Remote work, although not new, has made itself a top priority of every CISO’s immediate agenda in light of today’s pandemic environment. For CISOs, designing security for a fully remote workforce requires revisiting where and how security and risk management leaders direct efforts. According to Gartner’s recent report Designing Security for Remote-Work-First Enterprises, it’s important to focus on employees’ remote work practices, technology constraints, applications and data to build scalable security programs for remote work practices. This is also met with challenges as security teams must face scaling with a brand new mindset when envisioning enterprise-scale distributed work.
With the ongoing health crisis, organizations are looking for remote security testing solutions that are easy, effective, and secure. Synack is built for this and will continue to maintain a high bar for results for our customers and Synack Red Team (SRT) during this uncertain time.
“Forward-thinking CISOs are now thinking ahead to the next phase of the remote workforce. In the face of new unknowns, trust and value are critical as CISOs try to mitigate risk and build for the future”
– Synack’s crowd of security experts
Recommendations from Gartner’s recent report Designing Security for Remote-Work-First Enterprises, security and risk management leaders, including CISOs, responsible for infrastructure security should:
- Derive security profiles from remote work practice impacts on traffic patterns to adjust, prevent, detect and respond capabilities.
- Help build a remote work security architecture to include cross-functional business workflows, and technical concerns such as endpoints and network constraints.
- Build inclusive security profiles by:
- Performing security posture assessment for all remote work use cases including when an employee’s role is ill-adapted to remote work, or when compliance requirements demand stringent security controls.
- Reviewing available security technology options for each component of the remote work traffic patterns, from endpoint clients to data security, and revise security analytics options for a mostly off-premises enterprise’s compute and communication.
Recapping Gartner, the sharp increase in remote working has broken long-standing assumptions by security teams that remote access is a secondary concern compared to on-premises security. Remote work is now on the top of every security and risk manager’s agenda. Traditionally, working from home was viewed as a slow-moving trend that until recently has been thrust upon organizations worldwide.
In a recent Forbes article (Synack garners a spot as a startup to watch), Gartner’s Top 25 Enterprise Software Startups to Watch in 2020 it’s noted that global enterprise application software spending will reach $196B in 2020, a 4.7% drop from 2019 according to Gartner.
Despite COVID-19 driving an economic downturn, spending on cloud-based enterprise apps will increase by 6.8%.
2020 is becoming the year every enterprise software vendor needs to prove how resilient their apps and platforms are especially in a remote work environment.