NIST (National Institute of Standards and Technology) recently updated their guidance for Enterprise Telework and Remote Access Security, DRAFT NIST SP800-46 Rev.1.
As many are aware, security professionals are constantly considering the security ramifications of employees accessing the corporate network from home and other insecure locations. This includes the use of home systems to connect to the network, corporate laptops from remote locations and the potential of infected mass storage device.
This special publication is and update from the previous special publication - SP800-46, Security for Telecommuting and Broadband Communications intended to help organizations understand and mitigate the risks of telework, emphasizing the importance of securing sensitive information stored on telework devices and transmitted across external networks. In addition, it provides recommendations for selecting, implementing, and maintaining necessary security controls in this type of environment.
In the current economic environment and with the potential changes within govenrment, it will be interesting to see how and if telework and remote/SOHO access will become a larger part of an organizations network communication.