sb-au logo
Story image

Securing remote workforces at scale

23 Mar 2020

Article by Wavelink (a Fortinet distributor) managing director Ilan Rubin.

Business continuity plans (BCPs) are being reviewed and put into action to protect Australian businesses as the outbreak of COVID-19 starts to affect the economy. For many businesses, BCPs are designed to help the organisation recover after a single disastrous event. Therefore, they don’t always include ways to support a workforce operating remotely for an extended time. Doing so requires a strong focus on security to avoid adding further challenges for businesses to cope with during uncertain times.

One of the key issues of transitioning to a remote workforce is helping employees who are used to working in a physical office get set up to work from alternate locations, often their homes. This can create networking and security issues depending on the employee’s existing set-up.

When employees aren’t used to working from home, their home networks generally aren’t secured to a corporate standard. This creates vulnerabilities that cybercriminals can leverage. During times of disruption and uncertainty, cybercriminals become especially active because they know there will be plenty of security gaps they can take advantage of.

Every company’s BCP should start with a strong security posture that protects the organisation and its employees regardless of whether they’re working from physical offices or from remote locations.

There are six key steps organisations should consider when transitioning on-site employees to remote locations:

1. VPN and endpoint security: VPN connectivity to corporate networks reduces the risk of a successful cyberattack or information breach.

2. Multifactor authentication: this basic security measure can make it harder for cybercriminals to use stolen credentials to access corporate networks. This could include a secure authentication token that can be used to provide an additional layer of authentication.

3. Persistent connectivity: some workers require more reliable connectivity because of the nature of their roles. These workers can be supported by preconfigured wireless access points that connect to the corporate network through a reliable, secure tunnel.

4. Secure telephony: Voice over IP (VoIP) phone solutions can ensure secure communications and let workers communicate as though they were in the office, using the corporate phone network.

5. User and device authentication: a central authentication service can let remote workers securely connect to network services at scale. This solution should support single sign-on services, certificate management, and guest management.

6. Advanced perimeter security: a next-generation firewall can secure the perimeter and provide advanced threat protection, including analysing malware and other suspicious content. This element must be scalable to prevent bottlenecks that reduce productivity for remote workers.

Organisations should have comprehensive BCPs in place regardless of external circumstances, such as COVID-19, because the nature of disasters is that they’re difficult to predict. Given many knowledge workers could theoretically work from home indefinitely with the right tools in place, it’s essential for organisations to make sure they can do so securely. This type of resilience will help organisations survive and even thrive during any potential lockdown or escalation of the current crisis, as well as cope well with any future scenarios.

Download image
Why shifting workforce demographics requires updated management
Globalisation; a younger workforce; remote working trends - the landscape of the modern workplace has changed forever. And businesses could be in for a shock if they don't manage it properly.More
Story image
Interview: Mimecast channel director on new partner programme and consolidation in the channel
Craig McGregor explains Mimecast's new partner programme, the importance of consolidation in the security space, and the effect of COVID-19 on the local channel.More
Story image
76% of execs losing sleep over being the next high-profile breach
Headline-grabbing security breaches of high-profile enterprises are becoming more common, fuelling the anxieties of business leaders who hope they're not next. More
Story image
Months on, many organisations still don't have secure remote access - report
The report analyses the extent to which businesses were prepared for the sudden shift into remote working due to COVID-19 restrictions, and analyses how organisations have adjusted to support remote workers amidst the COVID-19 pandemic. More
Story image
DigiCert receives top award from Frost & Sullivan thanks to agile approach
DigiCert has received the 2020 Global Company of the Year Award by Frost & Sullivan, with specific focus on its global transport layer security (TLS) certificate market. More
Story image
Cybercriminals seeking greater anonymity online, Trend Micro states
Cybercriminals have switched to ecommerce platforms and communication using Discord for greater anonymity, according to new research from Trend Micro. More