Because of the COVID-19 pandemic, business leaders have had to rapidly change the way their organizations and employees operated—particularly as local governments required or recommended employees work from home when and if possible. Under normal circumstances, businesses would make this shift over a long period of time to ensure that their IT infrastructure was prepared to handle such a change. Because of the nature of the pandemic, this shift to telework happened nearly overnight, creating sometimes new security challenges.
In the new 2020 Remote Workforce Cybersecurity Report, Fortinet explores the challenges organizations faced as a result of the shift in remote work and how organizations are planning to secure their remote workforce moving forward. This report, conducted in June 2020, surveyed security leaders across industries—including the public sector—in 17 different countries.
As expected, a rapid shift to a new work paradigm was not easy. Nearly two-thirds of businesses had to transition over half of their workforce to remote work practically overnight. Eighty-three percent of organizations found this transition moderately, very, or extremely challenging. They faced the most significant difficulties when it came to secure connectivity, followed by business continuity assurance and access to business-critical applications.
These challenges are exacerbated by the unprecedented cyber threat activity that has resulted from an increased reliance on personal device usage and the influx of workers outside the corporate network. Cyber adversaries—from opportunistic phishers to nation-state actors—found numerous ways to exploit the global pandemic, as seen in a recent FortiGuard Labs Global Threat Landscape Report. In fact, 60% of organizations revealed an increase in cybersecurity breach attempts following the transition, while 34% reported actual breaches in their networks.
Given the security challenges above, and the fact that nearly 30% of organizations are expecting more than half of their employees to continue working remotely full-time after the pandemic, security leaders must carefully consider what technology and strategies are required to secure telework well into the future. To ensure the protection of corporate data and assets, organizations must adapt their cybersecurity policies to account for the extension of the network perimeter to the home.
40% of those surveyed spent more on skilled IT workers to support the additional reliance on IT staff to enable security and productivity for employees working from home. Only 40% of organizations had a business continuity plan in place prior to the pandemic. But as a result of the pandemic and the rapid shift to remote work, 32% invested further in this area.
Almost all organizations expect to invest more to secure telework long-term, with nearly 60% of enterprises spending more than $250,000 in secure telework investments in the next 24 months. Moving forward, the majority of enterprises surveyed intend to make unplanned upgrades to their existing systems to secure telework. Many also plan to add new technologies not previously in place.
While organizations have made improvements in securing their remote workforces since the beginning of the pandemic, survey data reveals several areas that could be considered opportunities for improving secure remote connectivity. These areas include:
Programs like the Fortinet NSE Training Institute's certification program help teach new skills to, upskill, or reskill security professionals in an effort to reduce the skills shortage. The recent surge in those registering for Fortinet’s training programs is an indicator of the need for trained security professionals. As a result of the transition to remote work, Fortinet made its online training courses free to help businesses combat cyber risks and protect against threats that exploit the COVID-19 pandemic.
Now that organizations have made it through the initial shift to remote work, IT decision makers must plan for the additional investments required to secure telework long-term. There is an opportunity to maximize their investments with cybersecurity platforms designed to provide comprehensive visibility and protection across the entire digital infrastructure, including networked, application, multi-cloud, and mobile environments.
Read additional valuable takeaways from this research and access the full report.
Read more about how Fortinet customers are maintaining business continuity at scale with integrated and secure Fortinet Teleworker solutions.
Read more about how organizations managed to secure telework successfully:
Large Metropolitan Healthcare System: A cybersecurity platform, which included Secure SD-WAN, next-generation firewall, and VPN solutions, enabled this large metropolitan healthcare system to rapidly deploy secure, reliable connectivity at remote COVID-19 testing sites while complying with HIPAA regulations.
Precision Machining Company: Master Automatic has leveraged Fortinet Teleworker Solutions to maintain business continuity during times of rapid transition.