The coronavirus pandemic is entering its second quarter, and millions of people are now working from home using corporate devices with access to sensitive company data. Naturally, hackers remain hot on their heels and seek to infiltrate corporate systems by taking advantage of the crisis at large. While shrewd business leaders have moved to activate business continuity plans, some organizations are scrambling to fulfill the evolving demands of managing their entire workforce remotely without warning.
It’s no surprise that the seemingly-overnight shift to remote work sent security teams into a tailspin, but their vigilance isn’t without reason. The phenomenon of a pandemic offers bad actors the perfect storm to conceal unusual activity and exploit critical infrastructure. These threats have thrust CISOs—and their respective security teams—into the corporate limelight as they deploy ‘quick win’ solutions and scour their systems for latent vulnerabilities.
Global self-isolation measures have also seen security best practices shelved as executives focus all resources on helping employees connect from home. Now, CISOs are all too familiar with reactive security cycles, but few could have anticipated the volume of work their teams would face in the unfolding crisis.
Bugcrowd remains dedicated to unburdening security teams and giving them back time to focus on critical issues. As the situation continues to develop, our platform-powered solution stack can expedite the vulnerability management lifecycle and give organizations the agility they need to navigate the challenges ahead. Security teams can lean on our platform to maximize their bandwidth and operational efficiency without sacrificing the quality of findings.
Here are 3 tips to keep company data secure when employees work remotely:
- Make security a team sport: Setup a ‘security@’ email address for your organization, and/or a #security channel for employees in your corporate messenger application to encourage a see-something-say-something culture.
- Encrypt everything: Confirm all your corporate devices encrypt data at rest to secure information if it is lost or stolen. Now might also be a good time to review the policies and technology you have in place to keep track of this.
- Make a habit of using a VPN: Make sure corporate VPNs have been patched and determine if any additional licenses, capacity or bandwidth are needed to support increased usage by your employees.
Adopting and enforcing the right cybersecurity measures ensure that organizations can prevail even in the face of major disruptions to their business operations and systems.
In trying times, Bugcrowd is helping security teams conserve precious resources and prioritize critical fixes that fortify their attack surface with significantly less effort. Coupled with nearly a decade of expertise managing thousands of programs, our triage team is working around the clock to keep organizations ahead of their adversaries with unparalleled signal and ease of use.
Since 2012, we’ve helped hundreds of organizations get the right security skills at the right time, and we’re eager to help you too. We stand with our customers through this challenging situation, and so does our crowd of trusted security researchers that have joined forces to help organizations secure their assets and reduce risk.