Working remotely presents unique challenges for information security because remote work environments don't usually have the same safeguards as working on-campus. When an employee is at the office, they are working behind layers of preventive security controls. While not perfect, it is harder to make a security mistake while at the office. However, when computers leave campus and people work remotely, new risks arise for the University and additional safeguards and vigilance is essential. For more details see the Fredonia Secure the Human Reference Guide.
Risks and Best Practices
- Social Engineering
- Protect your Accounts and Passwords
- Secure Your Home Network
- Protect Your Devices
- Secure Connections
- Protect University Data
- Family and Guests
- Policies
Social Engineering AnchorSocial Engineering Social Engineering
Social Engineering | |
Social Engineering |
...
- Always Use strong passwords or passphrases whenever possible. The key to strong passwords is to make them long; the more characters you have the better. These are called passphrases: a type of strong password that uses a short sentence or random words. For more about passphrases see our article for Passphrases on Answers.
- Make sure each of your accounts has a separate, unique password. Never reuse passwords across multiple systems and do not share your password with others.
- Can't remember all of your passwords/passphrases? Consider using a password manager to securely store all of them for you.
- Set up two-factor authentication whenever possible. The University utilizes Azure multi-factor authentication for many critical and sensitive systems. Learn about Azure Multi Factor Authentication.
NOTE: This is a good time to review your second factor devices to make sure you can login to your protected services remotely. - Do not use your eServices credentials (email/password) for other non-work related services (e.g. Facebook, Dropbox, etc.).
...