{"id":45038,"date":"2022-01-28T00:00:00","date_gmt":"2022-01-28T00:00:00","guid":{"rendered":"urn:uuid:b41078d4-b188-b8e4-9ba3-712967f63cb0"},"modified":"2022-01-28T00:00:00","modified_gmt":"2022-01-28T00:00:00","slug":"3-remote-work-security-tips-for-cisos","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/3-remote-work-security-tips-for-cisos\/","title":{"rendered":"3 Remote Work Security Tips for CISOs"},"content":{"rendered":"

<\/p>\n

<\/div>\n

Remote and hybrid work environments are here to stay, which means CISOs need to establish an effective security strategy for managing the expanding attack surface. Organizations can no longer afford (quite literally) to play catch-up with remote work security as ransomware cases and demands continue to rise. Greg Young, Trend Micro\u2019s VP of cybersecurity and Mick McCluney, technical lead for Trend Micro Australia, explore how to create a resilient work from home (WFH) security strategy.<\/b><\/p>\n

Remote work security trends<\/span><\/p>\n

As the fear of COVID-19 spread, so did phishing attacks. Trend Micro blocked<\/a> over 94 billion email threats, malicious files and URLS for customers in 2021\u2014a staggering 42% increase from 2020. Scamwatch<\/a>, a site run by the Australian Competition & Consumer Commission, received nearly 6,500 scam reports mentioning COVID-19 with more than AUD $9,800,000 in reported losses.<\/p>\n

This is concerning for businesses given work laptops are sharing home networks with personal devices, making them susceptible to attacks that started on a different device. The expanding attack surface is difficult to protect with siloed solutions providing only snippets of the entire network.<\/p>\n

VPNs also fell short of security needs, as maintaining and channelling the large influx of traffic is challenging. Since VPNs have limited scalability, the more traffic, the more lag, which slows down business operations. From a security standpoint, lack of scalability requires IT teams to continually deploy hardware appliances for threat detection, firewalls, data loss prevention (DLP), and other security functions.<\/p>\n

Not all VPN vendors follow best practices, and there\u2019s no real way of knowing this. However, if your third-party vendor is cutting corners, it creates opportunities for malicious actors to enter your network and access valuable credentials. According to a Verizon report<\/a>, 76% of network breaches involved compromised user credentials.<\/p>\n

Lastly, employees are finding remote work security policies annoying, leading them to not bother. A survey by Venn<\/a> found that 71% of employed Americans admit to skirting their company\u2019s own IT policies and procedures to be more efficient.<\/p>\n

3 remote work security tips<\/span><\/p>\n

Yes, these trends are concerning, but the good news is they can be solved with minor tweaks and without major spending\u2014something the C-suite can get on board with.<\/p>\n

Here are three ways you can strengthen your remote work security posture for the long-term:<\/p>\n

1. Enhance endpoint management with XDR and Zero Trust<\/a><\/i><\/p>\n

While limited technology like endpoint detection and response (EDR) can be valuable, threat actors don\u2019t stick to a single silo such as endpoints, and utilize other channels in the same attack such as email, network, and SaaS.<\/p>\n

You can gain comprehensive visibility using a platform with XDR capabilities. XDR collects and correlates data from all endpoints and security layers, providing the full picture security teams need to reduce mean time to detect\/response (MTTD\/MTTR).<\/p>\n

Another component of strong endpoint security is being able to clearly identify what and who is in your network. This is where adopting the Zero Trust approach\u2014the default that any device, user, or app is untrusted, could be vulnerable, or has been breached\u2014comes into play. By scanning and authenticating users, devices, and apps before they\u2019re granted access to the network, you reduce the chance of a malicious user gaining and maintaining residence. Remember to continuously monitor endpoints within the network to surface any compromises or odd behavior.<\/p>\n

2. Strengthen your VPN with an SDN<\/i><\/p>\n

Supplementing your VPN with a software defined network (SDN) security solution is also a good way to strengthen remote work security. An SDN takes a software-based approached to modernizing enterprise networks beyond traditional wide area networks (WANs), making it more reliable and scalable.<\/p>\n

How does it work? It separates the control pane\u2014the network layer that makes traffic routing decisions\u2014from the mechanism that forwards network traffic through routers. This allows network traffic to be optimized by classifying it based on application or service type, then further prioritized and forwarded in-line with customized policies. For example, security teams can dictate that trusted business application traffic will be routed across the private network, or social media content is sent to a cloud-security service for further investigation.<\/p>\n

SDN solutions can integrate advanced cloud-native security functions, eliminating extra costs of deploying hardware appliances to scale the VPN. With central management, SDNs can improve visibility across your entire network, allowing IT teams to better validate traffic and authorization in-line with the Zero Trust model.<\/p>\n

3. Equip your employees<\/i><\/p>\n

As we previously mentioned, employees often opt out of security practices because they\u2019re cumbersome. To ease the burden, provide a work computer configured to follow best practices like:<\/p>\n