Top tips for working more securely from home

These days many companies are asking their workers to work remotely. Working remotely can introduce a few new security concerns, especially for people who aren’t accustomed to working away from the office.

Here are some tips on how you can work from home (WFH) more securely.

Your browser does not support video. Install Microsoft Silverlight, Adobe Flash Player, <a href=or Internet Explorer 9." />

Pick a good workspace

There’s a lot of good advice out there about picking a space that’s ergonomically comfortable, and where you can minimize distraction, but there are some security considerations as well.

    Pick a space that’s private. If you’re working at home this may be easier than if you’re working at a coffee shop or library. Select a place where people can’t “shoulder surf”; look over your shoulder at what’s on your screen.

Tip: Be aware of having your back to doors or windows where strangers could peer in.

Tip: Even if you're not connecting to company resources, using a VPN for your internet activity can be more secure.

Keep your data secure

If your device does get accessed or stolen there are some things you can do to help reduce the data they can get.

  1. Use strong authentication to access your device, such as Windows Hello. Either a PIN, fingerprint, or facial recognition, if your device supports that. Learn more
  2. Use multi-factor authentication (MFA) to access any cloud-based resources. MFA utilizes multiple “factors” such as a PIN sent to your mobile device and a password; or a PIN and a facial or fingerprint scan, in order to authenticate you. Usually you only need to use the multiple factors the first time you sign in from a specific device. MFA makes it much harder for others to sign in as you. Learn more

Tip: Most online services, like banks or social networks, also support MFA. You should enable it on those services too, for increased peace of mind.

Keep in touch

  1. Stay in touch with your company while you’re working remotely. Your IT department may have special requests or make new tools available to you. If you suspect that your device or your data has been compromised in any way, notify your IT people immediately so they can investigate and take steps to prevent unnecessary damage.
  2. Now, more than ever, resist the temptation to use unapproved tools or store data outside of company resources. If you need something you don’t have in order to get your job done, ask your IT department or escalate through your management. It’s entirely possible that you’ll discover systems that don’t work well when you’re not at the office. Now is the perfect time to let IT know so you can work through those issues together.
  3. Be alert for phishing emails or phone calls. Criminals try to take advantage of fear and uncertainty by sending email that appears to be from authorities, or company officers, in an attempt to lure you into clicking on malicious links, or providing your private information.

Never click an attachment you weren’t expecting, even if it appears to be from somebody you know. Always best to check back with that person to make sure the attachment is legitimate before you open it.

See also