Organisation's data can only be processed on a predefined, trusted network, or by using a VPN service defined by the organisation.
For example, a coffee shop's Wi-Fi network is often either completely unencrypted or the password is easily accessible to everyone. In this case, the information sent online is vulnerable to spyware. A VPN connection encrypts information regardless of network settings.
Remote workers have their own operating guidelines, which are monitored. In addition, regular training is provided to staff to identify threats to information security arising from the use of mobile devices and remote work, and to review the guidelines.
When working remotely, the employee must follow the following guidelines:
Definition of the classification of permitted work, working hours and information to be used and definition of the internal systems and services to which the teleworker is granted access.
Arranging suitable equipment and storage for teleworking if the use of personal equipment beyond the control of the organization is not permitted.