cfo-au logo
Story image

Securing remote workforces at scale

23 Mar 2020

Article by Wavelink (a Fortinet distributor) managing director Ilan Rubin.

Business continuity plans (BCPs) are being reviewed and put into action to protect Australian businesses as the outbreak of COVID-19 starts to affect the economy. For many businesses, BCPs are designed to help the organisation recover after a single disastrous event. Therefore, they don’t always include ways to support a workforce operating remotely for an extended time. Doing so requires a strong focus on security to avoid adding further challenges for businesses to cope with during uncertain times.

One of the key issues of transitioning to a remote workforce is helping employees who are used to working in a physical office get set up to work from alternate locations, often their homes. This can create networking and security issues depending on the employee’s existing set-up.

When employees aren’t used to working from home, their home networks generally aren’t secured to a corporate standard. This creates vulnerabilities that cybercriminals can leverage. During times of disruption and uncertainty, cybercriminals become especially active because they know there will be plenty of security gaps they can take advantage of.

Every company’s BCP should start with a strong security posture that protects the organisation and its employees regardless of whether they’re working from physical offices or from remote locations.

There are six key steps organisations should consider when transitioning on-site employees to remote locations:

1. VPN and endpoint security: VPN connectivity to corporate networks reduces the risk of a successful cyberattack or information breach.

2. Multifactor authentication: this basic security measure can make it harder for cybercriminals to use stolen credentials to access corporate networks. This could include a secure authentication token that can be used to provide an additional layer of authentication.

3. Persistent connectivity: some workers require more reliable connectivity because of the nature of their roles. These workers can be supported by preconfigured wireless access points that connect to the corporate network through a reliable, secure tunnel.

4. Secure telephony: Voice over IP (VoIP) phone solutions can ensure secure communications and let workers communicate as though they were in the office, using the corporate phone network.

5. User and device authentication: a central authentication service can let remote workers securely connect to network services at scale. This solution should support single sign-on services, certificate management, and guest management.

6. Advanced perimeter security: a next-generation firewall can secure the perimeter and provide advanced threat protection, including analysing malware and other suspicious content. This element must be scalable to prevent bottlenecks that reduce productivity for remote workers.

Organisations should have comprehensive BCPs in place regardless of external circumstances, such as COVID-19, because the nature of disasters is that they’re difficult to predict. Given many knowledge workers could theoretically work from home indefinitely with the right tools in place, it’s essential for organisations to make sure they can do so securely. This type of resilience will help organisations survive and even thrive during any potential lockdown or escalation of the current crisis, as well as cope well with any future scenarios.

Story image
E-waste becoming a massive issue for businesses, so what can be done?
E-waste is a global concern, and is quickly becoming a crisis of its own, the researchers state. In fact, more than 53 million metric tons of e-waste was produced in 2019.More
Story image
Why tool consolidation should be a top priority for businesses
How can businesses expect to scale for their biggest day when a single, unified view of their infrastructure doesn’t exist? The impact on the business is too high to ignore, writes New Relic APJ executive vice-president and general manager Dmitri Chen.More
Story image
Webinar: TLC for Kids on their usage of Nintex Drawloop DocGen
The charity is using the software to free up resources and enable its team to focus on its mission — which, simply put, is to put smiles back on sick kids’ faces. It does this through its TLC Ambulance, Rapid TLC, and distraction box programs, and its services are used over a million times each year across Australia.More
Story image
AppsFlyer opens Sydney office, expands into A/NZ region
AppsFlyer has opened an office in Sydney, it’s 19th office worldwide and its first in Australia and New Zealand (A/NZ), marking the company’s expansion into the region.More
Story image
COVID crisis creates demand for retraining, change management and remote onboarding in IT
Organisations are thinking longer-term about their digital and technology talent strategy.More
Story image
GCloud VMware Engine available in Sydney cloud region
Businesses in the A/NZ region can deploy Google Cloud VMware Engine closer to their operations and unlock new growth opportunities.More