BMN Blog

APR 08

The National Institute of Standards and Technology has published a bulletin that provides several key reminders for people who have had to shift to working remotely as a response to COVID-19. The guidance, which can be found in full at the link below, summarizes previous NIST guidelines for working safely when out of the office.

Key takeaways from the latest bulletin include:

  • Developing and maintaining a security policy to govern remote work, to include having tiered levels of remote access
  • Leveraging multi-factor authentication when available
  • Using verified encryption technology to secure communication and sensitive data stored on client devices 
  • Maintaining an effective patch management program, in particular for those devices which will be access remotely

The bulletin concludes by reiterating the increased risk of providing remote access to staff and reminding organizations that it is important to create an effective balance between staff productivity and the management of risk when allowing access to remote workers. Medical practices should also consider their requirements under the HIPAA Security rule when developing their remote access policies to ensure that any technologies leveraged are compliant. While there has been a slight relaxation for certain safeguards in response to COVID-19, medical practices should consider their long-term approach to compliance when implementing any technology that provides remote access.

https://csrc.nist.gov/CSRC/media/Publications/Shared/documents/itl-bulletin/itlbul2020-03.pdf

Nic Cofield is the Director of Client Services with Jackson Thornton Technologies.

Bookmark and Share
Powered by Bondware
News Publishing Software

The browser you are using is outdated!

You may not be getting all you can out of your browsing experience
and may be open to security risks!

Consider upgrading to the latest version of your browser or choose on below: