Security in the home office

Working from home means you're the last line of defense. Here's how to make your home setup as safe as the office.

Why the home office has different risks

In the office, many invisible layers protect you: firewall, managed devices, servers in the data protection zone, an IT team that pushes patches. At home you're closer to the outside world - the private Wi-Fi, family members, the shared printer. Most home risks are mundane and covered by a few simple reflexes.

01

Router password & WPA3

The single device that routes everything to the internet. Change the default password, enable WPA3, allow firmware updates.

02

Separate, don't mix

Work phone and work laptop stay work-only. No family logins, no private USB sticks, no shared cloud storage.

03

Screen hygiene in shared spaces

Sensitive calls behind a closed door. Lock the screen when stepping away - even at home. Family and visitors see more than you think.

Your home network - the five duties

Change the router admin password: the default admin/admin is in every attacker script.
Wi-Fi password long and unique: at least 16 characters, no family name.
WPA3, or at least WPA2 (never WEP).
Guest Wi-Fi for visitors and IoT: Smart TV, robot vacuum, baby monitor do NOT belong on the same network as your work laptop.
Enable automatic firmware updates - most routers support it.

The work device - what's allowed, what's not

✅ What it's for: working.

❌ Please don't:

Private downloads (movies, games, "just a quick" tools)
Family logins for streaming services or similar
USB sticks of unknown origin - not even "just for a PDF"
Software installs without IT approval

The work device is a prepared workplace, not a personal PC. That separation protects you, your data, and the company.

Screen sharing often shows more than intended: open Outlook, browser tabs with personal info, reported phishing mails. Before you share: pick the specific window, not the full screen. Close sensitive tabs.

For sensitive calls (HR conversations, financial data):

Close the door.
Tell family/roommates briefly.
Use a headset, not the speaker.

Printing and paper

Home printers are often unsecured and on Wi-Fi. Sensitive documents - print at home as little as possible, and pick them up immediately when you do.

Paper with personal data:

Don't toss in normal household waste.
Use a shredder at home or back in the office.
Until then, store in a locked drawer.

Real case - home network as entry point

An employee has a smart vacuum in the living room, reachable through the manufacturer's cloud. A critical vulnerability in the vacuum allows attackers to pivot into the home network. From there they reach the work phone. With a separated IoT Wi-Fi, the attack would have died at the vacuum's network.

Separating "work" from "IoT/family" at the network level is a 10-minute measure with large impact.

The simple rule

In the home office, you are your own IT manager for the last 10 meters. Three reflexes - separate devices, secure the network, screen hygiene - cover 90 % of the risk.

Training catalogue

See more modules

12 modules covering phishing, MFA, compliance, and remote work.

View catalogue →

Member area

With quiz and certificate

Track progress, complete the quiz, get your PDF certificate.

Sign in →

Ready to take awareness seriously?

30-minute demo. We'll show you a real phishing campaign, a quarterly report, and the NIS2 mapping - for your industry.

Book a demo →Contact us