Organizations that typically don’t have employees working from home are facing a new reality as a result of the pandemic: Potentially inconsistent or incomplete policies that could lead to unintended security consequences. In the wake of recent breaches like GE, Chubb
and Marriott
it’s ever-more important to ensure employees are trained to address security risks when they’re operating without the protection of their corporate networks or physical security.
Complementary Remote Working Policy Template and Employee Training Kit
As part of our initiative to provide complimentary best practices guidance during the COVID-19 pandemic, we created a free kit containing a remote working policy template and an employee training presentation. You can use it to quickly publish best practices security guidance to your internal teams.
In the Remote Working Policy & Employee Training Kit, you’ll find:
- Remote working procedures, including those for password management, clear desk, software, data control, backup and maintenance
- Acceptable use policies for equipment, internet and email
- A customizable PowerPoint presentation intended to educate employees on best practices for day-to-day home working, support, spam and phishing, and other important topics
Pandemic Risk Management Resources from Prevalent
Our pandemic planning resources are distributed regularly and can be freely modified to reflect your unique needs. The templates incorporate best-practice baselines across industries, and therefore can be integrated with any other risk assessment content you may be using.
Here’s what’s been published already:
- Business Resilience Assessment template
- Building a Business Resilience and Continuity Plan video
- Plantillas de comunicación para clientes, personal, cadena de suministro y prensa
- Remote Working Policy & Employee Training Kit
And here’s what’s coming next:
- Ejemplos de árbol de escalada para vías de comunicación interna eficaces
- Directrices críticas para el descubrimiento y mapeo de terceros
- Definiciones y criterios del objetivo de punto de recuperación (RPO) y del objetivo de tiempo de recuperación (RTO) para los servicios críticos.
- Políticas más amplias de resiliencia empresarial que abarcan objetivos clave de gobernanza
How Secure Remote Working Relates to Third-Party Risk Management
Ensuring that your own internal security practices are in line with those of industry regulations and frameworks demonstrates your organization’s agility in dealing with crises, and will help address requirements in any risk assessment you are asked to complete.
Prevalent está aquí para ayudar
Es probable que la crisis del coronavirus le plantee retos sin precedentes, tanto personales como profesionales. Esperamos que estas plantillas le faciliten un poco el trabajo ante esta crisis. Cuando se calmen los ánimos, recuerde que Prevalent también le ofrece una sesión gratuita de una hora de consultoría sobre la madurez del programa de gestión de riesgos de terceros. Mientras tanto, todos en Prevalent le deseamos buena salud a usted, a su equipo y a sus familias.
Nota de la Redacción: Este artículo se publicó originalmente en Prevalent.net. En octubre de 2024, Mitratech adquirió la empresa de gestión de riesgos de terceros basada en IA, Prevalent. El contenido se ha actualizado desde entonces para incluir información alineada con nuestras ofertas de productos, cambios normativos y cumplimiento.
