Infrastructure to Support Remote Work
INFRASTRUCTURE AT THE HOME
- Upgrade your internet speed to improve both downloading and uploading information.
- Get a second connection only for business to avoid contending with other users on the network.
- Use a small at-home SD-WAN appliance to significantly improve performance even on a single connection. Doing so will help:
- Prioritize outbound business traffic vs household traffic
- Load balance across two connections for better performance
- Improve edge security (if the SD-WAN appliance supports it)
- VPN access back to the corporate network leveraging corporate’s firewall and infrastructure
- Improved VPN performance by using all available bandwidth
- Endpoint protection is must-have software on any device. Protect against viruses and malware without the luxury of a next-gen firewall. (Although Windows Defender has improved, it is not a substitute for enterprise-grade corporate endpoint solutions.)
- Add-on to endpoint protection with DNS Protection, providing a safety net from clicking malicious links or websites by filtering out known threat sites and signatures.
- Utilize VPN access if corporate firewalls are in place. Enterprise firewalls are significantly more powerful than anything an end-user will have at home and helps enforce corporate security policies wherever work happens.
INFRASTRUCTURE AT THE OFFICE
UCaaS/CCaaS eliminates equipment requirements and the need to update configurations. Outside of updating E911 to a user’s new location, UCaaS and CCaaS functionality is one of the easiest ways to transition employees to WFH. Desk phones can be used at home or employees can opt for softphone functionality directly off of their computers.
- WFH users can easily access cloud-based storage environments over the public internet.
- Cyberattacks prey on the limited security afforded by remote work. Having a means for rolling back changes, spinning up backups, or protecting against ransomware and malware is essential to maintaining business continuity.
- Routing end-users back to the corporate network through VPN Capable Firewall gives critical protection through enterprise firewall and access to on-prem infrastructure.
- The latest development in Zero Trust secure networking, Secure Access Service Edge (SASE) provides much greater granularity in the characteristics of a user that authenticates and grants access to the network. Once applications transition to the cloud and users access SaaS programs over the public internet, how are you protecting that traffic? A Web Application Firewall is designed to protect HTTP and filter content bound for the web service, further protecting users accessing over the public internet.
- Email security that integrates with SaaS mail services such as Office365 or G-Suite protects your corporation from users falling for phishing emails or impersonations.
- During times of crises, hardware like PCs and laptops can be hard to obtain and distribute. Desktop-as-a-service (DaaS), Remote Desktop Protocol (RDP) and Virtual Desktop Infrastructure (VDI) solve this by enabling WFH employees to use their own equipment to connect and access all their business apps. Spinning up virtual machines and virtual servers is significantly faster and more scalable than any physical hardware-based solution, and especially useful as headcount increases or decreases.