The UK is leading the charge for normalizing hybrid work, with the ONS finding employees are almost as likely to spend all, or part of their time at home (44%) as fully in the office (56%) week-to-week.
When managed correctly, hybrid work can enhance work-life balance, employee satisfaction, and productivity. But there are cyber security implications that come with these new working patterns.
Neil MacDonald is the UK & Ireland Channel Director at HP. He handles the go-to-market strategy and sales performance of HP’s print, personal systems, services and solutions in the UK and Ireland.
As part of this role, he also looks after the commercial, consumer and distribution sales teams – as well as relationships with the vendor’s channel partners.
This is where hybrid working has begun to create new opportunities for the channel, with research showing most UK organizations with a hybrid work model have gaps in their security posture. In short, new ways of working have made secure, remote management at scale more complex, yet even more essential.
You can’t protect what you can’t see
There was a time when security was simpler. A “castle-and-moat” approach focused on protecting all users inside a largely static network perimeter, and with relatively few staff working outside the office.
Today’s distributed cloud and mobile-enabled workplace is very different, blurring the perimeter and expanding the corporate attack surface. Hybrid working has also made the endpoint the center of the modern business, and in turn, the focus for threat activity.
If the endpoint is where business happens today, it’s also where cyber risk is most acute. Security leaders say the endpoint is the source of most security threats and where the most business-damaging risk is concentrated. A large part of the challenge for IT teams is visibility.
You can’t protect what you can’t see. But the shift to hybrid work came with an explosion in unmanaged endpoints – from home PCs and printers to remote laptops, smartphones, and tablets.
Threat insights report
Equipping security teams with the knowledge to combat emerging threats
Threat actors know that the endpoint has become more important than ever, which is why they’re bombarding users with phishing and malware. Many security leaders also believe that compromise of hybrid employees is their biggest security weakness, with phishing, ransomware, and attacks against unsecured home networks their top concerns.
Today’s security is a complex blend of moving parts. Not only do security teams have to manage digital threats via malicious emails, apps, and websites, they must also contend with more prosaic risks.
Using devices outside of the office means it’s more likely they might be lost or stolen, for example. The volume of employee and customer personally identifiable information (PII) and sensitive corporate data that could be accessed via these devices makes misplacing them a critical enterprise cyber risk.
Adding value through education and leadership
Most security leaders admit that protecting their hybrid workers will get harder in the year ahead, with many businesses raising budgets as a result.
That’s great news, but securing funding is only half the battle. It’s critical that organizations invest in the right tools. This is where the channel has a huge opportunity to add value through education and leadership.
The nuanced nature of cyber risk in the more fluid, distributed hybrid workplace means it’s not always easy to know where spending should be focused. If threats are also getting harder to spot, this gives even more reason to double down on prevention, with hardware-enforced features in, above and below the OS.
Application isolation is one such mechanism. It enables users to execute risky tasks like opening an email attachment or visiting an untrusted website in a micro-virtual machine (VM).
This VM contains the threat, ensuring it can’t spread, and eliminates it completely when the micro-VM is discarded. Similar technology can be deployed to isolate browser sessions from threats, so that any info-stealing malware already on an endpoint can’t grab credentials or sensitive data.
Isolation technology makes sense at a time when so much work happens outside the traditional protection of the on-premises corporate network. It’s why many security leaders see application isolation being key to protecting hybrid workers.
But security leaders and their channel partners need to go further still, to guard against the threat of lost and stolen devices.
Differentiating on endpoint protection
Hybrid work increased the risk of devices going missing. And while the cloud has solved some remote management headaches, it can’t deal with devices that are powered down or offline.
The good news is new technology that can allow IT to connect to devices in this state, enabling them to find, lock and/or erase such devices to mitigate cyber risk. That’s the extra layer of protection that organizations need on top of firmware and BIOS security, browser isolation and micro-VMs.
More importantly, it could provide channel players with an opportunity to build their own managed security services for laptop and fleet management – increasing margins on PC sales.
MSPs would not only be able to differentiate on this new remote management capability for desktop-as-a-service (DaaS) but also lower the cost of delivery by enhancing asset management and reducing the volume of high-cost trouble tickets.
Security services are an increasingly important mechanism for IT teams to do more with less – especially those in smaller businesses. In the context of increased spending on hybrid workplace security and remote management, they also offer channel partners a chance to shine.
