I was on a security panel recently to discuss issues around work from home security. This wasn’t about multi-factor authentication and technical things as much as human factors. In the panel, we discussed the situation when there is a non-employee at home and their ability to see and hear company business. They might even work for a competitor or other interested party. It might be interesting to know how the FBI and IRS handle this, since with a little carelessness, someone might pull sensitive information.