Published on March 19th, 2020 📆 | 2895 Views ⚑
0Cyber security vital for working from home, says mid-tier
As staff are increasingly encouraged to work from home to counteract health concerns surrounding coronavirus, Grant Thornton has recommended accountants ensure their home networks are as secure as possible.
Grant Thornton technology advisory partner, Matthew Green, told Accountants Daily that there are many risks associated with working from home that could give cyber attackers access to a firmâs private information.
âIf Iâm the IT guy or the person who is in charge of looking after the [corporate] network, I know what Iâm looking after and Iâve got a view of what Iâm managing from a security perspective,â Mr Green said.
âWhereas once I give everyone permission to work from home and actually encourage them to do so, my attack surface [for hackers] has just increased potentially exponentially outside the traditional office network environment.
âYouâre reliant on your home Wi-Fi to provide your connection to the internet so you can get your email and log onto your cloud applications and do the work that you are normally doing,â he added.
âBut what we have there is a real mixed bag in terms of how these home networks are set up and configured, how much knowledge the users have of their home network, and how to have a secure home network.â
The human element
According to Mr Green, the use of work laptops and devices at home can generally be safe since IT staff can set up a Virtual Private Network (VPN) to mitigate risks by creating a âsecure tunnelâ for work-related data.
However, he believes staffâespecially staff who do work on home computers and personal devicesâshould still be consistently trained on good cyber security.
Mr Green said that, although many might see cyber security training at work as a chore, it can provide the awareness and skills to increase home security and make it safer to work from home.
âAs users, we really should want to do [security training] because heaps of us want to use our home computers for really sensitive stuff,â Mr Green said.
âThat work-based training can apply directly to home; itâs things like having good passwords, having anti-virus and anti-malware software installed, itâs patching devices and upgrading the software when it becomes available, and knowing how to spot a dodgy email.
â[These are] some pretty basic things that could actually make quite the difference.â
He believes that any organisation that is not training staff on cyber security is ârunning a huge riskâ, and that good cyber health for a firm does not exclusively come from the technology.
âThe defensive mechanisms from a security perspective are often seen as just technology, but the reality is that people are as much a defensive mechanism as the technology,â he said.
âIf we look at recent data breach statistics, employee behaviour is a key contributor to data breaches.
âThe human element is a really strong factor in causing breaches or, flipping it around, if weâre training them and theyâre aware, defending against a data breach or a hack.â
Regular training sessions on how to spot dodgy emails and generate strong passwords, coupled with cyber health checks, are the best ways for organisations to keep information safe, Mr Green added.
â[Accountants] need to know what risks theyâre exposed to and how well they are or arenât prepared from a technical perspective,â he said.
â[Training sessions] donât have to be long and arduous, they can be short and bite-sized these days⌠and really suited to the modern-day attention span.
âItâs got to be part of a program for every organisation. Itâs just part of doing business now.â
Cyber security vital for working from home, says mid-tier
Last Updated: 19 March 2020 Published: 19 March 2020
window.fbAsyncInit=function(){FB.init({appId:320913864680410,status:true,cookie:true,xfbml:true});};(function(d,debug){var js,id='facebook-jssdk',ref=d.getElementsByTagName('script')[0];if(d.getElementById(id)){return;}
js=d.createElement('script');js.id=id;js.async=true;js.src="https://connect.facebook.net/en_US/all"+(debug?"/debug":"")+".js";ref.parentNode.insertBefore(js,ref);}(document,false));
Source link
Gloss