Digital workplace security: Challenges and best practices

It goes without saying that technology has become an integral part of the workplace and the way we work. It is virtually unthinkable for us to go about our daily work without using a variety of apps and platforms, whether to interact with our peers, collaborate on projects, and get things done.
However, while technology has its advantages in speeding up and enhancing processes and allowing people to work from anywhere and with any device, it does also carry a significant security threat if managed poorly.
Digital workplace security

Content

Security has long been a challenge for many businesses, especially those dealing with sensitive data. The recent COVID-19 pandemic has further accelerated the adoption of remote working policies. This has left many wondering how to introduce flexible working policies while ensuring security, now and after the pandemic.
In this blog post we will discuss the importance of digital workplace security, the common security threats facing businesses, and how to minimize them.

1. The importance of digital workplace security

The frequently asked questions we receive on our website or during demo sessions are often related to data protection and security, and hosting services. This shows the importance that businesses place on security, and where their data will be stored and handled.
Additionally, when first deploying a digital workplace, businesses often look to integrate it with legacy systems and third-party applications. This results from the growing willingness of employees to use their own devices and apps at work.
According to an intel study, 61% of Gen Y employees and 50% of employees over the age of 30 believe that the technology tools they use in their everyday lives are more effective than those provided by their employers’ IT departments. To counter the phenomenon known as “shadow IT” and to ensure the security of personal information and sensitive data, IT teams have progressively leaned towards holistic digital workplace solutions that can group a host of features and that are easily integrated and securely accessible through two-factor authentication and single sign-on.
FREE WHITE PAPER

Types of Digital workplace solutions

The modern workplace has evolved significantly in recent years, with advancements in technology, the growing number of tools …

2. The common security threats facing businesses

Whenever we think about cyber security, we often imagine Mr Robot in his hoodie trying to infiltrate systems and blackmail people. In a way it is accurate; hackers are probably among the biggest threats to businesses, regardless of their size or industry.
A recent report by Positive Technologies found that cyber attacks targeting organisations are on the rise, with an increase of 19% between 2018 and 2019. The most targeted sectors were government organisations and healthcare and educational institutions, which were the recipients of 54% of all attacks.

By seeking weak passwords, sending phishing emails, and launching malware and social engineering attacks, hackers can identify weak links and take over entire networks. Although hackers continuously come up with new ideas and techniques to trick users and businesses, they are often helped by staff negligence (which accounts for 70% of data breaches), a lack of cybersecurity basic knowledge, and accidental web and internet exposure.

Implementing an identity access management solution can help protect against breaches by controlling access to systems and data based on user roles. With robust identity and access controls in place, businesses can better defend against both external and internal threats.

Those are the findings in a report by Identity Theft Resource Center (ITRC) that looked in great detail at the common causes of data breaches. It also found that some data breaches are caused by deliberate data theft by authorised personnel, companies using limited and insecure protocols, and poorly designed access control.
But how can we ensure that our systems are safe?
A Digital Workplace tailored to your needs
Discover How To Boost your employee
engagement and performance

3. Best practices to minimise security threats

Develop a cybersecurity policy

Having no cybersecurity policy in place may leave your business vulnerable to attack, whether external or internal. A cybersecurity policy is best defined as a set of procedures, measures, and resources put in place by a business to prevent and effectively respond to various threats. It can help employees to understand their roles and responsibilities in protecting and handling information, and to know which devices and apps they can use in their work. Having a robust cybersecurity policy in place is crucial to protect your business from both external and internal threats.  It includes implementing measures for insider threats protection, ensuring employees understand their roles and responsibilities in safeguarding information and defining approved devices and apps for work purposes.

First, the policy should outline the individuals and actions that may pose a threat to the business. They may range from hackers and vandals to employees who unintentionally or intentionally leak various types of data.
Second, a set of measures must be included, to control and manage access to the platform and critical resources. For example, regular users will enter their unique credentials in order to access a platform, but to enter as a system administrator or to access certain areas and files, they must request special access and permissions. Their passwords must be updated regularly and they must follow a set of best practices when doing so, such as avoiding the use of obvious terms from dictionaries, using special characters, and not using the same password for different accounts.

Employees must be given guidelines for authorised remote access and virus protection software usage. The guidelines need not be complex and must not require users to be technology experts. For example, public Wi-Fi should be avoided as people outside the business will have access to the network. This may give them a pathway to the PC and eventually to the company’s system. Encourage employees always to use their work computers, to update their passwords frequently, and to use VPN access.

Continuous training

As mentioned above, hacking techniques are always evolving and businesses must be ready to counter any type of attack. However, IT teams are not in this alone. Employees have a key role to play in keeping their personal and company information out of the hands of attackers.
Training is provided to new hires, plus regular sessions for employees in various departments, to keep them updated on the latest threats and how to prevent and overcome them.

Control access to information

A significant proportion of all attacks launched at company networks come from the inside. It is advisable to keep certain data accessible only to those who need it. To do that, system administrators have to manage permissions and restrict and control access.
For example, detailed role-based permissions can be managed at different levels of a digital workplace: at the level of a page, at the level of a container block on a page, at the level of the apps inside a container, and at the level of individual content (articles, files, wiki pages, portal pages, web content, forums, etc). This enables adequate targeting of the user experience and ensures security by showing the user all the tools and information he/she needs, based on his/her role or groups (which can be departments, locations, etc).

Be sure to update regularly

With enterprise software in general and digital workplace solutions in particular, updates are essential in enhancing security and protecting company data.
With each release, developers try to find security flaws that can be exploited by hackers through malware. A failure to update systems regularly can make it easier for attackers to access and control your network and encrypt your data.
eXo Platform Digital Workplace
Connect your employees to their teams,
tools and information

FAQs

A digital workplace is a next generation of intranet solutions or intranet 2.0 that is based on three pillars: communication, collaboration and information. In a way this definition is true but it doesn’t cover the whole spectrum of the term. Here are some definitions of digital workplace:  

  • An evolution of the intranet
  • A user centric digital experience
 

See the full definition of digital workplace

  1. Understand users’ needs
  2. Identify your digital workplace ambassadors
  3. Build the digital workplace brand
  4. Training and onboarding
  5. Plan the big day
 

Find out how to create a digital workplace

When first deploying a digital workplace, businesses often look to integrate it with legacy systems and third-party applications. This results from the growing willingness of employees to use their own devices and apps at work.

 

According to an intel study, 61% of Gen Y employees and 50% of employees over the age of 30 believe that the technology tools they use in their everyday lives are more effective than those provided by their employers’ IT departments. To counter the phenomenon known as “shadow IT” and to ensure the security of personal information and sensitive data, IT teams have progressively leaned towards holistic digital workplace solutions that can group a host of features and that are easily integrated and securely accessible through two-factor authentication and single sign-on.

 

Discover the importance of digital workplace security

Whenever we think about cyber security, we often imagine Mr Robot in his hoodie trying to infiltrate systems and blackmail people. In a way it is accurate; hackers are probably among the biggest threats to businesses, regardless of their size or industry.

 

A recent report by Positive Technologies found that cyber attacks targeting organisations are on the rise, with an increase of 19% between 2018 and 2019. The most targeted sectors were government organisations and healthcare and educational institutions, which were the recipients of 54% of all attacks.

 

Find out the common security threats facing businesses

Here are some best practices to minimise security threats in digital workplaces:

 
  1. Develop a cybersecurity policy
  2. Continuous training
  3. Control access to information
  4. Be sure to update regularly
 

Find out how to secure your Digital Workplace

Here are some of the reasons why employees adopt a digital workplace slowly, or refuse to use it altogether:

 
  1. Failure to study and understand the organisation’s needs and its teams’ needs
  2. Limited to zero information within your intranet
  3. Not mobile friendly
  4. Your employees are not provided with good training
 

Find out some reasons of low digital workplace adoption

  • Analytical skills and approach
  • Focus on employees
  • Communication and strategic vision
 

The success of a digital workplace project depends on a number of factors

I am a product marketing specialist at eXo. My role is to assist marketing and sales teams in their operations and present our digital workplace solution to the world. I mainly blog about the latest tech trends, digital transformation, internal communication and how to navigate through eXo Platform.
Related posts
  • All
  • eXo
  • Digital workplace
  • Open source
  • Internal communication
  • Collaboration
  • News
  • intranet
  • Future of work
  • workplace
  • Knowledge management
  • Employee engagement
  • Employee experience
  • Employee productivity
  • onboarding
  • Employee recognition
  • Change management
  • Cartoon
  • Digital transformation
  • Infographic
  • Remote work
  • Tips & Tricks
  • Tutorial
  • Uncategorized
Leave a Reply

( Your e-mail address will not be published)

guest
0 Comments
Commentaires en ligne
Afficher tous les commentaires