The Office Workplace ln The Hybrid World

The pandemic has redefined what it means to have a team in the office. In today’s typical work environment, a ‘team’ now involves collaboration between employees across multiple locations and settings.

However, with that comes a new challenge: securing this worldwide office. For example, cyber attacks have risen by 238% since the start of the pandemic and home workers have become the primary target of cyber criminals.

It’s increasingly important for leaders to ensure a consistent office experience regardless of where the workforce is. Enterprise IT governance needs to adapt to this new paradigm with businesses treating management of remote workers as a priority.

The Ability To Work Securely From Anywhere

In the past, corporate IT security would trust every user equally inside their network mainly driven by office-based employees accessing the corporate networking environment from traditionally “safe” locations. As a result of remote working, one key shift that business leaders should consider is “zero trust “networking.  

Zero-Trust Network Access (ZTNA) works by granting access to networks based on the identity of the user and their context (e.g. which applications being accessed). Users are first classified based on their business roles and the levels of access they require. Next, the context of the request is assessed – like where the user is connecting from, through what device, and whether the device is secure. The key aspect of ZTNA is the concept of “never trust, always verify” which means the user access session is continuously verified.

This way, users can access their resources quickly and efficiently, no matter where they are. At the same time, IT leaders can maintain a zero-trust approach across their entire network for enhanced security of vital corporate IT and data resources.

Adopting these frameworks will result in increased agility, resilience and reliability, as well as the ability to prioritize traffic to key applications and securely access SaaS and cloud applications across the Internet. Given the effective access security, it will also provide a good user experience for employees, allowing them to work securely regardless of location.

Deep Understanding Of User Habits & Organizational Needs 

It is critical to strike the right balance between user access management and effective, secure remote access to on-premises resources, hybrid cloud environments, and business applications. But before initiating any policies to do so, leaders need to run a deep audit to continually review and assess their internet-based and cloud-centric application environment and understand how their end-users engage with them. 

Adoption of ZTNA takes some consideration around tailoring the capability to the specific needs of the organization. IT leaders should use this opportunity to question everything, from the organization’s information and communications technology strategy to current IT governance – and, in the process, identify gaps and opportunities to enhance. 

A More Educated Remote User

The single best tactic for keeping confidential data safe is remote user awareness. Keep employees informed – not only about what they should do but also about why they need to do it. And if done right, you’ll set the organization up for success. 

Training materials should focus on the employee’s understanding of the importance of data security and cyber hygiene. Leaders should also consider defining an Acceptable Use Policy, so employees know what websites, apps and networks are permitted for accessing data.

A network with more intelligence at its edge that balances performance with user, device and application security management will be key to navigating the new hybrid way of work and ensuring a ubiquitous office. To succeed in this current era of work, companies must adapt their networking approach to this new distributed environment to avoid putting the productivity of employees and the security of their business at risk.

Samir Desai is VP of product management at GTT

You Might Also Read: 

Building An Identity-First Security Strategy:

____________________________________________________________________________________

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible


 

« The Virtual & Real Cybersecurity Threats In The Metaverse 
Big British High Street Retailer Attacked »

ManageEngine
CyberSecurity Jobsite
Check Point

Directory of Suppliers

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

Cyber Security Centre - University of Hertfordshire

Cyber Security Centre - University of Hertfordshire

The Cyber Security Centre provides training, teaching and research in the fast paced topics of cyber security and digital forensics.

Invensis Learning

Invensis Learning

Invensis Learning is a professional training and certification company providing IT Service Management, IT Security & Governance, DevOps, Cloud Computing and Digital Awareness training.

VMRay

VMRay

VMRay delivers advanced threat analysis and detection that combines a unique agentless hypervisor-based network sandbox with a real-time reputation engine.

Digital Ship

Digital Ship

Digital Ship provides news, information, conferences and events focused on digital ship systems, information technology and security relating to maritime operations.

Fair Isaac Corporation (FICO)

Fair Isaac Corporation (FICO)

FICO provides analytics software and tools used across multiple industries to manage risk, fight fraud, optimize operations and meet strict government regulations.

Herbert Smith Freehills

Herbert Smith Freehills

Herbert Smith Freehills is a leading professional services including data protection and privacy.

Intelligent Business Solutions Cyprus (IBSCY)

Intelligent Business Solutions Cyprus (IBSCY)

IBSCY Ltd is a leading provider of total IT solutions and services in Cyprus specializing in the areas of cloud services and applications, systems integration, IT infrastructure and security.

Harel Mallac Technologies

Harel Mallac Technologies

Harel Mallac Technologies is a Mauritian organisation that has developed a strong network of ICT specialists with nodes across the African continent.

DeviceAssure

DeviceAssure

DeviceAssure enables organizations to reliably identify counterfeit and non-standard devices with a real-time check on a device's authenticity.

ThreatReady Resources

ThreatReady Resources

ThreatReady reduces an organization’s risk by delivering cyber security awareness training based on the latest, state-of-the-art learning science to effectively drive long-term cyber-safe behavior.

Seigur

Seigur

Seigur is an IT consultancy business providing flexible legal and cyber security services for IT and data privacy programmes.

Edgio

Edgio

Edgio provides unmatched speed, security, and simplicity at the edge through globally-scaled media and applications platforms.

Armata Cyber Security

Armata Cyber Security

Armata exists to bring Cyber Security to all people – from home users and SMBs to large enterprises. We believe all users have the right to an affordable yet effective Cyber Security solution.

SecureLake

SecureLake

SecureLake (formerly Managni) is one of the most trusted US-based IT security and infrastructure companies.

SecuCenter

SecuCenter

Secucenter is a trusted partner for SOC services, offering security expertise in a cost-effective way.

MOBIA Technology Innovations

MOBIA Technology Innovations

MOBIA is a leading Canadian business transformation partner, helping businesses across industries evolve.