skip to log on skip to main content
VoiceOver users please use the tab key when navigating expanded menus

Working from home:
Tips for Organisations

Working from home has become the new norm for many people, which means it’s never been more important to work securely and maintain visibility over where corporate and customer information is stored and shared. 

 

Published March 2020

 

Working from home can be a great time to build capability

Your leaders are no doubt concerned about protecting information and systems in this new world. Your staff might also feel more exposed to cyber threats when working outside the office environment.

Educate your team in cyber security practices, such as detecting scam messages and managing information to ensure security and privacy is maintained for both customers and your organisation.



Make a P.A.C.T

It’s important to secure our workplace virtual valuables in the same way we do our physical ones.

One way to do this, is by making a P.A.C.T.

Pause

before sharing your personal information

Step 1

Ask yourself, do I really need to give my information to this website or this person? If it doesn’t feel right, don’t share it.

 

Step 2

Pause and consider Information Classification

Does your organisation have an information classification approach? Do staff understand what can be shared with whom and through what channels?

Talk about social media, collaboration tools etc. and decide what’s right for your organisation. Ensure staff protect and transfer information in safe ways.

Remember that USBs and other forms of “removable media” can be easily misplaced or corrupted with malware by inserting them into devices that aren’t secure. An option is to disable media reading or only allow media such as an encrypted USB supplied by your organisation.

Activate

two layers of security with two-factor authentication

Step 1

Use two-factor authentication for an extra layer of security to keep your personal information safe.

 

Step 2

Activate Multi-Factor Authentication

Wherever possible turn on or look to implement multi-factor authentication for important tools like remote access systems and resources (including cloud services).This will provide an additional layer of security, and takes pressure off poor password management.

Call out

suspicious messages

Step 1

Be aware of current scams. If an email, call or SMS seems unusual, check it through official contact points or report it.

 

Step 2

Call out when it’s not quite right

Make sure staff know what to do if their device is lost or stolen or they experience a cyber or information security incident.

It’s important you can quickly respond to events and this is only possible if staff have an easy way of reporting concerns.

Turn on

automatic software updates

Step 1

Set your software, operating system and apps to auto update to make sure you get the latest security features.

 

Step 2

Turn on patching

Ensure your systems, including Virtual Private Networks and firewalls, are up to date with the most recent security patches. This will ensure your systems have the latest security software on them.

Other important steps to protect
your information and systems

Control Access

Apply a Virtual Private Network (VPN). VPNs allow remote users to securely access your organisation’s network, such as email and file services.

VPNs create an encrypted network connection that authenticates the user and/or device, and encrypts data in transit between the user and your services.

Whitelist Software

Ensure staff only use approved software and applications. Staff working from home may attempt to use different software to help them when away from the office environment.

Information Protection

It’s important to know where your information is stored and how it is shared to protect it from, and where necessary, enable a response to potential data loss or cyber compromise events.

Secure Devices

Devices used for working outside an office environment are more vulnerable to theft and loss.

Ensure staff understand the risks of leaving their own or their organisation’s devices unattended, encourage them to keep devices somewhere safe and to lock them when they’re not being used to prevent unauthorised access.

More information

For additional controls, review the Australian Government’s Signals Directorate Essential Eight. These represent strategies to mitigate cyber security incidents in a prioritised list to assist organisations in protecting their systems.

For more information and tips on how to be safe online, visit ANZ CyberSecure or download Cybersecurity working from home (PDF 297KB)

You may also be interested in

Working from home securely

Learn how ANZ is facing the security risks arising from the COVID-19 pandemic. 

Learn more

Working from home tips for individuals

Bringing our work practices of information handling and cyber security into our homes. 

Learn more

Contact us, we're here to help

Report a lost or stolen card


Call us anytime on  1800 033 844

If you're overseas call  +61 3 8699 6955 

Learn more about our ANZ Fraud Money Back Guarantee

Received an ANZ hoax or suspicious message?

Call out anything suspicious relating to your ANZ banking by reporting it to us. 

Send us an email

Report fraudulent or unusual activity

Personal Banking Customers:
13 33 50  +61 3 9699 6908

Business Customers using ANZ Transactive:
13 70 28  +61 3 8693 7153 

This information seeks to raise awareness and provides general information only. It may be necessary or appropriate  to ensure that measures are taken in addition to, or in substitution for, the measures presented having regard to your particular personal or business circumstances.