skip to log on skip to main content
VoiceOver users please use the tab key when navigating expanded menus

Working from home:
tips for organisations

Working from home has become the norm for many people, which means it’s never been more important to work securely and maintain visibility over where corporate and customer information is stored and shared. 


Working from home can be a great time to build capability

Your leaders are no doubt concerned about protecting information and systems as you work remotely. Your staff might also feel more exposed to cyber threats when working outside the office environment.

Educate your team in cyber security practices, such as detecting scam messages and managing information to ensure security and privacy is maintained for both customers and your organisation.

Make a P.A.C.T

It’s important to secure our workplace virtual valuables in the same way we do our physical ones.

One way to do this, is by making a P.A.C.T.


before sharing your personal information

Step 1

Ask yourself, do I really need to give my information to this website or this person? If it doesn’t feel right, don’t share it.


Step 2

Pause and consider Information Classification

Does your organisation have an information classification approach? Do staff understand what can be shared with whom and through what channels?

Talk about social media, collaboration tools etc. and decide what’s right for your organisation. Ensure staff protect and transfer information in safe ways.

Remember that USBs and other forms of “removable media” can be easily misplaced or corrupted with malware by inserting them into devices that aren’t secure. An option is to disable media reading or only allow media such as an encrypted USB supplied by your organisation.


two layers of security with multi-factor authentication

Step 1

Use multi-factor authentication for an extra layer of security to keep your personal information safe.


Step 2

Activate Multi-Factor Authentication

Wherever possible turn on or look to implement multi-factor authentication for important tools like remote access systems and resources (including cloud services).This will provide an additional layer of security, and takes pressure off poor password management.

Call out

suspicious messages

Step 1

Be aware of current scams. If an email, call or SMS seems unusual, check it through official contact points or report it.


Step 2

Call out when it’s not quite right

Make sure staff know what to do if their device is lost or stolen or they experience a cyber or information security incident.

It’s important you can quickly respond to events and this is only possible if staff have an easy way of reporting concerns.

Turn on

automatic software updates

Step 1

Set your software, operating system and apps to auto update to make sure you get the latest security features.


Step 2

Turn on patching

Ensure your systems, including Virtual Private Networks and firewalls, are up to date with the most recent security patches. This will ensure your systems have the latest security software on them.

Other important steps to protect
your information and systems

Control Access

Apply a Virtual Private Network (VPN). VPNs allow remote users to securely access your organisation’s network, such as email and file services.

VPNs create an encrypted network connection that authenticates the user and/or device, and encrypts data in transit between the user and your services.

Whitelist Software

Ensure staff only use approved software and applications. Staff working from home may attempt to use different software to help them when away from the office environment.

Information Protection

It’s important to know where your information is stored and how it is shared to protect it from, and where necessary, enable a response to potential data loss or cyber compromise events.

Secure Devices

Devices used for working outside an office environment are more vulnerable to theft and loss.

Ensure staff understand the risks of leaving their own or their organisation’s devices unattended, encourage them to keep devices somewhere safe and to lock them when they’re not being used to prevent unauthorised access.

More information

For additional controls, review the Australian Government’s Signals Directorate Essential Eight. These represent strategies to mitigate cyber security incidents in a prioritised list to assist organisations in protecting their systems.

For more information and tips on how to be safe online, visit ANZ security hub.

You may also be interested in

Working from home tips for individuals

Bringing our work practices of information handling and cyber security into our homes. 

Learn more

How to be safe online

Stay on top of the latest online safety tips to help you keep yourself and your money secure.

Learn more

Contact us, we're here to help

Report a lost or stolen card

Find out how

Learn more about our ANZ Fraud Money Back Guarantee

Received an ANZ hoax or suspicious message?

Call out anything suspicious relating to your ANZ banking by reporting it to us. 

Send us an email

Report fraudulent or unusual activity

Personal Banking Customers:
13 33 50  +61 3 9683 8833

Business Customers using ANZ Transactive:
13 70 28  +61 3 8693 7153 

This information seeks to raise awareness and provides general information only. It may be necessary or appropriate  to ensure that measures are taken in addition to, or in substitution for, the measures presented having regard to your particular personal or business circumstances.