Over the past year, many of us learned how to work remotely and how to keep our devices and data secure at home. As offices re-open, you may be moving to a hybrid work environment – spending some time working both in the office and remotely. Below are the top 9 things to keep in mind from MNIT security experts!

1. Physically secure devices at home, and in the office.

Ensure that devices and data are stored securely in locked drawers or file cabinets, away from prying fingers and eyes when not in use. Now that you’re spending some time in the office, you may leave your VPN fob at home, or leave documents in your workspace at the office. If you aren’t traveling and taking your devices with you, make sure you store them safely.

2. Secure devices or data in vehicles in transit, and when you arrive home or get to the office.

Vehicles can be susceptible to break-ins, which could result in your devices or data being stolen, and this could lead to a data breach. Physically secure devices in the vehicle where they are not easily seen. Remember to check your vehicle when you get to work or when you come back home.

3. Screen-lock devices when you step away at your remote and work office.

An unlocked computer or phone can be compromised easily. Use a strong passcode or fingerprint to lock and secure devices. Now is a good time to get back into the habit of always locking your devices when you step away, even at home. 

4. Never leave devices and data unattended in a conference room or public area.

Stepping away for a minute to talk or during a break in a public setting (even your office building) seems harmless enough when others are around, but if devices or information are left unattended, even for just a moment, they can be lost or taken.

5. If you need a badge, remember to bring it to the office and only use it for yourself.

You may not have used your employee badge or ID recently, but remember to have it with you so you can get into your secure work area or other secure facilities. 

6. Be aware of anyone without a badge or escort in a secure area.

Even though it’s exciting to see your co-workers in person, if you see someone who doesn’t have a badge in your office and badges are required, report it to a security or reception desk. 

7. Use a password manager to keep your passwords secure when you work either remotely or in the office.

Get out of the habit of writing down passwords – carrying around that piece of paper is a huge security risk, especially if you work both remotely and in the office. Instead, use a password manager to generate, retrieve, and keep track of long, random passwords. That way you only need to remember one password to access everything.

8. Be on the lookout for suspicious emails and phishing attacks.

Double check each email you receive to ensure the links and attachments are legitimate, and contact the sender using an alternate method to confirm that they actually sent the message you received. Cyber criminals want to steal your information, and phishing attacks can happen at the workplace or at the home office.

9. Connect devices and resources securely.

While working from home, always use secure WiFi and or your organization's Virtual Private Network (VPN) to connect. If you’re on the go, use a mobile hotspot and VPN. At the office, connect directly to your organization's network whenever possible. If you’re in a conference room or other location, connect your phone or laptop to a secure WiFi.