查看文章

Many organizations were forced to quickly transition to the work-from-anywhere (WFA) model as a necessity to continue with their operations and remain in business despite the restrictions imposed during the COVID-19 pandemic. Many decisions were made in a rush and cybersecurity decence tools were not in place to support this transition. In this paper, we first attempt to uncover some challenges and implications related to the cybersecurity of the WFA model. Secondly, we conducted an online user study to investigate the readiness and cybersecurity awareness of employers and their employees who shifted to work remotely from anywhere. The user study questionnaire addressed different resilience perspectives of individuals and organizations. The collected data includes 45 responses from remotely working employees of different organizational types; universities, government, private, and for non-profit organizations.

Despite the importance of security training and guidelines, it was surprising to discover that a high percentage of participants had not received them. To ensure that employees are informed and updated on security incidents that the organization encounters, a robust communication strategy is necessary. Additionally, there is an increased need to pay attention to the security-related attributes of employees, such as their behavior, awareness, and compliance. Finally, to help individuals and organizations resist cybercrime and fraud and mitigate WFA-related cybersecurity risks, we outlined best practice recommendations and mitigation tips guided by the study results.