Over the past few years, many businesses have integrated cloud-based services into their operations, making the rapid shift into remote working seamless. However, the move to the cloud has often accounted for just part of the operations, with many common and proprietary applications still residing on-premise.
This leaves businesses reliant on Virtual Private Networks (VPNs) to secure the communication pathway from remote users to a corporate network with an end-to-end encrypted tunnel. This potentially provides a false sense of security when used in isolation.
While VPNs provide a secure communication path to the corporate network, they don’t enforce security on personal devices and activity isn’t monitored when connected to the corporate network, presenting a new attack surface for remote workers.
With remote working being the only viable solution for the foreseeable future, businesses must understand the risk this brings. There are three ways to help businesses secure their remote workforce:
The sudden need for businesses to transition to a remote workforce, combined with supply chain challenges, has forced organisations to relax restrictions on remote employees connecting via their personal devices and home networks.
This can cause compromising behaviours, unapproved applications, and high-risk data flow onto corporate networks. To avoid this, businesses should use VPNs and device hygiene to ensure that their corporate networks remain secure and visible during this disruptive period.
Steve Hunter, Senior Director Systems Engineering – Asia Pacific and Japan, Forescout