Securing human resources from cyber attack

I see ‘use a VPN’ advice being handed out every time remote working is being discussed. To save overwhelming your data centre internet connections, let me modify that advice: ‘For cloud services (e.g. 365, Google Apps…), point your end users directly at the service provider. Use a VPN for services that can only be serviced from your own data centre’…:

[…] In today’s world, HR users working from somewhere other than the office is not unusual. With this freedom comes the need to secure the means by which they access data, regardless of the network they are using. The best way to accomplish this is to set up a VPN and ensure that all HR systems are only accessible either from inside of the corporate network or from IPs that are connected to the VPN.


Original article here