Keys to Overcoming the Challenges of Remote Worker Security

Keys to Overcoming the Challenges of Remote Worker Security

Remote working no longer conjures images of someone wearing pajamas and sipping the world’s biggest cup of coffee while occasionally making phone calls. More and more employees are working remotely all or part of the time, taking advantage of the flexibility enabled by today’s technologies.

It’s more than just working from home or from a customer site. Remote working also means getting an early start on the day’s tasks and preparing for a presentation. It means working until 9 pm to make up for time spent at soccer practice or a doctor’s appointment. It means tying up loose ends and sending follow-up emails during the train ride home.

It’s a win-win for employees who want the freedom to work anytime and anywhere, as well as employers who want to keep employees happy while maintaining a high level of productivity. But the downside of remote working is that it can create serious security and compliance risks. According to Shred-it, 86 percent of executives believe remote working increases the risk of a data breach.

From the employer’s perspective, enforcing security policies for user accounts, applications and devices is more difficult with a remote workforce. A 2018 Apricorn survey found that one-third of employers have experienced a data breach or loss that was directly attributed to remote working. Overall, 95 percent of organizations are still struggling to achieve an acceptable level of security with their remote workforce.

Of course, employees aren’t always living up to their end of the deal when it comes to security. Use of public Wi-Fi networks is common despite awareness of the risks. Data is often stored on private devices, USB sticks and file-sharing applications that aren’t visible to security tools. Many remote workers admit to breaking security policies and shadow IT is an ongoing problem.

Although 63 percent of organizations have remote workers, the majority (57 percent) don’t have a remote work policy, according to a report from Upwork. This needs to change if organizations expect to plug security holes and satisfy increasingly complex compliance requirements.

The keys to successful implementation of a remote work policy are communication and training. All remote workers should know that the policy applies to them, regardless of how much time they spend working outside the office. But they also need to be trained in security best practices for passwords, logging into the network (ideally, using multifactor authentication), accessing resources, sharing and storing data, using Wi-Fi networks, and identifying and reporting security threats and incidents. Organizations should also provide a list of approved applications and tools that meet user needs but are also secure.

Again, remote workers need to do their part. They should separate all work-related data from personal data, using different applications and, when possible, different devices. Avoid using the same passwords for work accounts that you use for personal accounts. Most importantly, use common sense. Don’t use public Wi-Fi, don’t leave your devices unattended, and only open emails, files and links from trusted sources.

Developing a comprehensive remote work policy that accounts for all factors involved in security and compliance is a complex process. Let us help you create and implement a policy that allows your organization and employees to take full advantage of remote working while minimizing risk.


Just released our free eBook, 20 Signs That Your Business is Ready for Managed ServicesDownload
+