Remote work
Remote Work Security Policy for Rocket.Chat - this policy applies all employees and contractors.
Purpose
The purpose of this policy is to ensure that Rocket.Chat employees who work remotely maintain the confidentiality, integrity and availability of company assets, data and information. This policy outlines the security guidelines, clear screen and security requirements for remote workers to follow.
Rules
Confidentiality: Remote workers must maintain the confidentiality of company data, information, and assets by following the company's data protection policies. This includes keeping passwords and sensitive information secure and not sharing it with unauthorized parties.
Theft of assets: Employees who work remotely must ensure that their work equipment and assets are secure and protected from theft. This includes using password-protected screensavers, locking their workstations when not in use, applying full encryption on the working device and reporting any loss or theft of assets immediately.
Clear Screen: Employees who work remotely must clear their screens before leaving their workstations. This includes closing all applications, logging out of all systems and locking the screen. This will ensure that confidential information is not visible to unauthorized parties.
Security Guidelines: Remote workers must follow the company's security guidelines for working remotely. This includes using secure networks, avoiding public Wi-Fi, using only the company email and calendar, and avoiding the use of personal devices for work purposes.
Security Requirements: All remote workers must have up-to-date systems and security software, such as the operation system, anti-virus, firewalls and encryption software, installed on their workstations. Remote workers must also keep their security software updated to ensure that they are protected against the latest threats.
Remote Access: Remote workers must use secure remote access solutions, such as virtual private networks (VPNs), to access company systems and data whenever they are not working from their home. Employees must also ensure that their remote access solutions are secure and use strong passwords.
Keep printouts with work data to an absolute minimum and destroy them securely once done. In general, most of your work should be done paperless.
Compliance: Remote workers must comply with this policy and any other relevant security policies and guidelines. Non-compliance with this policy may result in disciplinary action, up to and including termination of employment.
Regular Reviews: This policy will be reviewed regularly to ensure that it remains relevant and effective. Any changes to this policy will be communicated to all employees.
By following these rules and guidelines, Rocket.Chat employees who work remotely can ensure the security of company assets, data and information, and protect the company from security breaches and data losses.
Additional information and recommendations
Here you can find guidelines on how to protect your home network:
How to Set up a Secure Home Network
How to Configure Your Router to Make Your Home Network Really Secure