Table of Contents
Remote work has permanently changed the cybersecurity landscape. When everyone worked in an office, companies could control the network, the devices, and the security tools. At home, you're on your own network with your own devices — and potentially sharing it with family members, smart home devices, and guests.
Cybercriminals know this. Attacks targeting remote workers increased by over 300% since remote work became mainstream. You're not just protecting yourself — you're protecting your employer's data, your clients, and your livelihood.
This guide covers what you actually need to do — not overwhelming theory, but practical steps you can implement this week.
Secure Your Home Network
Your home router is the front door to everything connected to it — your work laptop, your family's devices, and your smart home gadgets.
1. Change your router's default admin password — routers ship with default passwords (often 'admin/admin') that attackers know. Log into your router (usually 192.168.1.1) and change this immediately.
2. Keep your router firmware updated — manufacturers release security patches for routers just like they do for computers. Check for updates in your router's admin panel.
3. Create a separate guest network for work — if your router supports it, put your work devices on a separate network from your family's devices and smart home equipment. This limits what an attacker can access if one device is compromised.
4. Use WPA3 encryption if available — check your router's Wi-Fi security setting and use WPA3 or at minimum WPA2. Avoid WEP (it's broken).
5. Disable WPS — Wi-Fi Protected Setup is a convenient feature with a known security vulnerability. Turn it off in your router settings.
Work Device Security
If your employer provides a work device, follow their security policies strictly. If you use a personal device for work:
1. Never mix personal and work accounts on the same browser profile — use separate browser profiles or a dedicated browser for work
2. Enable full disk encryption — FileVault on Mac, BitLocker on Windows. If your laptop is stolen, encrypted data is unreadable without your password
3. Enable automatic lock after 1-2 minutes of inactivity — you may have family members, guests, or be in public
4. Keep your OS and applications updated — especially your VPN client, browser, and any work software
5. Install reputable antivirus software — Windows Defender is good for Windows users, Malwarebytes is a solid addition for Mac users
6. Never connect work devices to public USB charging stations — these can be used to install malware ('juice jacking'). Carry your own charger.
Working from Coffee Shops and Public Spaces
Public Wi-Fi is a real risk — not a theoretical one. Coffee shop networks are unencrypted, meaning anyone on the same network can potentially see your unencrypted traffic.
When working from public Wi-Fi:
1. Use your company VPN if provided — this encrypts your traffic on the public network
2. If no company VPN, use a personal VPN — Mullvad or ProtonVPN are reliable options
3. Stick to HTTPS websites — check for the padlock in your browser address bar
4. Avoid accessing sensitive systems — don't log into banking, HR systems, or process sensitive client data on public Wi-Fi if avoidable
5. Use your phone's hotspot instead — your cellular connection is far more secure than coffee shop Wi-Fi. Most phone plans include hotspot data.
Video Calls and Collaboration Tools
Video calls are now where sensitive business conversations happen. Security matters here too.
1. Use waiting rooms on Zoom and Teams — always enable meeting waiting rooms so you can vet attendees before they join
2. Never share meeting links publicly — posted Zoom links are regularly hijacked by uninvited participants
3. Be aware of your background — check what's visible behind you before important calls. Sensitive documents, whiteboards, second monitors with confidential data are all risks
4. Watch for phishing through collaboration tools — attackers increasingly target Slack, Teams, and Discord with phishing links. Just because a message comes through Teams doesn't mean it's safe
5. Lock screens when walking away — even at home, get into the habit
Key Takeaways
- Change your router's default admin password and keep firmware updated
- Create a separate network for work devices away from smart home gadgets
- Always use a VPN on public Wi-Fi — or use your phone's hotspot instead
- Never mix personal and work browser profiles or accounts on the same device
- Enable full disk encryption so stolen laptops can't be read
Frequently Asked Questions
With proper configuration yes — change the default router password, use WPA2/WPA3, keep firmware updated. Home Wi-Fi with these basics is significantly more secure than public Wi-Fi.
Yes, usually. Employers have the right to monitor company-owned devices and can typically see website visits, application usage, and communications on company accounts. Assume anything on a work device is visible to your employer.
Check your company's policy. Many employers provide MDM (mobile device management) software that they require on personal phones used for work — this gives IT some control over the device. Know what you're agreeing to before installing.
Reusing passwords across work and personal accounts. If your personal account gets breached and you use the same password for work, attackers can access company systems. Use unique passwords for everything — a password manager makes this effortless.
What's Next?
Check our home network security checklist to make sure your router is properly configured. And if your employer doesn't provide security training, consider asking — it benefits both of you.