How to mitigate employee risk in remote work environments

June 8, 2022

Eighty-one percent of surveyed information technology (IT) leaders reported that remote working is now a standard practice within their organization, with half of all respondents revisiting and updating data security policies and processes that they put in place two years ago when remote work programs were hastily deployed.

The Apricorn 2022 Global IT Security Survey revealed that organizations have adapted security policies to accommodate hybrid work, but they are still at risk due to employee compliance and lack of security awareness — particularly when data is on the move between work locations.

Remote work cybersecurity risks

In the survey, 397 IT security practitioners across North America and Europe responded to questions about security practices and policies during remote/hybrid working conditions.

The risk of moving of data between work locations was highlighted by the fact that the majority of respondents (82%) said that encryption should be required to secure USB storage devices, but only 34% say encryption is mandated within their organizations to protect data on the move.

When it comes to security compliance, one-quarter of respondents admit that employees are aware of IT security policies for remote work but are not adhering to them. When remote policies are not followed, it is usually due to employees not prioritizing security practices despite being informed about them (52%) or because they are using personal devices (40%).

Additionally, employees may not be fully aware of the risks their activities pose to the company. Twenty-seven percent of respondents say that employees believe they are at risk of being exploited by attackers to access company data, and 72% believe that either they are adequately protected by existing protocols or they are too small to be a target.

Improving remote work security

Opportunities to improve security culture within organizations are apparent. Eighty percent of organizations have changed their priorities in terms of compliance and security due to the pandemic. IT security professionals have expressed a desire for stronger security policies, but those expectations aren't always being met.

Almost 40% say their IT department does not have the tools to monitor and enforce policies. However, they are making progress where they can, with 56% of organizations reinvesting in employee education, while 83% have continually reinforced policies with employees.

For more information, click here.

Ransomware and the propulsion of the extortion economy has rapidly eclipsed into a national priority. Recently, we observed the catastrophic impact of a widescale ransomware attack impacting gas pipelines and raising national gas prices overnight.

Security Operations Centers (SOCs) are a crucial component of safety and security culture. They support many strategic business objectives, from lowering costs and minimizing risk to improving employee trust and morale.

How to mitigate employee risk in remote work environments

Remote work cybersecurity risks

Improving remote work security

Recent Articles by Security Staff

Ronnell Higgins named Yale AVP for Public Safety and Community Engagement

Eastern Kentucky University awarded $300k safety grant

Pharmaceutical company secures network with AppSec compliance tools

Lockbit 2.0 accounts for 40% of May ransomware attacks

Technical teams are struggling with access issues that impact productivity and security

Get our new eMagazine delivered to your inbox every month.

Stay in the know on the latest enterprise risk and security industry trends.

How to mitigate employee risk in remote work environments

Remote work cybersecurity risks

Improving remote work security

Recent Articles by Security Staff

Related Articles

Get our new eMagazine delivered to your inbox every month.

Stay in the know on the latest enterprise risk and security industry trends.