British Organisations Are Unready For Remote Work

Uploaded on 2021-09-15 in TECHNOLOGY--Resilience, FREE TO VIEW

Every industry has been affected in some way since the emergence of Coronavirus. It has changed the way in which we all work and created new opportunities for cyber criminals to target remote workers. Working from home has become  a gateway for such criminals to carry out alternative forms of data theft. 

Now, research reveals that half of UK businesses lack the most basic cyber security skills, prompting urgent calls for employers to take action. 

The research has found that UK businesses are ill-equipped to deal with cyber attacks, despite 60 per cent experiencing one in the last 12 months. The majority of surveyed UK organisations are relying on employee education rather than wider strategy changes to meet the challenges of modern remote work scenarios. 

According to research by ManageEngine, 67 percent of organisations raised employee awareness around security threats and 66 percent provided training on cyber security. According to ManageEngine’s Digital Readiness Survey, which polled more than 300 IT professionals in the UK, employees don’t appear to be fully engaged with these best-practice initiatives and less than half (47 percent) of organisations have adapted their organisational security strategy.  

Another study, carried out by ThycoticCentrify, found that 79% of respondents have engaged in one least one risky activity over the past year. More than a third (35%) have saved passwords in their browser in the last year, a similar number (32%) have used one password to access multiple sites, and around one in four (23%) have connected a personal device to the corporate network.

Most organisations have neither introduced new solutions nor configured their existing architecture to reflect the changing ecosystem, despite the obvious dangers of dealing with a remote workforce. 

  • Only 42 percent monitor employee devices to ensure their security. 
  • 76 percent of IT purchases are being made without direct approval from IT teams, creating a disconnect between them and other departments and opening the organisation up to security vulnerabilities from unpatched software. 
  • 95 percent of companies are planning to continue supporting remote workers for at least the next two years, determining how to adapt and enforce security strategies is critical given the rise in security threats. 
  • 45 percent of organisations have experienced an increase in phishing, followed by increases in account hijacking (38%), social media-based attacks (36 percent) and endpoint network attacks (34 percent).

Key to tackling these emerging threats upfront is placing a renewed focus on the role of the IT leadership in the organisation, according to Chris Windley, Chairman and CEO of the Cyber Security Association. “The level in which IT is embedded within the wider organisation still varies depending on the business. This disconnect, in terms of level of authority and lack of sufficient operating budget, is leading IT professionals to become ‘yes/no people’ as opposed to informed consultants to other teams... There needs to be a more collaborative approach in terms of how the IT team works with the business as a whole, and how it enables access to the right tools and software to ensure cyber and data security, and integrity.”

DBXUK:     Contiuity Central:       Business Cloud:        ITPro:      People Management:  

You Might Also Read: 

Employee Cyber Security Training Is Vital To Reduce Attacks

 

« National Cybersecurity Failings: How Businesses Can Improve Their Security
Germany Accuses Russia Of Electoral Interference »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall And Why Does It Matter

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall And Why Does It Matter

See how to use next-generation firewalls (NGFWs) and how they boost your security posture.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

Vanguard Integrity Professionals

Vanguard Integrity Professionals

Vanguard Integrity Professionals is an independent provider of enterprise security software solutions that address complex security and regulatory compliance challenges.

ForeScout Technologies

ForeScout Technologies

ForeScout delivers pervasive network security by allowing organisations to continuously monitor & mitigate security exposures & cyberattacks.

Organization for Security and Co-operation in Europe (OSCE)

Organization for Security and Co-operation in Europe (OSCE)

OSCE is the world's largest security-oriented intergovernmental organization. Areas of activity include Cyber/ICT security.

EdgeWave

EdgeWave

EdgeWave provides simple but highly effective data security and advanced threat protection in solutions that are affordable, scalable and easy to use.

Stealthbits Technologies

Stealthbits Technologies

Stealthbits Technologies is a cybersecurity software company focused on protecting an organization's sensitive data and the credentials attackers use to steal that data.

Bl4ckswan

Bl4ckswan

Bl4ckswan is a Management Consulting firm specialized in the delivery of information security and compliance services.

Enterprise Ethereum Alliance (EEA)

Enterprise Ethereum Alliance (EEA)

EEA is a member-led industry organization whose objective is to drive the use of Ethereum blockchain technology as an open-standard to empower ALL enterprises.

Strategic Cyber Ventures (SCV)

Strategic Cyber Ventures (SCV)

SCV grow cybersecurity companies that disrupt advanced cyber adversaries and revolutionize the cyber product marketplace.

Defendify

Defendify

We built Defendify to help small businesses navigate the cybersecurity landscape with cybersecurity that is dead simple, affordable, and works around the clock.

Fastcomcorp

Fastcomcorp

Fastcomcorp offers a world-class proactive cyber security defense and risk management consulting. Including Darkweb monitoring and posture assessments.

Evina

Evina

Evina offers the most advanced cybersecurity and fraud protection for mobile payment.

Artifice Security

Artifice Security

Artifice Security will demonstrate real-world attacks on your network, web applications, infrastructure, and personnel to expose your hidden security risks.

Oivan

Oivan

Oivan harnesses the strengths of the web, mobile, cloud, cybersecurity, and blockchain technologies to help our clients to launch transformative digital services.

CyberUp

CyberUp

CyberUp is a nonprofit organization created to strengthen the cybersecurity workforce. We help employers reimagine how they grow and scale their cybersecurity workforce.

Marlink

Marlink

Marlink smartly integrates hybrid, future-ready network solutions so you can benefit from the best available connectivity and IT to accelerate your digitalisation and empower your remote operations.

Cyber News Live (CNL)

Cyber News Live (CNL)

Cyber News Live provide vital information and raise awareness about all things 'cyber' to ensure you stay protected in the digital world.