Looking for Guidance on Setting Up Secure Remote Access on a Small Company Network

Hello Everyone :hugs:,

I’m contacting you in order to get some direction and counsel regarding a project I’m working on right now. I oversee IT for an insignificant company that employs roughly 50 people.

In order to support our increasingly mobile workforce, we’ve been thinking about introducing a more safe remote control solution for our network recently.

Basic VPN access is what we now have set up, but we’ve run across a number of problems, including erratic connectivity and security concerns. We are searching for a scalable, secure, and reliable solution that can meet our expanding requirements.

I’d want to hear opinions on the following specific points:

Suggested Technologies: Which hardware or software would you suggest for safe remote access? We are aware of ZeroTier, WireGuard, and OpenVPN. The advantages and disadvantages of these any other methods would be useful.

Best Practices: When establishing and maintaining an encrypted remote access system, what are some guidelines that we ought to adhere to? :thinking: Are there any typical traps to watch out for? :thinking:

Techniques for Authentication: Right now, our authentication method is simple: a username and password. Should we think about putting multi-factor authentication (MFA) into place? :thinking: If yes, which trustworthy MFA products work well with remote control platforms? :thinking:

User Management: As we expand, what are the most effective strategies to keep an eye on user access and privilege controls? :thinking: What resources or tactics would you suggest? :thinking:

Security Concerns: What sophisticated security measures, beyond the fundamentals, can we take into account to shield the networks and data from possible threats? :thinking:

Scalability: What should we consider as our company grows to make sure our remote monitoring solution can grow with it? :thinking:

I also checked this :point_right: https://www.business.com/articles/secure-remote-access-mlops

Thank you :pray: in advance for your help and support.