24x7x365 e360 Client Technical Support: Call (877) 368-4797 opt 9, or

The COVID 19 pandemic has changed the way many of us work. It is estimated that one in four Americans will be working remotely in 2021. Many organizations forced to adapt to remote work scenarios prospered, and according to a recent Gartner survey, 82% of business leaders plan to maintain a permanent fully remote or hybrid workforce going forward. With workers changing work locations, organizations now face a myriad of problems with securing infrastructure, applications, and data accessed from anywhere.

Since the start of the Covid-19 pandemic, the FBI’s Internet Crime Complaint Center has seen a 300% increase in the number of daily cybersecurity complaints and reports. The increase is primarily attributed to the rise in remote workers and the increased risk that remote work presents to an organization’s cybersecurity posture. While a 300% increase isn’t necessarily surprising, it is one that business leaders need to address. Before the pandemic, most employees were limited to the use of company owned devices on company managed networks, which employers could easily monitor and secure. Newly minted remote workers, often unaware of baseline cybersecurity measures, are now relying on home networks, personal electronic devices, and insecure work settings. The new remote worker, in turn, increases an organization’s attack surface. Employers are faced with the seemingly insurmountable task of fully securing countless external devices.

With “work from anywhere” here to stay, how can today’s organizations effectively secure their remote workforce? A good first step is to acknowledge that the environment has changed, and the attack surface has expanded. To curb the increased cybersecurity threats experienced, today’s business leaders need to first understand the implications that shifting to remote work has had on their organizational operations and risk profiles. Once you better understand the secure remote work problem, you are better prepared to embrace and implement the following secure remote work solutions:

Secure Remote Work Policies and Procedures

Organizations must publish updated processes, policies, standards, and guidelines that address new security threats. Strong password policies should be implemented, preferably with passphrases that are unique. Employees need to sign acceptable use policies to know what is and is not allowed on company devices as well as personal devices that are being used to conduct company business.

Multi-Factor Authentication

Multi-Factor Authentication (MFA) is the use of one or more verification methods to prove a user is who they claim they are. The three most prevalent MFA verification methods are:

    1. Something you know, such as a password
    2. Something you have, such as a verification code
    3. Something you are, such as a fingerprint

With something you have, something you know, and something you are combined, we can confirm that an individual is who they say they are. Once authenticated, they are authorized to access an organization’s network, applications, and data.

Secure Access Service Edge – also known as Zero Trust Edge

Technology frameworks such as Secure Access Service Edge (SASE) or Zero Trust Edge (ZTE) have been proven by industry leaders such as Gartner and Forrester, to reduce the overall attack surface of an organization by adopting the principals of Zero Trust Networking. The approach assumes that the network is hostile and creates an encrypted tunnel between the endpoint and applications or data; on-prem or in the cloud. With SASE or ZTE, security is brought closer to endpoints as well as applications, in essence dissolving the legacy static approach of perimeter security and allowing secure remote work.

Security Awareness Training

To allow for secure remote work, people need to be properly trained with the latest tactics, techniques, and procedures to counter emerging threats. Employees do not need to be cybersecurity experts but having a baseline understanding of what a suspicious email looks like can be the difference between junk mail and a breach. Anti-phishing education, coupled with instructor led training, has proven to dramatically increase an organization’s overall cybersecurity posture.

Strategies to Secure Your Remote Workforce
Strategies to Secure Your Remote Workforce

What we have come to realize is that remote work is here to stay. The “work from anywhere” revolution was well underway even before the global pandemic. When it comes to the security of an organization, employees and employers are both responsible. As the permanent remote workforce becomes more popular, business leaders will need to adopt new processes and solutions to maintain a strong security posture across the expanding security perimeter. Organizations that make investments in training people, implement modern security processes, and deploy the right technologies, are best poised to support secure remote work while drawing and retaining talent. Once the organization has the right framework in place, secure remote work will be henceforth known as – work.

If you would like to learn more about how to secure your remote workforce and how it may impact your organization, please contact one of our security experts at advyz@entisys360.com.



 

For more information

Services

Security

Creating a strategy for managing risk and compliance while helping to filter the myriad of cybersecurity technologies

Modern Infrastructure

Empowering your enterprise to its greatest potential through an efficient and secure IT infrastructure

Digital Workplace

Helping businesses keep infrastructure up-to-date, minimizing security risks, and maintaining compliance

Cloud Enablement

Accelerating IT service delivery through the adoption of agile methodologies using systems-oriented approach

Microsoft Expertise

Helping set goals and establishing benchmarks with the successful deployment of Microsoft solutions

Enterprise Managed Services

Best IT practices with design, configuration, implementation, licensing and environmental services

Markets and Market Support Vehicles

Business

Professional services and renowned expertise aligned with the trends and challenges facing a variety of industries

Healthcare

Addressing IT challenges faced by healthcare organizations through trusted services, solutions and relationships

Public Sector

Helping organizations manage costs and high availability while increasing security, compliance and efficiency

Group Purchasing

Industry-leading IT consulting services and technology solutions through a streamlined contracting process

Resource Library

Events

e360 in-person and online events

Solutions Literature

Access content on e360 services

Blog

Read about trending technology

Press Releases

Get official updates about e360

News Stories

Read about industry and e360 news

Media

e360 webinar and podcast content

About e360

Who We Are

Our mission, vision, leadership and team

Accolades

e360 awards and recognition

Privacy

e360's commitment to privacy

Community

e360's commitment to privacy

Careers

e360 career opportunities

Connect With e360

e360 locations and contact resources