Improve security by loosening control: 4 steps to protecting the new global workspace

The makeup of today’s workforce has changed radically. While it spans some five generations, the majority of workers are digital natives, Millennials and Gen Z born from the 1980s to early 2000s.

The new generations of digital-savvy employees expect a very different work style. The workplace is now where you choose to work, not where you go to work. And for that you need technology that allows you to communicate and collaborate, seamlessly and effortlessly, wherever you want.

This move from office workplace to remote working has been underway for some time. IDC forecast that nearly 75% of the total US workforce would be mobile workers by the end of 2020

That was before recent events, which has resulted in 72% of companies either encouraging or requiring their employees to work remotely, according to our survey1.

And that also means it is here for the long-term, with 77% of employees feeling that companies will be more open to remote working once things return to normal.

So with remote working a permanent feature, now is the time to invest in the systems and methods to make the most of the new way of working. Improve security by loosening control 4 steps to protecting the new global workspace.

IT challenges of remote working

As the majority of people now have to work remotely, there is a rush to make sure that the systems are in place to let them do so, efficiently and effectively. While there are far better tools for remote work than ever before, they are not suited to all.

There are some workers who use proprietary legacy software or use special tools, such as plotters or high-volume scanners. But IT teams need to be aware of a number of key issues when preparing the business for remote working.

New risks of unauthorized access to PCs and data

When you open remote access ports be careful not to increase the security risk and other consequences. Ransomware attackers are looking for such open ports. Make sure you configure the firewall to restrict remote traffic to known sources.

Demands on IT to deliver support for remote workers

IT service desks are under pressure as they face more calls for help from remote users but can’t simply ‘drop by’ to fix problems. Wait times and time-to-repair are growing as remote support tools need to be added or activated.

Better protection from phishing scams and user error

Email is likely to remain the main means of communication for remote employees. It’s a fact that’s not gone unnoticed by hackers who are using messages about current events as bait to fool people into clicking on links in malware. The message needs to be reinforced with employees that not all email is as innocent as it may appear. Companies should, as a minimum, insist that all remote-working employees use an antivirus tool on any machine connecting to the corporate network.

Need to secure devices on potentially risky remote networks

Remote working at scale presents a major security challenge. The network edge now encompasses all remote networks–from out of-office locations to home networks. Where possible, IT teams need to know that those networks are properly set up and secure.

Where company devices are being used, what processes are used to help prevent physical access to valuable company data? If personal devices are being used, what protection is there for preventing computer viruses and malware reaching the core network?

Meeting the threat from this growing device sprawl may mean patching and securing remote endpoints.

Using a VPN to access the corporate network may also help security. But be careful that the sudden growth in traffic doesn’t slow performance and cause service interruptions.

Strengthen security factors for remote access

Add two-factor authentication (2FA) as an additional layer of protection. If users connect to the network through a VPN make sure you are running the latest version of the software on all machines. If you have a security information and event management (SIEM) logging solution, be aware you will have to change the way it is configured.

You can no longer simply block different locations as users may be coming in from anywhere. If you use the cloud, you may have to check that users working remotely have access to the appropriate bandwidth for the work they need to do and videoconferencing.

Make sure IT is in control

One of the key perils in remote working is the same as the office—human error. Wherever they work, your people will make mistakes. They might click something they shouldn’t, send sensitive information to the wrong person or disable protections that get in their way. Most mistakes will be unintentional, some are not. So when it comes to securing the new global workspace, IT has to think differently