Working from home has become the new reality for millions of employees across the globe. But at what risk to your organisation?
Chances are, some if not all employees in your organisation are currently working from home. This new reality is unlikely to go away any time soon. Home-working can look and feel attractive to employees and organisations alike. It helps organisations lure and retain top talent from anywhere in the world. It can save money whilst giving back precious commuting time to employees. And, as we’ve discovered during the COVID-19 pandemic, it can allow you to maintain business continuity when you just cannot get to the office.
But, if not done right, working from home introduces significant additional risks to your business systems and critical information, with potentially disastrous consequences. A recent report in the US (report here) found that since the start of the pandemic, remote workers have caused a security breach in 20% of organisations. The global 2020 Cost of a Data Breach Report (report here) found that when the majority of your workforce are working from home, the average cost of each data breach increases by $137,000.
Examples of just some of the information security risks introduced by your increasingly remote workforce are:
Of course, there are many precautions that organisations can take. In our experience, implementing a systemic approach to information security within your business, such as an ISO 27001 Information Security Management System (ISMS), can reduce the chance of potential threats and vulnerabilities going unnoticed. It can also ensure measured and proportionate responses to all risks.
An ISO 27001 ISMS can help you manage risks associated with home-working by:
Working from home can bring significant benefits to an organisation and its employees. But in order to reap the benefits, organisations need to take the very real information security risks seriously. Implementing an ISO 27001 Information Security Management System will help you to identify your main risks and prioritise corrective action. It will empower your employees with the knowledge and responsibility to be the guardians of your information security when working from home.
If your business is ready to make the step towards ISO 27001, then get in touch here.
Amy Bradburn | Director of Customer Service | Hicomply