By using this site, you agree to the Privacy Policy and Terms of Use.
Accept
IndebtaIndebta
  • Home
  • News
  • Banking
  • Credit Cards
  • Loans
  • Mortgage
  • Investing
  • Markets
    • Stocks
    • Commodities
    • Crypto
    • Forex
  • Videos
  • More
    • Finance
    • Dept Management
    • Small Business
9
Notification Show More
Videos
Tesla’s Q2 earnings report is ‘garbage,’ former Tesla bull Ross Gerber says
10 hours ago
Videos
What Happens If FEMA Goes Away?
11 hours ago
News
Allspring Emerging Markets Equity Advantage Fund Q2 2025 Commentary (undefined:EQIAX)
11 hours ago
Videos
How to use market patterns to master your portfolio
1 day ago
Videos
The dangers of the rise in AI companions
1 day ago
News
Companhia de Saneamento Básico do Estado de São Paulo – SABESP 2025 Q2 – Results – Earnings Call Presentation (NYSE:SBS)
1 day ago
News
Jay Powell to deliver Jackson Hole address under fire on multiple fronts
2 days ago
Videos
US and the EU may be nearing a trade deal, Tesla misses expectations
2 days ago
Videos
Why Your Retirement Plan Might Backfire
2 days ago
Aa
IndebtaIndebta
Aa
  • Banking
  • Credit Cards
  • Loans
  • Dept Management
  • Mortgage
  • Markets
  • Investing
  • Small Business
  • Videos
  • Home
  • News
  • Banking
  • Credit Cards
  • Loans
  • Mortgage
  • Investing
  • Markets
    • Stocks
    • Commodities
    • Crypto
    • Forex
  • Videos
  • More
    • Finance
    • Dept Management
    • Small Business
Follow US
Indebta > Small Business > How Organizations Can Prepare For Security Challenges
Small Business

How Organizations Can Prepare For Security Challenges

News Room
Last updated: 2023/09/14 at 9:21 AM
By News Room
Share
8 Min Read
SHARE

Steve Durbin is Chief Executive of Information Security Forum. He is a frequent speaker on the Board’s role in cybersecurity and technology.

Contents
Disengagement discourages secure behavior.Lack of identity verification can enable impostors.Digital nomads leave a trail of vulnerabilities.Some moonlighting microservice providers might profit from conflicts of interest.Lack of flexibility inhibits security recruitment and retention.Breakdown in security culture raises insider threats.Over-reliance on automation backfires.Outsourcing amplifies supply chain risk.How can organizations be better prepared to tackle these risks?

The fourth industrial revolution is here, and new technologies have the potential to change how people work in ways previously hard to imagine. On one hand, organizations are shifting to permanent or hybrid remote work setups since it provides opportunities to trim operating costs and weather an uncertain economic future. On the other hand, businesses are accelerating investments in artificial intelligence (AI) to boost automation, operational efficiency and business productivity.

AI presents big opportunities along with big risks. Let’s explore potential threats that emerge from the intersection of remote working and technology advancements:

Disengagement discourages secure behavior.

By embracing remote working, the lack of in-person contact among staff can have a less-than-ideal effect on corporate culture. Disengagement between staff and their employer will no doubt have an adverse effect on their attitudes toward the company and, consequently, heighten the risk of insider threats, either by accident, judgment errors or malicious intent.

Lack of identity verification can enable impostors.

As the organization now operates more “virtually,” technologies like deepfakes allow cybercriminals to impersonate employees, the C-suite and business partners, which puts the enterprise at an increased risk of security incidents. Furthermore, if employees begin to engage AI to circumvent standard security governance practices and automate work tasks, they could undermine the organization in ways similar to shadow IT, with its resultant lack of oversight. This lack of visibility and verification enables impostors to compromise information at will.

Digital nomads leave a trail of vulnerabilities.

The introduction of new and favorable tax rules for remote employees, especially those who fancy traveling the world, encourages them to change their location on a frequent basis. Since they log in to corporate resources from various locations, organizations can’t be sure what security controls are being used and what security protocols are being followed while transiting through public places such as airports, cafes, parks and other unsecured wifi locations.

Some moonlighting microservice providers might profit from conflicts of interest.

The gig economy is giving rise to new services being offered by the hour by people who work on a freelance basis, and these workers are not always required to clear sound background checks. Based on my observations, many of gig workers are full-time employees who use their spare time and weekends to take on second jobs. Some might be working for competitors, which can be a conflict of interest and might even violate non-disclosure agreements, which puts all parties at risk.

Lack of flexibility inhibits security recruitment and retention.

From my perspective, businesses that insist on returning to the office, especially for security roles that could be hybrid or fully remote, will likely see higher rates of attrition and longer-term unfilled vacancies. Lack of skilled talent affects staff availability and makes burnout of existing staff more likely. This leads to lower security performance by harried workers and raises information risk across the board.

Breakdown in security culture raises insider threats.

Employees who are disgruntled might stop respecting security protocols and show a blatant disregard for policies. Combined with high levels of attrition and gaps in critical skills across the business, the threat of a successful attack using an employee as a vector—either through apathetic behavior, being coerced by easy money offers or being an assailant themselves—increases significantly.

Over-reliance on automation backfires.

New security technology can streamline and bolster defenses, but in my experience, it often falls short. Without human interaction and experience, these systems lack the context they need to make accurate decisions. As a result, they might generate false positives or miss real threats. Security technology is often designed to work with little or no human input, which can lead to problems when the system encounters something it doesn’t understand, such as a new type of malware or a sophisticated attack. Security systems need to be regularly updated; otherwise, they’re at risk of becoming obsolete.

Outsourcing amplifies supply chain risk.

As offices are closed, some organizations might try to reduce costs by outsourcing as many essential services and tasks as possible. While this improves flexibility, it also heightens the risk of a major disruption as businesses lose control over key infrastructure.

How can organizations be better prepared to tackle these risks?

Organizations with remote employees will have to carefully weigh how this working model affects their security posture and security culture.

• Ensure data, information and security governance functions are equipped to oversee and deal with change. Keep control frameworks up to date to ensure security basics are always in place.

• Update security awareness programs to factor in the established working model for the organization (i.e., office, hybrid or remote). Deploy culture-building exercises for remote staff, such as a combination of frequent on-site and video sessions, to create and maintain a sense of togetherness.

• Establish clear protocols on the use of outsourced suppliers and services. Mandate a certain level of assurance and oversight, both pre- and post-contract. Include suppliers in business continuity planning as well.

• Introduce systems and processes for continuous identity verification, such as regular video chats, to confirm whether employees are who they say they are. Use deepfake detection tools to identify impersonators and fake content.

• Apply encryption to all sensitive data on employees’ devices, preferably at hardware level (e.g., whole disk encryption).

• Take a strategic view of the long-term risks associated with an increasing reliance on AI and automation and how that alters risk. Deploy review processes that routinely assess the accuracy and integrity of the intelligence and data that powers AI and drives business decisions.

Technology and workplace transformations must never be done hastily. It’s important to be fully aware of the risks as well as the opportunities that exist. It is also equally important to have a well-thought-out transition plan in place before moving ahead into the unknown, because uncertainty is the only thing organizations can be certain of.

Forbes Business Council is the foremost growth and networking organization for business owners and leaders. Do I qualify?

Read the full article here

News Room September 14, 2023 September 14, 2023
Share this Article
Facebook Twitter Copy Link Print
Leave a comment Leave a comment

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Finance Weekly Newsletter

Join now for the latest news, tips, and analysis about personal finance, credit cards, dept management, and many more from our experts.
Join Now
Tesla’s Q2 earnings report is ‘garbage,’ former Tesla bull Ross Gerber says

Watch full video on YouTube

What Happens If FEMA Goes Away?

Watch full video on YouTube

Allspring Emerging Markets Equity Advantage Fund Q2 2025 Commentary (undefined:EQIAX)

This article was written byFollowAllspring is a company committed to thoughtful investing,…

How to use market patterns to master your portfolio

Watch full video on YouTube

The dangers of the rise in AI companions

Watch full video on YouTube

- Advertisement -
Ad imageAd image

You Might Also Like

Small Business

Brilliant Or Lucky? 4 Key Insights For Ventures & Angels

By News Room
Small Business

A Conversation With Agile Expert Harry Narang

By News Room
Small Business

College enrollment is down, Gen Z losing faith in a degree. Here is a better option.

By News Room
Small Business

The Digital Cyrano De Bergerac Of Modern Business

By News Room
Small Business

Why Do We Stay In A Job When We Are Not Happy? Insights To Help You Get The Career You Deserve

By News Room
Small Business

Making A Large Language Model Transparent, Compliant And Reliable

By News Room
Small Business

The Important Initiative For Real Digital Marketing Results

By News Room
Small Business

The Future Of Real Estate

By News Room
Facebook Twitter Pinterest Youtube Instagram
Company
  • Privacy Policy
  • Terms & Conditions
  • Press Release
  • Contact
  • Advertisement
More Info
  • Newsletter
  • Market Data
  • Credit Cards
  • Videos

Sign Up For Free

Subscribe to our newsletter and don't miss out on our programs, webinars and trainings.

I have read and agree to the terms & conditions
Join Community

2023 © Indepta.com. All Rights Reserved.

Welcome Back!

Sign in to your account

Lost your password?