Capacity Enhancement Guide for Federal Agencies: Printing While Working Remotely Capacity Enhancement Guide

The increase in teleworking across federal agencies has extended the enterprise perimeter into employees' homes. Expanded telework has created additional security challenges, such as ensuring secure remote access and enforcing remote patch and vulnerability management.1 Printing while working remotely is another security challenge because of the risks posed when agency personnel move data from federal information systems to physical space outside of agency control. These risks include increasing a federal agency's attack surface, reducing the effectiveness of existing cybersecurity controls, and increasing the potential for data loss and exposure. As agencies continue to acclimate to the expanded telework environment, it is important to note that each agency remains responsible for identifying, safeguarding, and managing all records—including hard copies and other printed materials—in accordance with federal laws and regulations.

This Capacity Enhancement Guide details Cybersecurity and Infrastructure Security Agency (CISA) recommendations for developing agency-level policies and procedures related to printing from home while teleworking. Specifically, this guide provides CISA's recommendations on the following topics: (1) developing an agency-wide policy for printer use during remote work, (2) establishing an approval process, and (3) handling, storing, and disposing of printed materials.