An official website of the United States government
Here's how you know
A .gov website belongs to an official government organization in the United States.
A lock (lock ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

News | Oct. 15, 2020

Securing Your Home Office

Throughout the past year, home offices have become the new norm for many U.S. Government employees. This represents new opportunities and efficiencies—plus, who doesn’t love taking calls in your sweats?! But with increased flexibility comes increased risk. The rapid transition to telework is a hacker’s dream, so it’s important to make sure the devices you’re using are protected against cyber threats.

Follow these simple and effective steps to make sure your home office is secure:

  1. Update your computer software as soon as you see updates available.
  2. Install virus and spyware protection on all your devices and perform regular scans.
  3. Navigate your email inbox with a questioning eye. Verify the email is coming from a reputable source before you click the link in the message.
  4. Download collaboration service or video conferencing apps, directly from the manufacturer’s website.
  5. Use a different password for each account and avoid using the same password you had five years ago. Change it up — add some numbers and special characters.
  6. Disable the feature that allows web browsers to remember your passwords. Secure your passwords in a password manager.
  7. When possible enable multi-factor authentication for the sites you’re navigating and using to store your documents and personal information.
  8. Enable automatic updates on your web browsers and disable unsafe plug-ins or extensions. 

Visit our technical guidance page for more detailed cybersecurity advisories

NSA Cybersecurity publishes guidance to provide National Security Systems (NSS), Department of Defense (DoD) and Defense Industrial Base (DIB) network owners and administrators with mitigation guidance to secure their networks. This guidance is also available for the public to read and put into practice when applicable.