The COVID-19 health crisis almost instantly changed how the world works, bringing with it new security threats and challenges. As organizations work to find the path forward and emerge stronger on the other side, it’s important to take stock of where we are and where we need to be.

Working Together While Apart

Like many other organizations, ours transitioned employees to remote work, with nearly 95% of IBMers now working remotely. With this new reality comes the need to heighten employee awareness of the security risks associated with a distributed workforce and global crisis.

For example, since February, there has been an 84% increase in the use of tools that facilitate remote work, like video conferencing, remote access tools and Virtual Private Networks. At the same time, since March 11, when COVID-19 was declared a pandemic, IBM X-Force has observed a more than 6,000% increase in COVID-19 related spam.

As we navigate these uncharted waters, we should also remember that difficult situations can often bring out the best in us. Even as IT and security teams are facing new challenges due to COVID-19, organizations in every industry are leveraging IT tools to help keep their clients safe and productive – from enabling distance learning for students around the world, to securing major banking transactions, to thwarting ransomware attacks on critical hospital systems.

Focusing on Fundamentals

At the heart of all of these stories is a push to drive security into the fabric of business. Regardless of where or how we are all working, organizations need to continue to focus on the fundamentals of modern enterprise security, and be both flexible and diligent in their security approach.

Right now, at IBM, we are approaching security for ourselves and our clients in three ways: securing remote workforces, detecting and responding to accelerating threats, and virtually extending security teams to add expertise. There are a number of ways to meet these needs, including:

  • Employing cloud to account for the increased capacity and number of devices and networks being used by a global remote workforce
  • Mining data to identify potential vulnerabilities and understand the nature of the cybersecurity threats that have emerged during the crisis
  • Relying on experts and other business leaders who are best equipped to respond to attacks and then share best practices with other stakeholders

Leading with Innovation

With security fundamentals in place, organizations can also take this time as an opportunity to evolve cyber resilience strategies. For instance, as technologies like hybrid multicloud and Bring Your Own Device are driving remote work environments during this crisis, a solution like Zero Trust, which was already picking up steam even before COVID-19, has renewed relevance. Zero Trust is a flexible security framework that provides deeper security inside an IT perimeter and relies on sharing context between security tools to protect the connections between users, data, and resources.

New innovation cannot be left out of the security equation, and that it will be even more important as we prepare for the future.

Remembering Your Purpose

Even though how we work and where we work may have changed, why we work has not. At IBM, our mission is to be essential for clients; we have the tools to help ensure their business continuity and IT resiliency in the face of this challenge, and we have a collective drive to improve for the future.

To secure that future, leaders across industries need to continue to embrace the security fundamentals that have served them well up to now, and also take advantage of opportunities for innovation and outside-the-box thinking that can accelerate positive change.

By continuing to focus on this balanced approach to enterprise security, hopefully we will all be in a much better place when we come out on the other side.

Watch the Think Digital Session Now

More from CISO

X-Force Threat Intelligence Index 2024 reveals stolen credentials as top risk, with AI attacks on the horizon

4 min read - Every year, IBM X-Force analysts assess the data collected across all our security disciplines to create the IBM X-Force Threat Intelligence Index, our annual report that plots changes in the cyber threat landscape to reveal trends and help clients proactively put security measures in place. Among the many noteworthy findings in the 2024 edition of the X-Force report, three major trends stand out that we’re advising security professionals and CISOs to observe: A sharp increase in abuse of valid accounts…

Boardroom cyber expertise comes under scrutiny

3 min read - Why are companies concerned about cybersecurity? Some of the main drivers are data protection, compliance, risk management and ensuring business continuity. None of these are minor issues. Then why do board members frequently keep their distance when it comes to cyber concerns?A report released last year showed that just 5% of CISOs reported directly to the CEO. This was actually down from 8% in 2022 and 11% in 2021. But even if board members don’t want to get too close…

The CISO’s guide to accelerating quantum-safe readiness

3 min read - Quantum computing presents both opportunities and challenges for the modern enterprise. While quantum computers are expected to help solve some of the world’s most complex problems, they also pose a risk to traditional cryptographic systems, particularly public-key encryption. To ensure their organization’s data remains secure now and in the future, chief information security officers (CISOs) should educate themselves about quantum computing, proactively address the coming quantum risks to cybersecurity and work to establish cryptographic agility in their enterprise.A future cryptographically…

Topic updates

Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today