2020 & 2021 are seen as the years when work moved home due to the impact of COVID 19. However, the truth is, these are years when work moved to the cloud and everywhere in between. As a result, endpoint security and management are now the keystones of adequate protection and the baseline for the foreseeable future.

As the UK is emerging out of the national lockdown with restrictions being relaxed, some people will return to the office and begin travelling again. Research suggests that 80% of companies will offer more flexible workplaces post-pandemic, and over 70% of employees will take advantage of that flexibility. Thus, it appears 2022 will be the beginning of a hybrid workforce.

Security is at a significant inflection point. As a result, organisations must adapt to new technologies and processes to ensure employee safety while maintaining productivity.

In this series, security experts at Pulse Integra have provided a review on how IT and security teams should prepare for 2022 and beyond. Below is the first part of a two part series.

Perimeter fencing is not enough – Secure the data and the device

Phishing scams and botnets continue to pose the most significant threats to businesses. The main reason is the number of devices outside the network boundaries that are now vulnerable to advanced cyber threats.

From an endpoint perspective, combating attacks requires rapidly identifying changes in user behaviour at the endpoint.

Solutions such as Endpoint Detection and Response (EDR) can provide security analysts with real-time information about the device’s status. Additionally, the EDR system can also take spontaneous actions based on pre-built responses to security events – giving the team an upper hand against the proliferation of the malware.

Encourage cyber hygiene

Threat groups and bad actors exist worldwide and continuously capitalise on human error. Cyber hygiene is best practice every organisation should take to ensure good digital health and protect employees against cyber risks. The objective is that these practices become part of our daily routine, similar to your physical hygiene, i.e., washing your hands regularly or wearing a face mask.

The Cyber Essentials scheme, backed by the UK government, covers every business’s essential actions to ensure its digital security and protect against cyber attacks. Cyber Essentials assesses five key criteria:

• The Use of a firewall to secure internet connection.
• Choose the most secure settings for devices and software.
• Control over access to data and services.
• Protection against viruses and other malware.
• Devices and software updated with the latest versions.

Research shows, implementing the controls detailed in the scheme could help protect businesses against 98% of cyber threats. And that’s not all. Getting certified could unlock public sector opportunities, as many government organisations mandate Cyber Essentials certification from suppliers or service providers they wish to work with.

Even if you’re not likely to work with the public sector, Cyber Essentials certification is a great way to demonstrate your commitment to securing your customers’ and potential partners’ data.