Serving Colorado's Counties

Technical Update 46 - Data Security for Telecommuters

September 8, 2020

The COVID-19 Pandemic forced many businesses and organizations to embrace telecommuting almost overnight. While telecommuting was a popular benefit with employees and employers alike before the pandemic, the rapid move to telework has led to some challenges. One of which is maintaining the security and integrity of company data and networks with so many workers logging in remotely.

Increased Risks

There are three ways telecommuting employees expose data and networks to risk.

  1. Open Wi-Fi Networks – Employees who telecommute may think nothing of logging into an unsecured Wi-Fi network on their company-issued phone or laptop; however, hackers often target these networks with keylogging software and malware. Once compromised, the telecommuters’ device can then infect your entire network.
  2. Non-authorized users – Once a company device has left the office, the company has no control over who has access to it. Risks range from device theft to use by a family member who accidentally or unknowingly erases essential information.
  3. Altering/Not Updating Security Settings – Security software (e.g., antivirus, antimalware) installed on company equipment needs to be up-to-date and frequently used to be effective. Remote devices may have outdated virus/malware definitions, or the user may have altered security settings to bypass company firewalls on restricted sites. Either of these things can create a hole in network security that can be easily exploited by hackers.

Protect Data

While telecommuting does pose security threats, there are steps you can take to mitigate them.

  1. Acceptable use policies – Draft a policy that covers where company-issued equipment can be used and that restricts device access to only the employee. Make sure the terms of the policy are known and acknowledged before an employee begins telecommuting.
  2. Encrypt data – Set up a virtual private network (VPN), which allows data and internet traffic to be encrypted. It also lets you limit which parts of the network remote employees can access. Also consider encrypting and routinely backing up all data on remote devices in case the device is lost or stolen. Commercial encryption software is available from numerous vendors.
  3. Automate security – Whenever possible, make security automatic. For instance, set antivirus/antimalware software to update and scan automatically. Also, require all employees to have a strong alphanumeric password that expires at regular intervals. Limit the ability to change security and firewall settings on company-issued machines to administrative access only.

What this Means to Counties

As employees have exchanged the business office for the home office in record numbers this year, it is vital to beware of the security risks that come with telecommuting. Educating yourselves and your employees is the most important step in creating a secure network. For more information, please contact CTSI’s at 303 861 0507.

A PDF of this Technical Update is available here.

News & Updates

Technical Update vol. 25 no. 8 -Use of Drones

Inquiries about the liability in the use of drones (unmanned aerial vehicles) continue to grow as interest in the use of drones rises. Members of the Colorado Counties Casualty and Property Pool (CAPP) should be aware that your CAPP coverage excludes aircraft operations, and the use of drones falls under this language. So, if you […]

Read More
Technical Update vol. 25 no. 7 - Healthy Families and Workplaces Act Coverage Broadens in 2021

The Healthy Families and Workplaces Act (HFWA, S.B. 20-205, July 12, 2020) signed into law by Governor Polis last year contains provisions that expand paid sick leave in 2021. Who is Covered? The HFWA applies to all Colorado employers with 16 or more employees in 2021. Coverage expands to employers of any size in 2022. […]

Read More
Technical Update vol. 25 no. 6 - Colorado Healthy Families and Workplaces Act Extends Paid Sick Leave for COVID-19

Colorado passed SB20-205, also known as the Healthy Families and Workplaces Act (Healthy Families Act), in July 2020. The Act made changes to Colorado’s paid sick leave statutes and provided for COVID-19-specific sick leave. The Act consists of two COVID-19 related sections. First, it requires Colorado employers to comply with the federal Emergency Paid Sick […]

Read More
Technical Update vol. 25 no. 5 -Take Steps to Prevent Winter Slips and Falls

According to the Occupational Safety & Health Administration (OSHA), slips, trips, and falls cause the majority of general industry accidents and 15% of accidental deaths. Each winter, CTSI receives multiple incident reports about county employees being injured by slipping and falling while working in icy conditions. Many of these injuries could be prevented by wearing […]

Read More
January: Glaucoma
Read More