Remote, and now hybrid, work environments have proven to be not only beneficial for businesses, but also preferable for employees. As teams look toward the future with an increased focus on remote working options, many will also have to consider security for their essential systems. From remote work policies to virtual private networks (VPNs) and basic human error, there are several risk points to examine and shore up.

Remote work security risks

Many companies have adopted ongoing remote or hybrid work environments. In fact, according to a recent report, 4.7 million people in the U.S. work remotely at least half the time. Although the benefits are prominent for both employee and employer, there are security risks to consider with regard to remote work.

Some of the top security risks include:

• Access to company data via unsecured wireless networks
• Weak passwords
• Usage of personal devices for business use without proper security
• Unprotected file sharing
• Phishing or other social engineering attempts

To address security risks associated with remote work environments, companies should consider adopting or reinforcing zero-trust policies and multifactor authentication (MFA) — both have proven to be successful in preventing security breaches. Zero-trust policies effectively treat every interaction, regardless of its source, as untrustworthy. As such, additional authentication measures, such as MFA, can validate users and content.

VPN vulnerabilities

Virtual private networks (VPNs) are meant to protect the company network from being accessed by unauthorized users through Wi-Fi connections. Unsurprisingly, VPN usage increased dramaticallyduring the pandemic as more businesses went remote. Today, many of those businesses have either maintained a remote work environment or transitioned to a hybrid one, which allows for continued remote options.

VPNs are intended to create a safe space for activities, protected from individuals with malicious intent. Unfortunately, they are not perfect and can fall victim to common cybersecurity threats such as ransomware, phishing, and more. According to a recent report on VPN security, “Nearly half of all IT professionals surveyed witnessed an increase in exploits targeting their VPNs since adopting remote work.”

For IT teams who are tasked with securing a company’s VPN, it’s important to ensure the system is maintained and updated with the latest security patches. Zero-trust policies and multifactor authentication also can shore up vulnerabilities, creating barriers to cyberattacks. Other interventions may include:

• Encryption
• Antivirus software and intrusion detection
• Permission settings
• User access audits

Human error

Naturally, humans are flawed, imperfect beings. This is the reason why, despite decades of cybersecurity training and warnings, phishing attacks still happen and cause immense damage. People can’t be monitored at all times — so how do you maintain security in a world where a significant risk point is the people interacting with the system?

Regrettably, there’s no perfect solution. Employee training can be a tremendous help, and virtual desktops and cloud security can bolster compliance. Cybersecurity threats continue to increase in sophistication and frequency. Unfortunately, that means there’s a greater likelihood that one or more individuals will fall victim to a clever phishing email or other tactic. The good news is, you can significantly mitigate these risks through education for employees and increased security policies and protocols.

As the name suggests, access control technology aids in enabling or disabling access to a physical or virtual space, in an effort to increase security and deter individuals with malicious intent. As workplaces have shifted from primarily in-person office buildings to hybrid or even remote environments, and as cybercriminals have increased their sophistication, access control technologies and policies have had to adapt as well. How has access control improved recently?

Physical security

On-site access control provides a layer of security to occupants and data or equipment housed within a building by controlling who is allowed to enter and recording entry and exit activities through access logs. Unfortunately, this is not a foolproof system. If an access code or key is stolen, it can be used to access the facility, creating a security threat. By combining physical access control systems with security cameras, teams can better monitor activities on the premises.

For the team at My Brother’s Table, a nonprofit soup kitchen located in Lynn, Massachusetts, ensuring the safety and well-being of their employees, volunteers, and visiting families is a top priority. When they experienced degradation in their analog cameras and intercoms, these systems stopped functioning altogether — so they reached out to the team at K & M Communications for help. The team upgraded their network wiring to better support the new and existing devices. As shared by Mike Coffey, Operations Manager of K & M, “We replaced their old cameras with new Axis M-line HDTV megapixel cameras and added cameras to areas that weren’t covered before. To improve door security, we swapped out their old intercoms with new Axis network video intercoms and linked them to AXIS Camera Station Secure Entry which allows them to control their video and access control systems within a single platform. We also installed Axis keycard readers at designated doors for credentialed volunteers and service providers to use for entry into the facility.” As a result of the upgrade, the staff at My Brother’s Table saw an immediate impact in maintaining civility, safety, and security.

Integrating cameras into physical access control systems can provide the level of security needed to combat common risks. For example, with the use of both systems, teams can subvert attempts to access the building by disgruntled former employees or vendors, as well as potential tailgaters or unaccounted-for visitors. As the folks at My Brother’s Table also learned, the extra visibility provided by the integrated cameras aided in monitoring activity such as deliveries and parking issues.

Online security

Cybersecurity is a growing problem across all industries today. The cost of a cyberattack that results in a data breach can be tremendous, not only to a company’s finances, but also to its reputation and stability among customers. According to IBM, the average cost of a data breach in 2021 was a hefty $4.24 million.

As more businesses proceed with hybrid or remote workplaces, the threat of cyberattacks increases. To add an extra layer of security for virtual access control, many teams are implementing a zero-trust policy and multifactor authentication (MFA) protocols. A zero-trust policy treats incoming requests as if they originated from an untrusted source, requiring every interaction to be validated through an authentication process. In 2021, the White House released an executive order related to improvements to cybersecurity and their commitment to a zero-trust policy, stating, “The Federal Government must adopt security best practices; advance toward Zero Trust Architecture; accelerate movement to secure cloud services, including Software as a Service (SaaS), Infrastructure as a Service (IaaS), and Platform as a Service (PaaS); centralize and streamline access to cybersecurity data to drive analytics for identifying and managing cybersecurity risks; and invest in both technology and personnel to match these modernization goals.”

Multifactor authentication is an effective method to ensure online security by restricting access to only those individuals who are able to provide multiple forms of evidence to their identity. This may take the form of inputting a password followed by entering a code that the individual receives via text message to their smartphone.

Integration

Access control and security systems should be integrated for optimal performance and visibility. The ability to access security information, including entry and exit data, software access, visual information from cameras, and more can provide an all-in-one protection plan for a possible breach, whether it be physical or virtual.

Additional security features that should be considered include:

• Lockdown systems. In the event of an emergency, access can be secured across all physical and virtual entry points.
• Unauthorized exit prevention. In locations like schools or hospitals, access control — either in or out — is a big deal. Whether it’s students trying to sneak out of class early or a confused elderly patient attempting to leave the hospital unsupervised, exit prevention is important.

How can a communications tech partner support your IT team as it grows? The Navicon Group CEO Robert Lane shares some of the major benefits of working with a complete communications technology partner, including freeing up resources and providing 24/7 support.

Technology is complex and always advancing. With recent surges in remote work, IT and facility management departments are run ragged keeping everything working smoothly and securely. Professional partnerships can support your teams and relieve some of their burden. Boost your business bandwidth, increase efficiency, and support IT and facility staff with partners ready to help your business resolve technology and infrastructure challenges.

Structured cabling

Structured cabling is the foundation of technology expansion and digital transformation throughout business and industry. Structured cabling is defined by six factors that form a standardized framework for cable installation. These factors are derived from cable distribution guidelines issued by the American National Standards Institute and Telecommunications Industry Association (ANSI/TIA-568). They include:

1. Entrance facilities (EF)
2. Equipment room (ER)
3. Backbone, or riser, cabling
4. Telecommunications room (TR) or telecommunications enclosure (TE)
5. Horizontal cabling
6. Work area (WA)

These standards make installing and managing networks of cables cost-efficient, convenient, and easy to navigate. With everything organized, human error is less likely to contribute to unexpected downtime, and maintenance is easier to perform.

Structured cabling is also effective for systems integration. Integrated systems enhance visibility and are easier to navigate and maintain.

Security

Security is a top concern for businesses. Integrating cameras with access control is the most efficient way to be proactive in monitoring a business. Live views, pre-determined alerts, and artificial intelligence (AI) help human security teams identify and locate potential security threats. With the ability to monitor security through a mobile or desktop app, teams can monitor real-time events and send alerts to other team members for review. In addition to cameras and access control, environmental sensors have increased in popularity and provide peace of mind with real-time alerts that equipment is functioning properly.

VoIP

Voice over internet protocol (VoIP) is an internet-based communications system capable of managing all company communication, from phone calls to chat functionality. Most VoIP systems work with existing programs, such as Microsoft Teams and Zoom, enabling consistent, consolidated telecommunications. These systems can be on- or off-premises, or a combination of both, and can be easily configured to meet different needs. Often, cost savings are found during the exploratory phase of implementing a VoIP system.

VoIP can be customized to work anywhere and supports remote work models. It gives administrators more flexibility to make changes to the system rather than rely on outside vendors. Flexible, custom options help employees communicate more effectively and increase collaboration, productivity, and scalability.

A/V

With the technology demands arising from the pandemic, audiovisual (A/V) equipment transitioned from useful presentation tool to modern business necessity. Ongoing development of A/V solutions is largely focused on enabling virtual meetings and communications. As many employees continue to work remotely, so A/V equipment and software must increasingly apply to a dispersed workforce.

On-site A/V equipment continues to support in-person meetings and client presentations, and A/V technology development is expanding beyond presentation and communication to facilitate collaboration. Hotels are implementing A/V tools for conferences and other events, and schools continue to expand the use of interactive technology to engage students — and their mobile devices — in enhanced learning opportunities.

Technology management

Constant innovation requires adaptivity and a forward-thinking approach to technology management, and these four areas — structured cabling, security, VoIP, and A/V — merely scratch the surface of technology management demand in today’s business world. It’s a lot for overwhelmed IT and facility management teams to handle without help.

Expert, certified partners support your company’s efficiency with fast technology solutions and instant relief for overworked IT and facility management teams.