Zoom Security Advice from the GCISO (Updated)
Update, April 02:
This advice was originally distributed on April 01 and has been updated today following agency feedback. Paragraphs 8, 9, 10 and 13 (now 9, 10, 11 and 14) have been slightly amended to make the advice clearer to follow.
We may further update this advice in the future as the situation changes. We will notify you if this occurs.
This paper sets out the Government Chief Information Security Officer’s advice to public servants on important security settings when using Zoom remote conferencing services for official New Zealand Government business, either within a public-sector organisation, or when collaborating with partner agencies.
This advice was originally issued to the public sector but given the rapid adoption of Zoom it may be useful for all nationally significant organisations.