Organizations that typically don’t have employees working from home are facing a new reality as a result of the pandemic: Potentially inconsistent or incomplete policies that could lead to unintended security consequences. In the wake of recent breaches like GE, Chubb
and Marriott
it’s ever-more important to ensure employees are trained to address security risks when they’re operating without the protection of their corporate networks or physical security.
Complementary Remote Working Policy Template and Employee Training Kit
As part of our initiative to provide complimentary best practices guidance during the COVID-19 pandemic, we created a free kit containing a remote working policy template and an employee training presentation. You can use it to quickly publish best practices security guidance to your internal teams.
In the Remote Working Policy & Employee Training Kit, you’ll find:
- Remote working procedures, including those for password management, clear desk, software, data control, backup and maintenance
- Acceptable use policies for equipment, internet and email
- A customizable PowerPoint presentation intended to educate employees on best practices for day-to-day home working, support, spam and phishing, and other important topics
Pandemic Risk Management Resources from Prevalent
Our pandemic planning resources are distributed regularly and can be freely modified to reflect your unique needs. The templates incorporate best-practice baselines across industries, and therefore can be integrated with any other risk assessment content you may be using.
Here’s what’s been published already:
- Business Resilience Assessment template
- Building a Business Resilience and Continuity Plan video
- Communication templates for customers, staff, the supply chain and press
- Remote Working Policy & Employee Training Kit
And here’s what’s coming next:
- Escalation tree examples for effective internal communication paths
- Critical third-party discovery and mapping guidelines
- Recovery point objective (RPO) and recovery time objective (RTO) definitions and criteria for critical services
- Broader business resilience policies encompassing key governance objectives
How Secure Remote Working Relates to Third-Party Risk Management
Ensuring that your own internal security practices are in line with those of industry regulations and frameworks demonstrates your organization’s agility in dealing with crises, and will help address requirements in any risk assessment you are asked to complete.
普瑞瓦特可提供帮助
冠状病毒危机可能会给您带来前所未有的个人和职业挑战。我们希望这些模板能让您在危机面前的工作变得轻松一些。一旦尘埃落定,请记住 Prevalent 公司还提供一小时的免费第三方风险管理计划成熟度咨询。与此同时,普瑞公司全体员工祝您、您的团队和家人身体健康。
编者按 本文最初发表于 Prevalent.net. 2024 年 10 月,Mitratech 收购了人工智能第三方风险管理公司 Prevalent。此后,我们对内容进行了更新,以纳入与我们的产品、监管变化和合规性相一致的信息。
