The Office Workplace ln The Hybrid World

Uploaded on 2023-03-02 in TECHNOLOGY--Resilience, NEWS-Cybersecurity News, FREE TO VIEW

The pandemic has redefined what it means to have a team in the office. In today’s typical work environment, a ‘team’ now involves collaboration between employees across multiple locations and settings.

However, with that comes a new challenge: securing this worldwide office. For example, cyber attacks have risen by 238% since the start of the pandemic and home workers have become the primary target of cyber criminals.

It’s increasingly important for leaders to ensure a consistent office experience regardless of where the workforce is. Enterprise IT governance needs to adapt to this new paradigm with businesses treating management of remote workers as a priority.

The Ability To Work Securely From Anywhere

In the past, corporate IT security would trust every user equally inside their network mainly driven by office-based employees accessing the corporate networking environment from traditionally “safe” locations. As a result of remote working, one key shift that business leaders should consider is “zero trust “networking.  

Zero-Trust Network Access (ZTNA) works by granting access to networks based on the identity of the user and their context (e.g. which applications being accessed). Users are first classified based on their business roles and the levels of access they require. Next, the context of the request is assessed – like where the user is connecting from, through what device, and whether the device is secure. The key aspect of ZTNA is the concept of “never trust, always verify” which means the user access session is continuously verified.

This way, users can access their resources quickly and efficiently, no matter where they are. At the same time, IT leaders can maintain a zero-trust approach across their entire network for enhanced security of vital corporate IT and data resources.

Adopting these frameworks will result in increased agility, resilience and reliability, as well as the ability to prioritize traffic to key applications and securely access SaaS and cloud applications across the Internet. Given the effective access security, it will also provide a good user experience for employees, allowing them to work securely regardless of location.

Deep Understanding Of User Habits & Organizational Needs 

It is critical to strike the right balance between user access management and effective, secure remote access to on-premises resources, hybrid cloud environments, and business applications. But before initiating any policies to do so, leaders need to run a deep audit to continually review and assess their internet-based and cloud-centric application environment and understand how their end-users engage with them. 

Adoption of ZTNA takes some consideration around tailoring the capability to the specific needs of the organization. IT leaders should use this opportunity to question everything, from the organization’s information and communications technology strategy to current IT governance – and, in the process, identify gaps and opportunities to enhance. 

A More Educated Remote User

The single best tactic for keeping confidential data safe is remote user awareness. Keep employees informed – not only about what they should do but also about why they need to do it. And if done right, you’ll set the organization up for success. 

Training materials should focus on the employee’s understanding of the importance of data security and cyber hygiene. Leaders should also consider defining an Acceptable Use Policy, so employees know what websites, apps and networks are permitted for accessing data.

A network with more intelligence at its edge that balances performance with user, device and application security management will be key to navigating the new hybrid way of work and ensuring a ubiquitous office. To succeed in this current era of work, companies must adapt their networking approach to this new distributed environment to avoid putting the productivity of employees and the security of their business at risk.

Samir Desai is VP of product management at GTT

You Might Also Read: 

Building An Identity-First Security Strategy:

____________________________________________________________________________________

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible

 

« The Virtual & Real Cybersecurity Threats In The Metaverse 
Big British High Street Retailer Attacked »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

RCMP Cybercrime Strategy

RCMP Cybercrime Strategy

The RCMP Cybercrime Strategy sets out in an Operational Framework and Action Plan to combat cybercrime.

FAMOC

FAMOC

FAMOC is an enterprise mobile management solution that delivers comprehensive security and management for applications, documents, email, and mobile devices.

CISPA Helmholtz Center for Information Security

CISPA Helmholtz Center for Information Security

The CISPA Helmholtz Center for Information Security is a German national Big Science Institution within the Helmholtz Association. Our research encompasses all aspects of Information Security.

Latvian Information & Communications Technology Association (LIKTA)

Latvian Information & Communications Technology Association (LIKTA)

LIKTA brings together leading Latvian companies, organizations and professionals in the field of Information & Communications Technology

Deep Instinct

Deep Instinct

Deep Instinct provides comprehensive defense that is designed to protect against the most evasive unknown malware in real-time, across an organization’s endpoints, servers, and mobile devices.

ECOS Technology

ECOS Technology

ECOS Technology specializes in the development and sale of IT solutions for high-security remote access as well as the management of certificates and smart cards.

miniOrange

miniOrange

miniOrange is a cloud and on-premise based identity and access management (IAM) solution provider.

Accredia

Accredia

Accredia is the national accreditation body for Italy. The directory of members provides details of organisations offering certification services for ISO 27001.

EU Joint Research Centre

EU Joint Research Centre

JRC is the European Commission's science and knowledge service which employs scientists to carry out research in order to provide independent scientific advice and support to EU policy.

Data Destruction London

Data Destruction London

Data Destruction London offers fast, confidential and compliant expert data destruction services to businesses and organisations in London.

NodeSource

NodeSource

NodeSource helps organizations run production-ready Node.js applications with greater visibility into resource usage and enhanced awareness around application performance and security.

Cympire

Cympire

Cympire significantly increases an organisation’s Cyber Resilience through continuous Training and Assessment. Cyber Security Training Platform. Cloud-based and fully customizable Cyber Range.

AdronH

AdronH

AdronH is a company of Cyber Security consultants. We support companies and public institutions with their digital transformation to new and secure business platforms.

Interlock

Interlock

Interlock are building blockchain-based security products that solve legacy web2 security issues - phishing and social engineering.

Silicon Valley Cybersecurity Institute (SVCSI)

Silicon Valley Cybersecurity Institute (SVCSI)

SVCSI aims to investigate, develop, and promote technical excellence and the best security practices for dependable and secure systems and applications.

CyberForce Global

CyberForce Global

CyberForce Global are at the forefront of start-up technology recruitment in areas including cybersecurity, IT infrastructure, software, fintech, blockchain and more.