Corporate security while working internationally
December 18, 2012 7:11 AM Subscribe
My company has a security policy against using their equipment outside the U.S.A. What steps can I take to get them to make an exception for me?
posted by puddleglum to technology (13 answers total)
I work for a financial services software company, and my job is well-suited to working remotely. My goal is a lifestyle of global travel—if all goes according to plan, I'd like to explore a single place with my SO for 2–9 months, then move somewhere else.
Corporate policy forbids bringing their equipment outside the U.S.A. They've made exceptions before—on short-term, emergency bases—and I'd like to find out if they'll make a [long-term, semi-permanent] exception for me. So I'm looking to write a proposal outlining the details of my plan and the security steps I'm willing to take to make it work.
What I need help with is:
1. What is the purpose of their restriction on international travel in the first place? Are there security risks unique to non-U.S. network access, or are they just concerned about the lack of IT/helpdesk infrastructure?
2. What steps can I take to demonstrate that I take security seriously and will go above and beyond standard security protocols to keep their data and equipment secure? What would it take for them to regard my working from Ushuaia or Addis Ababa or Kuala Lumpur as a great idea?
Standard security measures include—
– The computer doesn't leave my possession unless its locked in my own room.
– I use only private, password-protected networks with WPA encryption, and never a public hotspot.
– I follow recommended procedures for frequency of password changes and password strength.
– The VPN uses two-factor authentication with an RSA token that generates a new password every minute or so.
– My laptop hard drive is encrypted & requires a password to even boot up.
Brainstorming about "enhanced" security—
– Would it help if I promised to only use wired internet, and not Wi-Fi connections?
– I could ask for a computer with no corporate data or software at all on it except the VPN and Remote Desktop—and remote-connect to computers physically housed at headquarters.
– I could get a notebook lock.