Remote Working Guidelines
Here are some remote working guidelines and best practices to make working from home safe, secure and fun:
- Securing remote access through “Multi-Factor Authentication” (as defined under NYDFS’s cybersecurity regulation) and VPN connections;
- Locking down devices so applications cannot be added or deleted by users, and installing appropriate security software, including for endpoint detection and response, and mobile device management;
- Considering mitigating steps, such as compensating controls, where personal devices are necessary;
- Configuring conferencing applications to limit unauthorized access and ensuring employees have guidance on the secure use of the applications;
- Reminding employees not to send “nonpublic information” (as defined) to personal email accounts and devices;
- Reminding employees to be alert for phishing and fraud emails, and revisiting training thereon;
- Considering updating authentication protocols, especially for key actions like security exceptions and wire transfers; and
- Coordinating with critical vendors to determine how they are adequately addressing new risks.
Make #WFH a productive and efficient experience, most important stay safe and well!