Rise in remote work opens up security holes, BeyondTrust report

Morey Haber, CTO and CISO, BeyondTrust.
Morey Haber, CTO and CISO, BeyondTrust.
4 years ago

BeyondTrust, a player in Privileged Access Management, PAM, has released the results of a commissioned study conducted by Forrester Consulting. The study was titled as Evolving Privileged Identity Management, PIM, In the Next Normal, November 2020. The study was commissioned by BeyondTrust to evaluate PIM challenges in the new normal created by the Covid-19 pandemic.

The Covid-19 pandemic imposed an immediate and massive shift to a remote workforce. This created new vulnerabilities by expanding organisations’ attack surfaces. The pandemic has created a situation where virtually all remote employees need privileged access to perform their jobs and has hastened the identity as the new perimeter paradigm.

This survey uncovers the requirements for creating a secure remote workforce that protects the business with PIM in the post-Covid era. Key findings include:

The impact of Covid-19 on the acceleration of the remote workforce

  • 91% forecasted increase in size of remote workforce, versus 45% before the pandemic
  • 53% of US workers reported willing to work from home more, even after the pandemic is over

The inadequacy of perimeter-based network security and legacy remote access technologies, like VPN, in securing remote workers

  • 83% believe the increase in remote workers increases the risk of a security incident
  • 47% rank Preparing for an Increasingly Remote Workforce as a Top 5 security priority for 2021

A comprehensive PIM solution mitigates threats by protecting privileges across accounts, endpoints, and access pathways

  • 91% of respondents agree that PIM plays a crucial role in securing remote workers
  • 86% of respondents say their organisations will invest more in PIM over the next two years to address the risks related to remote working
  • 56% report that improved IT administration efficiencies are the top benefit of PIM

The definition of who requires privileged access can no longer be reserved for IT administrators; it must include use cases related to remote working. Having robust access controls allows employees to conduct their jobs wherever they are, without incurring risk. PIM strategies must go beyond traditional password management and include a holistic approach, including endpoint privilege management and secure remote access.

Key recommendations

Privileged users are critical to the operations of digital business, yet they also present a substantial security risk. Organisations need effective PIM controls to limit the attack surface while enabling regular business operations. The survey results point to the following best practices:

Plan for dramatically more remote privileged users

The rapid increase in the need for privileged access by remote workers will open many security holes and compliance violations. To avoid this, set up tools and processes to discover and categorise privileged users and activities to determine appropriate access rights. Apply security controls that best fit the needs of various privileged user types and situations.

Establish a strong governance model for PIM

Traditional PIM tools don’t effectively meet the rules and governance of privileged users. Evolve and expand your solutions to secure changing environments and attack surfaces.

Implement strategies to reduce the attack surface and prevent lateral movement

Adhere to the principle of least privilege by granting privileged users just enough access to resources, and just enough permissions to perform actions required for their jobs.

Apply just-in-time access approaches for dynamic business use cases

Privileged access must be agile within business areas that have a high rate of change and where personnel or machine identities must access resources. Limiting access to time-bound requests with context-aware workflows for approval removes standing access while enabling the business to move forward.

Balance UX with security controls for remote privileged users

Make the authentication and access request process as frictionless as possible. Employ unobtrusive security controls, like session monitoring and threat detection, that run in the background and alert you to high-risk activities.

Provide centralised, consistent administration with an integrated PIM suite

Malicious actors target privileges to gain access to and move laterally throughout an organisation. Comprehensive PIM tools and approaches will help protect your enterprise. A holistic PIM solution will provide full visibility of threats across the privileged landscape. An integrated platform will provide consistent administration, reporting, and response capabilities.

“The findings of this global survey confirm the fact that the pandemic has accelerated the borderless enterprise and brings identity to the forefront of the new perimeter,” states Morey Haber, CTO and CISO at BeyondTrust. “To protect their assets, enterprises must secure their data throughout their IT estate. This requires comprehensive PIM solutions that enable uncompromised access to applications and data from anywhere, by any user or device.”

Privileged Identity Management challenges faced by organizations.

Don't Miss

Bob Hansmann, Sr. Product Marketing Manager – Security at Infoblox

Enhancing Security Operations with AI-Driven SOC Insights

In the relentless battle against cyber threats, Security Operations Centers (SOCs) find
Rob Spee, SVP of Global Channels & Alliances, BeyondTrust.

3 trends set to shape the regional cybersecurity channel in the year ahead

As we enter 2024, the GCC channel must shake off the lingering