Security Basics mailing list archives

Re: Tele-Commuting Risks

From: "aditya mukadam" <aditya.mukadam () gmail com>
Date: Tue, 6 Jan 2009 09:07:15 +0530

John,

My personal view : Telecommuting is great ! Also, at some point in
time and as the company grows telecommuting will be needed. Its just
the matter of time. The more early you start the better because the
more early the less people. The less people the less resources needed
to understand, troubleshoot and fix issues.

Pointers:
* Use SSL/IPSec VPN with no split-tunneling.
* Use 2-factor authentication.
* Start with less critical resources available to Telecommuters and
then as per the comfort level go to the critical resources
connectivity.

Hope this helps.

Thanks,
Aditya Govind Mukadam

On Fri, Jan 2, 2009 at 3:56 PM, John <tornado579 () gmail com> wrote:

Hi All,



Our company is planning to introduce Tele Commuting facilities for all the
employees. Some of the employees work on sensitive information like SSN,
Credit Cards etc.

Our company also regularly undergoes ISO 27001 and SAS 70 audits.



I have the following questions:



Risks Involved in Tele Commuting?


How to prevent information leakage while telecommuting especially when it
comes to PII?


Audit and Compliance issues related to Tele Commuting?




If you have any good web resources or suggestions it will be helpful.



Thanks in advance.

Current thread:

Tele-Commuting Risks John (Jan 02)
- Re: Tele-Commuting Risks HITESH PATEL (Jan 05)
  - RE: Tele-Commuting Risks Andrew Johns (Jan 05)
- Re: Tele-Commuting Risks J. Oquendo (Jan 05)
- Re: Tele-Commuting Risks aditya mukadam (Jan 05)
- Re: Tele-Commuting Risks Charles Hardin (Jan 06)
- <Possible follow-ups>
- Re: Tele-Commuting Risks donald . riggins (Jan 05)
- Re: Tele-Commuting Risks rohnskii (Jan 05)
- Re: Tele-Commuting Risks rohnskii (Jan 05)
- Re: Tele-Commuting Risks rohnskii (Jan 06)