96% of IAM Strategies Impacted by Remote Work

LastPass • PublishedJuly 30, 2020

Subscribe & Save 20% off Premium or Families plans

Enter your email

By subscribing, you agree to receive marketing communications regarding industry news and research, educational resources, and LastPass products and services. The processing of your personal data in accordance with the LastPass Privacy Policy. You can unsubscribe from marketing communications at any time.

96% of IAM Strategies Impacted by Remote Work

The way we work is always changing. Pen and paper transitioned to computers. Local systems moved online. In-house apps were replaced with software-as-a-service via the cloud. Company-issued devices opened up to BYOD. And now, work-from-anywhere has replaced the typical office and is the norm in many organizations. Even as remote work gained popularity in recent years, this year’s sudden need for many organizations to transition to a completely remote workforce caught most off-guard. With all the conveniences that remote work offers, businesses need to adapt their IAM strategy so that remote workers are secure and productive with centralized oversight. 96% of IT decision makers revealed that remote work impacted their IAM strategy this year. Every evolution in the way we work has equally demanded a shift in the way identity and access are managed – and the transition to a work-from-anywhere policy is no different. IAM is all about making work happen, quickly and securely. By connecting the right employee to the right business resources at the right time, IAM technologies keep day-to-day work flowing while protecting sensitive data. No matter where the work is being done, IAM is essential to facilitating a secure, effective workforce. However, there’s no denying that remote work presents unique IAM challenges. Employees may be connecting from unsecured Wi-Fi networks. Work and personal activities online may mingle more than ever on the same devices. Unvetted apps and websites may be frequented. Without visibility into who’s accessing what and when, and without appropriate layers of protection in place, a remote workforce opens up an organization to cyberthreats and greater risk of data breach. IAM essentials for remote work Any business looking to transition to a remote workforce long-term needs to adapt their IAM strategy accordingly. To be successful in the work-from-anywhere era, organizations need to ensure their IAM strategy includes:

Secure access at all times: No matter the resource a worker is accessing – apps, password-protected accounts, databases, and more – the access needs to be quick and secure. For apps managed by IT, Single Sign-On (SSO) simplifies login by using one session to authenticate across all apps. For password-protected accounts, including those shared among team members and those unvetted by the IT team, Enterprise Password Management is needed. An IAM strategy that combines these two technologies provides secure access to all resources, at all times.

MFA for every access point: Security is best implemented in layers. Given the weaknesses of passwords – from poor password hygiene to susceptibility to cyberattacks – every access point from apps to workstations to VPN needs to be shored up with MFA. By requiring additional authentication factors beyond a password – including something you have and something you are – MFA can prevent unauthorized access and reduce the risk of data breach.
Flexibility: As employees work remotely, organizations need to craft an IAM strategy that can continue to adapt to evolving needs. That means supporting new devices, connecting to new apps, and responding to new threats. Invest in IAM technologies that integrate well with existing systems and leave room for solutions to new problems down the road.
Usability for all: Working remote should add convenience, not frustration. Look for IAM solutions that remove points of friction for employees. Shift security to the background, where sensitive data is better protected in a way that’s nearly invisible to the employee. Leverage what employees already have – their smartphones, their fingerprints – to deliver greater security.

Remote work is here to stay at some degree or another, and every organization needs to adapt their IAM strategy accordingly. An effective work-from-anywhere policy will balance the need to secure remote workers and their devices from cyberattacks, while making it easy to access data and resources as appropriate. As the work landscape continues to evolve, businesses that prioritize a flexible IAM strategy will find themselves best equipped to adapt to changing technology and market demands.

Share this post via: