More and more companies in the UK are switching to a hybrid working model, but with technology struggling to keep up with the change, cyber security vulnerabilities are starting to appear.
Recent research from Apogee polled two hundred IT directors and managers from public and private sector companies on the effect of hybrid working on their cyber security.
Cyber Security Issues Affecting Hybrid Working In The Private Sector
A quarter of respondents in the private sector mentioned cyber security as a challenge affecting their ability to support a hybrid working model. Yet, only 14% of companies prioritise data and device security in their IT infrastructure.
With almost a third of private sector IT directors saying that they audit their IT inventory between once a month and once every 4-6 months, many companies are also leaving themselves open to cyber attacks.
Lack of endpoint security and device encryption were significant cyber security concerns around hybrid working in the private sector, with 64% of respondents admitting that they were not confident their IT infrastructure would meet compliance regulations.
The cyber security concerns don’t end at hybrid working itself; only 19% of respondents have an end-of-life plan in place for their devices, with only a third planning on implementing a plan to improve cyber security in the future.
Cyber Security Issues Affecting Hybrid Working In The Public Sector
Unfortunately, hybrid working in the public sector is no less vulnerable to cyber security issues.
Most public sector companies are leaning towards cloud-based solutions to allow their workforce to collaborate remotely, but 28% of directors reported that their team is wary of a cyber security breach. This indicates that cyber security measures are likely not up to standard, and coupled with respondents reporting that securing their hybrid workforce is not a priority, there’s still work to be done.
On a positive note, the public sector generally audits their IT estate more regularly than the private sector, but 18% of public sector companies are still only reviewing between once a month and once every 4-6 months.
A similar number of public sector respondents were not confident that their IT infrastructure was compliant with data security regulations, with only a third of companies having endpoint security and device encryption.
Even fewer public sector IT professionals reported having an end-of-life plan for their devices, with 20% planning to implement one in the future, showing more education is needed around the risks that cyber security vulnerabilities pose to public sector organisations.
The Landscape Of Cyber Security In A Hybrid Working World
Ultimately, there seems to be a disconnect between the skills of IT professionals and the online security requirements of a hybrid-working IT infrastructure.
More education and upskilling are required to help both public and private sector companies to meet the hybrid working demands of their workforce while maintaining robust cyber security.
Read more cyber security news and updates here.
