Many organizations are taking security risks when supporting work from home
- Published: Thursday, 04 June 2020 07:48
Bitglass has released its 2020 Remote Work Report, which analyses how organizations have adjusted to support remote workers amidst the COVID-19 pandemic.
A survey for the report shows that many organizations are struggling to adjust to the new normal. 41 percent have not taken any steps to expand secure access for the remote workforce, and 50 percent are citing lack of proper equipment as the biggest impediment to doing so. Consequently, 65 percent of organizations now enable personal devices to access managed applications.
When asked what their organizations are primarily concerned with securing while employees work remotely, 65 percent of respondents said securing network access. This was followed by securing access to SaaS apps like Slack (55 percent) and bring your own device/personal devices (55 percent). When it comes to the most concerning threat vectors for remote work, respondents cited malware (72 percent) and unauthorised user access (59 percent).
“This research indicates that many organizations are not implementing the security measures necessary to protect their data in the current business environment,” said Anurag Kahol, CTO of Bitglass. “For example, while respondents said that the pandemic has accelerated the migration of user workflows and applications to the cloud, most are not employing cloud security solutions like single sign-on (SSO), data loss prevention, zero trust network access, or cloud access security brokers. On top of that, 84 percent of organizations reported that they are likely to continue to support remote work capabilities even after stay at home orders are lifted. To do this safely, they must prioritise securing data in any app, any device, anywhere in the world.”
Key findings include:
- Malware is the most concerning threat vector, with 72 percent of respondents citing it as their top concern.
- From a remote work perspective, the application types that organizations are most concerned about securing include file sharing (68 percent), web applications (47 percent), and video conferencing (45 percent).
- At 77 percent, anti-malware is the most-used tool to secure remote work. However, this and other tools like single sign-on (45 percent), data loss prevention (18 percent), and user and entity behaviour analytics (11 percent) are still not deployed widely enough.
- 63 percent of respondents said that remote work was likely to impact their compliance with regulatory mandates; 50 percent named GDPR, specifically.