Remote Working Pre- and Post-COVID-19: An Analysis of New Threats and Risks to Security and Privacy
This addresses security and privacy challenges for organizations and employees adapting to remote work, but it is incremental as it builds on existing knowledge of remote work risks.
The paper analyzes cybersecurity and privacy concerns from remote work during COVID-19, finding that factors like lack of training and rushed tech deployment create new cyber-risks, while increased monitoring compromises employee privacy.
COVID-19 has radically changed society as we know it. To reduce the spread of the virus, millions across the globe have been forced to work remotely, often in make-shift home offices, and using a plethora of new, unfamiliar digital technologies. In this article, we critically analyse cyber security and privacy concerns arising due to remote working during the coronavirus pandemic. Through our work, we discover a series of security risks emerging because of the realities of this period. For instance, lack of remote-working security training, heightened stress and anxiety, rushed technology deployment, and the presence of untrusted individuals in a remote-working environment (e.g., in flatshares), can result in new cyber-risk. Simultaneously, we find that as organisations look to manage these and other risks posed by their remote workforces, employee's privacy (including personal information and activities) is often compromised. This is apparent in the significant adoption of remote workplace monitoring, management and surveillance technologies. Such technologies raise several privacy and ethical questions, and further highlight the tension between security and privacy going forward.