Use a different and secure password for each account. Complex passwords can already fend off a large part of threat vectors. Nowadays, security experts recommend complex passwords that consist of a long string of numbers, upper and lower-case letters and special characters. A complex ten-character password, for example, is hard to brute force and will take years to crack.
Protect your router and your WLAN against unauthorized access and keep its software up to date. Wherever possible, activate 2FA (two-factor authentication), and you contribute to a safe working environment and at the same time to a good balance between security and usability. This means for RoamsysNext solutions that once 2FA is enabled, users keep their usual password, but they will install a dedicated authentication app on a mobile device. Common authenticator apps are Google Authenticator or LastPass Authenticator. Then the settings of the Launchpad need to be opened, click “Settings > Account Security”, enable “App authentication” and enter the given code in the app. With the next login the user is asked to insert a code from the authenticator app, and that’s it.
For secure remote access always use a VPN (Virtual Private Network). Since not all VPNs are set up in the same way, more secure options such as L2TP (Layer 2 Tunneling Protocol) with IPSec (Internet Protocol security) also exist. Another common option is to connect via the RDP (Remote Desktop Protocol). Use unencrypted, public WLAN connections (e.g. in a park or train) for business purposes only in combination with activated VPN. If in doubt, connect via the mobile network or via your smartphone as a hotspot (LTE). Ideally, you should always store data on the central systems of your institution and not locally. If you still want or need to store data locally, make regular backups of the data. Store unused devices safely and protect them from unauthorized access.