Wednesday, 26 July 2017

How to Protect Company Information When Employees Travel Abroad


5 Tips
The U.S. Transportation Security Administration's ban of certain carry-on electronic devices on inbound flights from 10 Middle Eastern airports puts two concerns top of mind: national security and the risk of fire from lithium batteries in airplane holds. What’s not being discussed, however, is how this will affect corporate security. The restrictions on what is allowed for inspection and seizure under the ban have become nearly impossible to track, putting corporate security at risk for many businesses.

These are our 5 Tips to protect enterprise assets and information for frequent international travelers:
  1. Restrict transportation of anything remotely sensitive on a laptop, mobile phone or portable media device. Any information that, if public, would compromise corporate security should not be contained on travelers’ devices.
  2. Provide travelers with vanilla devices that can connect to sensitive information only via secure tunnels and strong authentication. Organizations should have several extra laptops on hand specifically for business travelers. They should be wiped completely clean so there is nothing to be compromised if they are lost or breached.
  3. Use remote desktop and other virtualisation technologies. These tools can provide an at-work-like experience for travelers without costing the business too much.
    For the 'serious about security' types, these last two tips are for you...
  4. Encrypt all devices and communications paths from top to bottom. Encrypting conceals information by turning it into a code so, if compromised, it would be meaningless to anyone who gains access to it. Of course, information can be decrypted once travelers have arrived at their destination and upon returning home.
  5. Lastly, consider a separate authentication protocol and/or procedure. A clean way to control data loss is to have the end user call to set up access after entering a new country. This access can be revoked when the employees are in transit and reestablished when they have reached their destination and returned to the office.
Regardless of what happens with the device travel ban, companies would be wise to put in place the policies and technology necessary to protect their information when employees are traveling abroad. Some of these are pretty basic security procedures already in place in many organisations. But information is an organisation’s greatest asset and the laptop ban rules are uncertain, so additional precautions should be considered to protect the company.

Contact Depth Travel to find out more