Ethisphere Executive Vice President Craig Moss is also Director – Content and Tools for the Cyber Readiness Institute, of which Ethisphere is a champion. Given the sudden shift of many companies around the world to remote and work-from-home setups for employees who are able, and that shift’s significant impacts on legal and compliance professionals, we will be occasionally cross-promoting CRI’s content here.

Cybercriminals are using the COVID-19 pandemic to take advantage of remote workers to steal your personal and professional information. To protect yourself in this growing threat environment and new security reality, outlined below are simple dos and don’ts to be more cyber ready.

Since the start of the COVID-19 pandemic, everybody has learned to do three simple things to stay healthy. Wash your hands for 20 seconds. Don’t touch your face. Stay 6 feet apart. Sure, it took some behavior change, but you’re probably used to it after a few weeks. You need to take the same “can-do” attitude in changing simple behaviors regarding how you use your computer, tablet and smartphone.

[Read the previous article in the “Securing a Remote Workforce” series]

Cybersecurity takes a collaborative community effort, similar to what is required to fight the coronavirus. So, please share this guide with your co-workers, family and friends.


  • Use separate passwords/passphrases for work and personal use – ideally at least 16 characters
  • Update all software on all devices regularly – ideally on a weekly basis
  • Use Multi-factor Authentication (whenever possible)


  • Click on links or attachments in emails from senders your can’t verify
  • Send financial or personal info by email until you’ve called to verify the transaction
  • Use USBs, public computers or Wi-Fi (if at all possible)

Look for more advice and tools from the Cyber Readiness Institute (CRI) in the coming weeks. We are committed to being a key resource in helping small and medium-sized enterprises (SMEs) balance remote work and cybersecurity. To access additional guides on cyber readiness for remote workers, visit

To learn more about our free Cyber Readiness Program and how to become a Cyber Leader and to access additional guides on cyber readiness for remote workers, visit

About the Expert:

Craig Moss is an Executive Vice President at Ethisphere. Previously, he was Chief Operating Officer of CREATe Compliance and the Center for Responsible Enterprise And Trade ( At Ethisphere, he is responsible for developing Leading Practices, a program designed to help companies and their suppliers reduce the risks associated with trade secret theft, counterfeiting, piracy, and corruption.

He has developed definitive guides for organizations including World Bank Group’s International Finance Corporation and the United Nations. Mr. Moss is an Executive Advisor for Social Accountability International (SAI) and previously led Social Fingerprint®, a program helping companies and their supply chains implement sustainability practices. Previously, Mr. Moss founded Global Access Corporation, where he led more than 3,000 business development projects in 50 countries.

About the Cyber Readiness Institute:

The Cyber Readiness Institute is a non-profit initiative that convenes business leaders from across sectors and geographic regions to share resources and knowledge that inform the development of free cybersecurity tools for small and medium-sized enterprises (SMEs). The self-guided, online Cyber Readiness Program is available in Chinese, English, French, Spanish, Portuguese, Arabic, and Japanese. To find out more, visit