Category: Digital Workspace

Categories
Digital Workspace

Why identity management in the digital workspace is essential for organisations?

Unlocking smartphone with fingerprint scan sensor, man using modern security technology feature to authenticate access and use device

Why identity management in the digital workspace is essential for organisations?

Workplace mobility allows employees to connect to almost any network wherever they are to work. While this gives them the flexibility to work wherever and whenever they want, it sometimes can create another problem for companies. IT departments are finding it harder to keep track of who accesses company data using third party devices or sources. Not only does this create a security vulnerability for organisations, but it also means companies would need to spend more time to check who is accessing them and if these devices pose a threat to the organisation.

At the same time, it is estimated that there will be around 75.4 billion IoT devices by the year 2025. From personal mobile devices to smart printers in offices, the growth of IoT devices, especially in the workplace, will not only change the way we work but the way we view cybersecurity as a whole. With employees preferring to use their own devices for work these days, organisations are now finding it harder to track the amount of data that’s being transferred by these devices.

This absence of control and visibility over IoT devices and access have led to breaches in organisations before. A recent example would be the data breach suffered by Malindo Airlines in 2019. According to the airline company, two former employees of an e-commerce services provider in India had improperly accessed and stole the personal data of the airlines’ customers. A huge number of accounts were exposed, leading to the airline requesting customers to reset their account passwords.

By the time the airline realised about the breach, it was too late. Information such as passport details, home addresses and phone numbers were leaked onto data exchange forums on the dark web.

Malindo Airlines was not the only airline to suffer such a breach though. In 2018, the personal data of 9.4 million passengers from Cathay Pacific Airways and Hong Kong Dragon Airlines were leaked as well. The airline had said the breach was caused by unauthorised access to some of the passenger data is managed. Compromised data included passenger details such as nationalities, emails, passport and identity card numbers.

Now, if the airlines had visibility over who was accessing their data at that point of time, the breaches may have been able to be contained and the damage would not be as huge as this. They would have been alerted about the unauthorised access to their data and could have taken prompt actions to stop it.

At the same time, companies also need to be able to remotely grant and deny access to employees leaving or joining the organisation. In the Malindo Airlines case, the airlines should have immediately removed the access of the former employees of that particular company the moment they were no longer needed.

It’s not just about controlling access. Employees using their own devices for work may also compromise companies. Newer technologies bring in newer and more advanced devices. But not many of these devices, especially personal ones, are patched with cybersecurity protection when they are used for work. The digital workspace is fast becoming the norm for the modern workspace which is why organisations need to ensure their employees are accessing their work with secured devices.

This is where VMware’s Workspace ONE comes in. VMware Workspace ONE is a management platform which allows IT administrators to have control over access for end-users’ mobile devices as well as cloud-hosted virtual desktops. This also includes applications from the cloud or from an on-premises deployment. Meaning, breaches like the one experienced by Malindo Airlines can be avoided as IT administrators can remotely lockout users that no longer need access to the company.

Apart from that, more employees today prefer working out of the office due to the nature of their job. Companies give them this flexibility as long they produce results. Recently though, circumstances are making employees having no choice but to work from home.

The recent Coronavirus outbreak has indeed caused some problems to the workforce as employees find themselves being confined and quarantined to their homes. Those that are sick are being taken cared of, but for the rest, they’re just eager to get back to work, but circumstances don’t allow it. So, they have no choice but to use their own devices and work from home.

This is where the security features of Workspace ONE makes it the ideal platform to monitor employee devices. Having employees work from home is one thing, but companies need to ensure the devices they use for their work are well secured and protected. Often times, employees would use their personal devices when working from home. Personal devices may not have the necessary security protection needed when accessing sensitive work documents. Also, the network they are working on at home may not be as secured as an office network.

VMware Workspace ONE is the answer to what organisations need to ensure their employees have a secure digital workspace. The added visibility over the usage and access for IoT devices can help organisations reduce security threats. IT administrators are able to deliver applications and manage them fast, securely and cost-efficiently. To find out more about how your organisation can have control and visibility over your employee’s mobile devices through VMware Workspace ONE, click here.  

*DISCLAIMER: This article was supported by Net One Asia. Net One Asia specialises in helping enterprises adopt remote-work culture, enabling staff to stay productive with a digital workspace environment.

Subscribe to Our Newsletter
* indicates required
Recent Posts
Archives
Tags
Subscribe to Our Newsletter
* indicates required
Follow Us
Facebook Linkedin Twitter Youtube Envelope
Categories
Digital Workspace

Combating the Onslaught of Data Breaches: Why Security Policies In Your Digital Workspace Is Essential

Combating the Onslaught of Data Breaches: Why Security Policies In Your Digital Workspace Is Essential

Data is an asset which holds tremendous value to an organisation. Consequently, just like other valuable assets, it needs to be suitably protected. Otherwise, the impact of a security incident may result in downtime or business disruption, financial losses, as well as other intangible damages to an organisation’s brand name and reputation.

Data-related security incidents may occur to both individuals (such as the iCloud leaks of compromising celebrity photos) and organisations alike (like the Malindo Air customer data leak). For those two cases, however, investigations have shown that they were not caused by security vulnerabilities within Apple’s iCloud infrastructure, Malindo’s data infrastructure or that of its cloud provider, AWS.

Organisations spend millions on securing and protecting their data, so why are such security incidents still occurring regularly? According to investigations, the iCloud leaks were a direct result of weak passwords and password reuse, while Malindo Air became a victim of malicious insider threats, in the form of two former employees.

Does your organisation have the necessary security policies to protect your data? Today’s workspaces allow employees to use multiple devices, from company-issued notebooks and BYOD, such as phones or other devices.

Do you need to enforce the necessary “complexity” of passwords for your users? How do you enforce and audit such policies? More importantly, how many different passwords for different applications do each employee need to remember?

Password fatigue is a real issue. Having to remember an excessive number of passwords will lead to other possible issues, such as employees sticking their “list of passwords” in plain sight, like their monitors, for instance, for convenience.

Meanwhile, the Malindo Air incident highlighted that a breach is possible even when security policies are seemingly in place. Why did former employees still have access to critical information? Why was access not revoked upon termination?

In many organisations, different employees use a number of different applications. During onboarding, different PICs in different departments may create accounts and passwords for them to access those applications. But when they leave the company, how do you ensure that their access to all the sensitive applications and data are also terminated?

Hence, in the new digital workspace era, protecting your valuable assets begins with a well-defined, comprehensive security policy. Furthermore, you need to establish the necessary procedures, with regular audits, to ensure compliance. More regulatory authorities are now increasing their compliance requirements, or at the very least, providing guidelines for information security management. Many SMEs may not be directly required to comply, but do remember that some of your customers, like banks or public companies, may require your compliance in order for you to continue doing business with them.

The majority, if not all, of large enterprises or MNCs have their security policies in place. The task, however, may be more challenging for SMEs that have access to fewer resources, tools, talent and the necessary consultancy services.

Fortunately, in an ever-connected world, you may now find the necessary security and privacy policy templates or framework, such as the ones devised by NIST, that could guide your organisation in the effort to reduce cybersecurity risks and manage cyber supply chain as well as insider risks.

In terms of tools, VMware Workspace ONE may be the answer to what organisations need to ensure their employees have a secure digital workspace. The simple and secure digital workspace platform from VMware offers added visibility over the usage and access for IoT devices, which can help organisations significantly reduce security threats. In addition, IT administrators are able to deliver applications and manage them quickly, securely and cost-effectively.


VMware Workspace ONE is offered via a SaaS subscription model (for a minimum of 25 users) for less than US$4 per device per month (Standard Edition), to provide businesses with the basic device and application management tool that they need in today’s era of rising data security challenges and complexities. The advantage of using such a cloud-based solution is that it eliminates the need for large and costly IT infrastructure investments.

More advanced versions, such as the VMware Workspace ONE Enterprise Edition, can provide additional levels of security and features, such as email and content management, or even application delivery and virtual desktop infrastructure.

To find out more about how your organisation can have better control and visibility over your employees’ endpoints and mobile devices with VMware Workspace ONE, click here.

Subscribe to Our Newsletter
* indicates required
Recent Posts
Archives
Tags
Subscribe to Our Newsletter
* indicates required
Follow Us
Facebook Linkedin Twitter Youtube Envelope
Categories
Digital Workspace

Business Continuity Procedure for 2019 Novel Coronavirus

Business Continuity Procedure for 2019 Novel Coronavirus

On 7th February 2020, Singapore upgraded its health alert status to orange, the second-highest level on its DORSCON (Disease Outbreak Response System Condition). The guidelines included precautions for large-scale events, regular health checks and enhance business continuity capability at workplaces. 

Source: Guide on Business Continuity Planning by Enterprise Singapore – Annex 5.

To minimize transmission risks, employees who had contact with infected victims or traveled to affected countries within the last 14 days are advised to self-quarantine or take leave of absence as precautions.

To ensure business continuity, employers are allowing employees to have flexible work arrangements which include working off-site or from home, to minimize business disruption. Employers are also recommended to deploy employees into teams, with no physical contacts between the teams, to ensure not all employees are exposed to the same risk. For example, one team works from home while the other at the office.

But do organisations have the necessary IT capabilities to enable workplace mobility? At Net One Asia, we offer quick deployment of solution and necessary Managed Services to enable your organisation to jump start a Business Continuity Plan. This includes ensuring you have the following:

  1. What are the necessary Applications required by employees to work, be it on-premise or on the Cloud?
  2. Do your employees work with office issued notebooks? If they do, are the necessary applications installed in the devices? If they don’t, do your employees have personal computers or devices which can be used for work? Necessary applications must be deployed to Employees’ owned devices.
  3. Employees will need a VPN connection to access to the on-premise Applications. Do you have any VPN connection?

The other option for you if to subscribe to VMware Workspace ONE. The SaaS or Net One Asia Managed Services includes: –

  1. Identification of User Group to deploy necessary users’ policies
  2. Identification of Device Management to deploy necessary policies to office issued machines or BYOD (3rd devices)
  3. Identification of Applications to deploy Application Catalogues to employees. (Note that Applications must be supported by Win10)
  4. Provision of Application VPN tunnels to office premises for secured connections.
  5. Provision of Emails to Win10 or other mobile devices, such as Android or IOS.
  6. Other options – to consider Application delivery and/or VDIs.

With Net One Asia Workspace-as-a-Service,  you may introduce simple business continuity planning to enable flexible work arrangement for your employees and be ready for any unforeseeable events. Business continuity planning must always be considered as part of your overall business plan. Also, do note that VMware Workspace ONE is subscription base at a minimum of 25 users, supporting cloud-based to minimize large IT Infrastructure.

*DISCLAIMER: This article was supported by Net One Asia. Net One Asia specialises in helping enterprises adopt remote-work culture, enabling staff to stay productive with a digital workspace environment.

Subscribe to Our Newsletter
* indicates required
Recent Posts
Archives
Tags
Subscribe to Our Newsletter
* indicates required
Categories
Digital Workspace

Empowering the Digital Workspace is Key to Your Digital Transformation Strategy

Empowering the Digital Workspace is Key to Your Digital Transformation Strategy

Based on many surveys conducted around the world, such as the Annual CEO Benchmarking Report 2019, recruiting and retaining the right talents is one of the biggest challenges for today’s businesses. Among the major contributing factors for this is that employee working habits have irrevocably changed over the years. For instance, many millennials (who make up the majority of today’s workforce), are now ranking work-life balance higher than financial compensation.

Digital transformation, on the one hand, explores the consumption patterns of the millennials, evident with the thriving of online shopping, e-wallets and delivery services; workstyle innovation is another critical business element, especially in talent management. Today’s employers need a paradigm shift of management style from control to empowerment – with objectives to ensure individual staff’s quality of work and promote team collaboration, while providing the flexibility of workstyle, in terms of choice of devices, where and when to work.

If a business is not transforming towards satisfying the needs of the new generation, who are more mobile and digitally sophisticated, it will risk losing out to competitors both in terms of business outcomes and attracting the best talent.

Traditional IT departments, as like old management, used to operate in a controlled environment consisting of standard-issued computers within a locked-down network. IT often introduced multiple point solutions from multiple vendors to cope with the ever-expanding user requirements, resulting in increasing complexities and demand for multiple skills. It is not uncommon for IT to manage at least five or more consoles to support a user and much of such operations are manual and isolated, without integration.

Many IT teams are struggling, in term of visibilities of assets and resources, with knowledge of multiple products and real-time reporting required for compliance.

In digital transformation, IT’s role is to enable flexible workstyle and simplify the user experience while ensuring a secure environment to protect data confidentiality and integrity. Today’s IT operations require modern IT management in order to ease complexities, automate processes and provide real-time intelligence reporting.

With an integrated digital workspace platform, you’re able to combine pivotal functionalities such as Mobile Device Management (MDM), Mobile Application Management (MAM), Mobile Content Management (MCM) and Mobile Email Management (MEM), to improve the whole working experience of your digital and mobile workforce from two different perspectives:

  1. For employees, a simplified and consistent workspace with the flexibility to access all the apps and data that they need anywhere, anytime, from any device.
  2. For IT departments, a centralised interface to securely manage the large disparate devices, applications and users with automation of manual tasks and real-time information.

When considering a digital workspace platform for your organisation, you should ask the following rudimentary questions:

  • Is your organisation considering digital transformation? Such as new sales channels or digital tools to improve employee productivity.
  • Does your organisation allow BYOD? Such as notebooks or mobile devices – do you have a BYOD policy?
  • Does your organisation allow flexible work? Such as flexi-hours or remote working – what and how to access the applications and data?

It’s important to note that not all digital workspaces are created equal and can provide these functionalities to your organisation. Workspace ONE is a great example of an industry-leading digital workspace platform that was designed to deliver and manage any app on any device.

The mobile workforce revolution isn’t some faraway, abstract concept; It is a reality for many ASEAN businesses today – regardless of whether IT departments like it or not. That is why organisations that are serious about embarking on a digital transformation journey are turning to digital workspaces to address the challenges that come with empowering a digital workforce.

To find out more about Workforce ONE, one of the leading platforms in the digital workspace and unified endpoint management tools for enterprises, click here.

*DISCLAIMER: This article was supported by Net One Asia. Net One Asia specialises in helping enterprises adopt remote-work culture, enabling staff to stay productive with a digital workspace environment.

Subscribe to Our Newsletter
* indicates required
Recent Posts
Archives
Tags
Subscribe to Our Newsletter
* indicates required
Follow Us
Facebook Linkedin Twitter Youtube Envelope