How To Stay Secure While Working Remotely

Secure Your Home Network

When working from home, it’s important to ensure that your home network is properly secured. The tips below can help you strengthen your network’s security. You can usually find specific instructions in your router’s user manual or on the manufacturer’s website.

  • Use a strong, unique Wi‑Fi password: A robust password helps prevent unauthorized users from connecting to your network. Refer to your router’s manual if you need help changing it.
  • Enable WPA3 encryption: WPA3 (Wi‑Fi Protected Access 3) is the most secure wireless encryption standard currently available. Turning it on helps protect your data from potential cyberattacks.
  • Keep your router’s firmware up to date: Install firmware updates regularly and enable automatic updates if your device supports them. These updates often patch security vulnerabilities.
  • Change your router’s default admin password: This is different from your Wi‑Fi password. Many routers ship with generic default login credentials, which makes them easy for attackers to guess. Updating this password significantly improves your network security.

Keep Your Accounts Secure

Protecting your accounts is essential. Follow the best practices below to keep your information safe:

  • Use strong, unique passwords for every account: Reusing passwords increases the risk that multiple accounts could be compromised at once.
  • Store your passwords in a trusted password manager:
    • Password managers allow you to remember just one master password while securely storing the rest.
    • They help you generate long, unique passwords for each account without having to memorize them.
    • Be sure to use a very strong master password and enable a highly-secure MFA option for your password manager. This is the key to protecting all your stored credentials.
    • Examples of password managers include 1Password, Bitwarden, KeePass, Dashlane, or RoboForm
  • Always use Multi‑Factor Authentication (MFA) on every account: MFA is required for your OC account and provides an extra layer of protection in case someone obtains your password.
  • Be cautious with unexpected MFA prompts: Only approve MFA requests that you initiated. If you receive an MFA notification you did not trigger, contact IT Security immediately. This may be a sign someone is trying to access your account.

Protect Sensitive Data and Information

Safeguarding college‑related and personal information requires using technology responsibly and following OC's policies and standards. By following these practices, you help protect both college and personal information from unauthorized access, data breaches, and other security risks.

  • Only Use OC Devices for Sensitive Work
    • Only use your OC-provided device whenever accessing sensitive college information.
    • Sensitive information includes (but is not limited to) student records, employee data, financial information, confidential emails, and internal documents.
    • Refer to the Standard for Security Classification of College Information to understand how OC defines low, medium, high, and very high‑risk data.
  • Protect Your Personal Data
    • Avoid using OC devices and services to store or access personal accounts, personal files, or non‑work‑related services.
    • For guidance on acceptable incidental personal use, review the Use of Information Technology Resources policy.
  • Encryption and Storage Requirements

Keep Your OC Devices Digitally Secure

Below are practical steps you can take to help protect your device from viruses, data loss, and unauthorized access.

  • Ensure automatic updates are working properly: Verify that system and application updates install successfully. Regular updates provide essential security patches that keep your device protected against new threats. If you notice your device having any issues running automatic software updates, please contact the IT help desk or submit a general IT service request.
  • Use only OC‑approved apps and services: To keep institutional data secure, make sure you are using tools that meet OC’s Use of Information Technology Resources policy.

Keep Your OC Devices Physically Secure

Physical security is just as important as digital security. Even the strongest passwords, encryption, and antivirus tools can’t protect your data if someone can simply walk up to your device and access it.

  • Store work devices in a secure location: Unattended devices are vulnerable to tampering, theft, or unauthorized access.
  • Always lock your device when stepping away: Make it a habit to lock your screen anytime you leave your device, even for a moment.
    • Here is one of the quickest and most effective ways to prevent unauthorized access:
      • Use this keyboard shortcut on Windows to quickly lock your device: Windows Key + L
      • Use this keyboard shortcut on macOS to quickly lock your device: Ctrl + Cmd + Q
  • Be mindful of who can see your screen: Whether at home, in public, or on campus, avoid viewing sensitive information where others may be able to see your display.
  • Report lost or stolen devices immediately: Prompt reporting helps IT take action to protect your data and the organization’s systems.
    • If your device was lost, let us know immediately by submitting an IT service request or contacting the IT help desk (1-250-862-5605).
    • If your device was stolen, let us know immediately by submitting an IT service request or contacting the IT help desk (1-250-862-5605) and we will supply you with the serial number, which you will use to file a police report for the stolen equipment.

For more information on device security, please view OC's Standard for Securing computing and mobile device storage.

Watch Out for Scams and Phishing

Be cautious of unexpected password reset requests and avoid “urgent” emails asking for personal or account information.