Remote Work Security Readiness Checklist

This checklist helps small and mid-sized businesses evaluate their readiness for supporting secure and resilient remote work practices in 2021 and beyond.

🔐 Identity & Access

• ✅ Multi-factor authentication (MFA) is enabled for all users.
• ✅ Role-based access controls (RBAC) are enforced for systems and apps.
• ✅ Former employees' accounts are promptly deactivated and audited.

💻 Device & Endpoint Management

• ✅ All company-owned devices use modern antivirus and endpoint protection.
• ✅ Mobile Device Management (MDM) is applied to company and BYO devices.
• ✅ Device encryption is enabled across all endpoints.

🌐 Network & Connectivity

• ✅ Secure VPN access is configured with restricted privileges.
• ✅ Split tunneling is disabled where not appropriate.
• ✅ DNS filtering and secure gateways are in place.

🧠 User Awareness & Training

• ✅ Phishing awareness training is conducted regularly.
• ✅ Staff know how to report suspicious activity and incidents.
• ✅ Acceptable Use Policies (AUPs) are reviewed and signed annually.

📁 Data Protection & Backup

• ✅ Cloud backups are tested and stored with redundancy.
• ✅ Data Loss Prevention (DLP) policies are enforced.
• ✅ File-sharing tools are secured with audit trails enabled.