COVID-19 , Governance & Risk Management , IT Risk Management
Back to the Office: Managing the RisksFormer NSA CISO on Reassessing Security Infrastructure
As organizations that shifted to a remote workforce consider allowing some workers to return to the office environment, CISOs must reassess their security infrastructures, says Chris Kubic of Fidelis Cybersecurity, who formerly was CISO at the National Security Agency.
See Also: A Guide to Passwordless Anywhere
For example, Kubic says, some staffers returning to an office may seek to continue to rely on personal devices for business purposes. “The data they bring off their personal devices has a higher risk of being malicious,” he says. “You need to have an IT health check to make sure the devices employees are bringing into the office spaces don’t compromise your internal network.”
In a video interview with Information Security Media Group, Kubic discusses:
- The new threats posed by shifting to a “hybrid model” that involves staff members working at home or in the office;
- Why the security infrastructure for the remote workforce could prove to be inappropriate for the hybrid model;
- How CISOs can manage evolving risks.
Kubic, the CISO at Fidelis Cybersecurity, has more than 30 years of experience driving information assurance and cybersecurity initiatives across the United States Department of Defense, the intelligence community and the federal government.