Security tips for remote working

The coronavirus outbreak is first and foremost a human tragedy. At the same time it has the potential to have significant impacts on business operations. Ensuring your business operates as close to ‘business as usual’ is therefore crucial.

For this reason, Grant Thornton Luxembourg decided to launch a series of Webinars about different topics around this COVID-19 crisis, the implications for businesses and how to try to deal with it the best way.

Missed our first webinar on Security? Find below tips and best practices from our experts!

Business continuity

We strongly encourage you to establish a plan that encourages the safety of staff, limits spreading of the disease, and ensures business operations are maintained with minimal disruption by considering the key questions cited below and corresponding tips.

• How can you ensure that you can operate with a remote, home working team? Were homeworking solutions already in place?

→ Top Tip: Ensure that you have the ability to manage remote working, business performance, adequate governance, and trainings.

• Have you considered how to transition back to normality once the lockdown period comes to a close?

→ Top Tip: Organise the priorities and the conditions for staff to come back to work based on business criticality and mobility.

• Assuming your Business Continuity Plan (BCP) was hopefully in place, it now is in full swing. Did you foresee the pandemic scenario that we find ourselves in?

→ Top Tip: Update your BCP accordingly, to ensure that lessons learnt are formalised.

Information and Cyber Security

• At home, the physical security level is not the same compared to the office. Family members potentially have access to confidential data.

→ Top Tip: Select and implement compensating controls to reduce the risk of data confidentiality breach.

• COVID-19 crisis is often touching the emotions of people, moreover, people want to be updated about the situation every minute and every hour. Cybercriminals are using these two factors or “opportunities” to target staff and hack organisations. This could lead to data breaches, malware infection, such as ransomware.

→ Top Tip: Select and implement compensating controls to limit the risk of cyber-attack.

• Businesses could be tempted to use unapproved and unsecure tools like Whatsapp, Skype, Facebook, Messenger, Zoom, which is placing the organisation in risky situations and could lead to compliance findings related to GDPR, contractual or other legal obligations.

→ Top Tip: Ensure acceptable usage policies are in place, communicated and enforced.

Are you keen to know more about this topic?

View our Security Webinar recording

Contact our experts Jean-Hubert Antoine (CISO) or Jean-Yves Mathieu (ISO) to learn how we can help you address this critical topic.

SAVE THE DATES - UPCOMING WEBINARS

• 30 April - The management of an PSF in times of crisis: rights and obligations
• 7 May - Privacy: How to stay compliant with the GDPR where personal data is mostly processed virtually

Stay tuned, registration opening soon!