
security education.
21


http://www.bit.ly/cisapassword

Collector - April 2021

Table of Contents for the Digital Edition of Collector - April 2021

Collector - April 2021 - Cover1
Collector - April 2021 - Cover2
Collector - April 2021 - 1
Collector - April 2021 - 2
Collector - April 2021 - 3
Collector - April 2021 - 4
Collector - April 2021 - 5
Collector - April 2021 - 6
Collector - April 2021 - 7
Collector - April 2021 - 8
Collector - April 2021 - 9
Collector - April 2021 - 10
Collector - April 2021 - 11
Collector - April 2021 - 12
Collector - April 2021 - 13
Collector - April 2021 - 14
Collector - April 2021 - 15
Collector - April 2021 - 16
Collector - April 2021 - 17
Collector - April 2021 - 18
Collector - April 2021 - 19
Collector - April 2021 - 20
Collector - April 2021 - 21
Collector - April 2021 - 22
Collector - April 2021 - 23
Collector - April 2021 - 24
Collector - April 2021 - 25
Collector - April 2021 - 26
Collector - April 2021 - 27
Collector - April 2021 - 28
Collector - April 2021 - 29
Collector - April 2021 - 30
Collector - April 2021 - 31
Collector - April 2021 - 32
Collector - April 2021 - 33
Collector - April 2021 - 34
Collector - April 2021 - 35
Collector - April 2021 - 36
Collector - April 2021 - 37
Collector - April 2021 - 38
Collector - April 2021 - 39
Collector - April 2021 - 40
Collector - April 2021 - 41
Collector - April 2021 - 42
Collector - April 2021 - 43
Collector - April 2021 - 44
Collector - April 2021 - 45
Collector - April 2021 - 46
Collector - April 2021 - 47
Collector - April 2021 - 48
Collector - April 2021 - Cover3
Collector - April 2021 - Cover4
http://online.collector.com/collectormagazine/202104
http://online.collector.com/collectormagazine/202103
http://online.collector.com/collectormagazine/202102
http://online.collector.com/collectormagazine/202101
http://online.collector.com/collectormagazine/202012
http://online.collector.com/collectormagazine/202011
http://online.collector.com/collectormagazine/202010
http://online.collector.com/collectormagazine/202009
http://online.collector.com/collectormagazine/202008
http://online.collector.com/collectormagazine/202007
http://online.collector.com/collectormagazine/202006
http://online.collector.com/collectormagazine/202005
http://online.collector.com/collectormagazine/202004
http://online.collector.com/collectormagazine/202003
http://online.collector.com/collectormagazine/202002
http://online.collector.com/collectormagazine/202001
http://online.collector.com/collectormagazine/201912
http://online.collector.com/collectormagazine/201911
http://online.collector.com/collectormagazine/201910/
http://online.collector.com/collectormagazine/201909/
http://online.collector.com/collectormagazine/201908/
http://online.collector.com/collectormagazine/201907/
http://online.collector.com/collectormagazine/201906/
http://online.collector.com/collectormagazine/201905/
http://online.collector.com/collectormagazine/201904/
http://online.collector.com/collectormagazine/201903/
http://online.collector.com/collectormagazine/201902/
http://online.collector.com/collectormagazine/201901/
http://online.collector.com/collectormagazine/201812/
http://online.collector.com/collectormagazine/201811/
http://online.collector.com/collectormagazine/201810/
http://online.collector.com/collectormagazine/201809/
http://online.collector.com/collectormagazine/201808/
http://online.collector.com/collectormagazine/201807/
http://online.collector.com/collectormagazine/201806/
http://online.collector.com/collectormagazine/201805/
http://online.collector.com/collectormagazine/201804/
http://online.collector.com/collectormagazine/201803/
http://online.collector.com/collectormagazine/201802/
http://online.collector.com/collectormagazine/201801/
http://online.collector.com/collectormagazine/201712/
http://online.collector.com/collectormagazine/201711/
http://online.collector.com/collectormagazine/201710/
http://online.collector.com/collectormagazine/201709/
http://online.collector.com/collectormagazine/201708/
http://online.collector.com/collectormagazine/201707/
http://online.collector.com/collectormagazine/201706/
http://online.collector.com/collectormagazine/201705/
http://online.collector.com/collectormagazine/201704/
http://online.collector.com/collectormagazine/201703/
http://online.collector.com/collectormagazine/201702/
http://online.collector.com/collectormagazine/201701/
http://online.collector.com/collectormagazine/201612/
http://online.collector.com/collectormagazine/201611/
http://online.collector.com/collectormagazine/201610/
http://online.collector.com/collectormagazine/201609/
http://online.collector.com/collectormagazine/201608/
http://online.collector.com/collectormagazine/201607/
http://online.collector.com/collectormagazine/201606/
http://online.collector.com/collectormagazine/201605/
http://online.collector.com/collectormagazine/201604/
http://online.collector.com/collectormagazine/201603/
http://online.collector.com/collectormagazine/201602/
http://online.collector.com/collectormagazine/201601/
http://online.collector.com/collectormagazine/201512/
http://online.collector.com/collectormagazine/201511/
http://online.collector.com/collectormagazine/201510/
http://online.collector.com/collectormagazine/201509/
http://online.collector.com/collectormagazine/201508/
http://online.collector.com/collectormagazine/201507/
https://www.nxtbookmedia.com