It feels virtually unbelievable that after over a yr of getting to earn a living from home, we now have lastly reached a stage when, because of the rising vaccination charges and different efforts by governments, life appears to be returning to virtually regular. Alas, for many individuals this not solely means a possibility to go to a theatre or a pub after an extended break, but additionally the looming prospect of returning to their workplaces.
Again in early 2020, after we first confronted nationwide lockdowns, IT employees discovered themselves preventing for the survival of their companies as a result of only a few corporations had been ready to help a completely distant workforce. Luckily, most had been capable of adapt inside the first months of the pandemic. For some companies, Covid was the decisive argument to lastly embrace the cloud. For others, digital providers have even turn into the brand new product. These had been actually “fascinating occasions”.
Let’s face it: workplace work is not regular
Quick ahead to June 2021 and evidently many IT employees – particularly these accountable for safety – are trying ahead to the approaching finish of lockdowns as some sort of return to normalcy, going again to the “good previous occasions”. In actuality, this may be the largest mistake a CISO could make! Even as soon as everyone seems to be absolutely vaccinated and the remaining restrictions are lifted, the brand new “regular” can be nothing like pre-Covid occasions.
First, many individuals like working from dwelling. Some are significantly planning to proceed, and are even ready to take a pay lower or transfer to a special firm to take action. Many companies have additionally appreciated the associated fee and time financial savings, to say nothing in regards to the profound environmental impression of distant working.
Ultimately, many corporations should redesign their workplace areas to place extra emphasis on shared workplaces and hotdesking, in addition to to cater to the sharp enhance in teleconferencing and distant collaboration, even in workplaces.
For individuals in IT and cyber safety, this implies there may be merely no going again to the previous idea of perimeter safety. Even essentially the most conservative corporations that had been nonetheless clinging to their firewalls, VPNs and on-premise functions needed to lastly make a leap of religion and undertake fashionable, cloud-native options to accommodate their distant employees and to make sure their security and compliance outdoors of the standard company perimeter.
These days, the native space community (LAN) is the least secure a part of the company community, and returning workplace employees will solely make the state of affairs worse. Masks and checks might assist defend in opposition to Covid within the office, however what is going to assist in opposition to ransomware and phishing assaults?
Zero belief: not a buzzword anymore, however a strategic purpose
Does it imply, nevertheless, that we now have to spend money on extra safety instruments to guard our workplaces from the sudden influx of recent exterior and inner risk actors? Properly, sure and no.
The most important enemy of safety is complexity, and including safety controls particularly for workplace employees is a waste of time and cash. A extra wise technique is to make sure that the identical safety stack can defend any employee, inside and outdoors of the workplace, together with workers working from dwelling, cell employees, contractors and different companions.
In sensible phrases, this implies extending the definition of a distant employee to everybody inside the organisation. Anybody ought to be capable to expertise the identical stage of productiveness and safety from cyber threats inside or outdoors of the workplace, transferring seamlessly between IT environments like cell phones between cell towers. Evidently, essentially the most radical technique of attaining this seamless behaviour is by eliminating the very notion of an area community – the one and solely holy grail of zero belief!
This buzzword has been a preferred subject for dialogue amongst IT consultants for years, typically resulting in a lot confusion amongst individuals pondering they’ll buy zero-trust networks as turnkey options. Nonetheless, whereas that is positively not the case, adopting a zero-trust safety mannequin is less complicated than many individuals imagine, offering they’ve a correct long-term technique.
Along with deploying numerous applied sciences – which many corporations may have already got executed exactly due to Covid – it’d require corporations to revamp some organisational ideas or enterprise processes as properly. However the outcome will all the time result in the general simplification and unification of IT infrastructures, decreased prices and administration overheads, and, hopefully, elevated worker productiveness and satisfaction.
It’s time to retire the LAN
Step one on this strategic journey in the direction of zero belief could be fairly easy: simply fake that your workplace not has an area space community. Even when a employee is again at their previous desk, deal with their gadgets as if they had been nonetheless working from dwelling – for instance, solely allow them to connect with the visitor Wi-Fi community.
In fact, in case you have been counting on old-school VPN options for all these months, this may trigger issues, however in the event you’re already utilizing a cloud-based zero-trust community entry (ZTNA) platform to supply safe connectivity to your company functions, it ought to work utterly transparently – in or out of the workplace. As an additional benefit, this method will defend your legacy LAN from lateral actions of a possible malicious actor, exterior or inner.
The identical applies to safe entry service edge (SASE) options that ship safety capabilities straight from the cloud – even when they can not but absolutely exchange your fastidiously configured stack of on-premise safety home equipment, they’ll most likely present 80% of safety for simply 20% of the associated fee, within the workplace, at dwelling or anyplace in between.
If there may be any silver lining behind the entire Covid catastrophe, it’s that each one these cloud-based options have been completely battle-tested and may accommodate the necessities of even the most important companies.
The world has modified profoundly over the previous 15 months, and there can be no return to pre-Covid occasions any time quickly. As an alternative of lamenting the loss, nevertheless, we must always embrace the brand new regular, proceed adopting fashionable safety applied sciences, and use this distinctive alternative to do away with the massive technical debt of our legacy IT infrastructures. If executed strategically, it needs to be a win-win state of affairs for everybody. Properly, excluding hackers, maybe.
Alexei Balaganski is lead analyst at KuppingerCole and a specialist in synthetic intelligence and cyber safety. At KuppingerCole, he covers a broad vary of cyber matters together with database, software and API safety, safety analytics, date safety, and AI-based safety automation. He holds a grasp’s diploma in utilized arithmetic and pc science, and in addition beforehand served as KuppingerCole’s chief expertise officer.