Remote Work Can Enhance Cybersecurity

The rapid growth of remote work has sparked concerns about cybersecurity risks. However, a recent study conducted by the Farmers School of Business at Miami University found unexpected cybersecurity benefits associated with remote work, but these depend on comprehensive training programs and employee involvement.

“Our study found that working from the office within corporate firewalls and security boundaries induced employees to exhibit risky cybersecurity behavior,” says Joseph K. Nwankpa, Cybersecurity Researcher, Miami University.

Contrary to common assumptions, remote work fosters a greater sense of responsibility for individual cybersecurity among employees, found the study. Without the constant oversight of managers, remote workers exhibit increased vigilance, actively engaging in cybersecurity practices to protect themselves and their organizations. On the other hand, office employees tend to become complacent, relying heavily on the perceived safety provided by their company's cybersecurity infrastructure, found the study. Office employees can often delegate cybersecurity responsibilities to their superiors or IT specialists, inadvertently putting their organizations at risk.

The study highlights that this variance in behavior stems from a combination of factors, including the environment in which employees operate and the level of training they receive. Remote workers, lacking the physical protection of an office space, develop a heightened awareness of potential cybersecurity threats. They understand the importance of safeguarding their personal devices and networks, knowing that their actions directly impact the security of their work-related information. In contrast, office employees tend to grow accustomed to the safety net of corporate cybersecurity measures, leading to a diminished sense of personal responsibility in practicing cybersecurity precautions.

When employees are effectively trained, they develop a strong security awareness and adopt proactive measures to safeguard their organizations against cyber threats. Moreover, the research showed that involving employees in the decision-making process enhances the efficacy of cybersecurity precautions, instilling a sense of shared responsibility for organizational security.

These findings hold significant implications, particularly in regions such as Mexico where cyber threats pose a substantial risk to businesses. A survey led by Fortinet revealed that eight out of 10 hacked companies in Mexico were breached through employee devices, which highlights the importance of addressing vulnerabilities in the workforce. Moreover, according to Fortinet’s survey, 81% of the cyberthreats were centered in employees’ vulnerabilities and used simple cyberattacks, such as phishing and keylogging, to steal companies’ information.

Thus, embracing remote work ideologies and implementing comprehensive cybersecurity training programs can help combat the increasing number of cyberthreats in the country. By raising employee awareness and providing them with the necessary skills, organizations can empower their workforce to confidently employ security measures remotely, improving overall efficiency and effectiveness. Even 90% of senior executives in the companies that were surveyed by Fortinet believe that it is necessary to invest in training their employees on cybersecurity risks, measures and potential protocols to protect their assets.

Widening the reach of cybersecurity awareness across companies not only reinforces their abilities to recognize cyberthreats, but grants the employee a sense of responsibility that incentivizes them to employ security measures remotely.