In the wake of the Covid-19 crisis, organisations and their employees have had to pivot to a whole new way of working. Remote working or ‘working from home’ has become the new normal, uptake in communication technologies has surged, and supply chains have had to adapt to unprecedented disruption.
Throughout the pandemic, IT teams have been working hard behind the scenes to keep the lights on for enterprise security. During this time however, a rise in cyber-attacks has been a major concern, with those targeting home workers increasing from 12% of malicious email traffic before the UK’s lockdown in March, to over 60% just six weeks later.
The findings from SailPoint indicate that enterprise security teams are already planning how to improve security and IT resilience for the next challenge: a partial, and perhaps sporadic, return to the office.
Ben Bulpett, EMEA Director at SailPoint, comments:
“The shift to remote working has made it more difficult for IT teams to monitor the enterprise security perimeter, with hackers looking to take advantage of multiple user access points. And with the workforce’s makeup and location continuing to shift rapidly, this begs the question – who even has access to what right now?
“For many companies, security and compliance gaps have surfaced in the rush to maintain business continuity, and it’s crucial these issues are resolved to ensure business survival. As organisations brace themselves for a new economic storm, identity governance is one of the tools that can help them navigate through the challenging times ahead.
“Whether employees continue working from home, return to the office with different responsibilities, or enter into a contract-based role, identity governance plays a crucial part in protecting the enterprise’s security perimeter. Through this, IT teams can speed up the process of enabling and securing their users’ access to key applications, data, and infrastructure, pivoting quickly as the business’ and users’ needs change.”
SailPoint has identified three key steps IT and security teams should take, as UK workers are expected to begin migrating back into offices from August onwards:
Only organisations that have plotted access policies, addressed application permissions and achieved complete protection of its data will be prepared to navigate successfully through the current storm.