How to strike a balance between mobility and Wi-Fi security
Huge advances in technology over the past couple of decades mean it is now easier than ever to be a global worker. From video-conferencing into important meetings from anywhere in the world to sharing vital company documents with colleagues on deadline in London from the comfort of a hotel in Beijing, staff mobility has been completely transformed. With the number of mobile workers set to hit 1.75 billion in the next couple of years, companies are now faced with issues they did not previously encounter when the workforce all kept the same hours and operated under one roof.
One such threat that is keeping CIOs up at night is mobile security, in particular, the security issues posed by employee use of unsecured public Wi-Fi hotspots. In a recent iPass survey, more than 80% of CIOs said they had experienced Wi-Fi related security issues over the last 12 months and almost all agreed that the rise of Bring Your Own Device policies has contributed to these increased mobile risks.
Remote working – daylight data robbery!
IT teams are facing something of a perfect storm: a rapidly growing mobile workforce, the explosion of free public Wi-Fi and more sophisticated attackers. In response, they are largely having to tackle these new problems on the spot, adopting speedy fixes or policies to protect systems and data. While maintaining high levels of security is important, it shouldn’t have to come at the expense of the seamless, constant mobility demanded by the modern employee.
Wi-Fi hotspots in public spaces such as cafés, hotels and airports are understandably vital to mobile workers looking to stay connected. However, these public places have come under fire, with CIOs identifying these three locations as the top sites for Wi-Fi related security incidents. In fact, 57% of organisations suspect that one or more of their mobile workers have been hacked or caused a mobile security issue in the last 12 months, so it’s no surprise that they are looking for ways to address this problem.
Is banning public Wi-Fi the solution?
In response to security concerns around public Wi-Fi usage, many of the CIOs in the recent iPass survey have taken a somewhat radical stance: outright banning their remote workers from using public Wi-Fi hotspots. Overall, just over two thirds of CIOs had enacted some kind of Wi-Fi hotspot ban, with a further 16% expected to do so in the future. While this measure can help IT decision makers feel as though they have cut the risk of data breaches, this is not necessarily the case. A blanket ban only protects against one specific connectivity issue, and while making the decision to limit use of public Wi-Fi hotspots may help in the short-term, it does not promote understanding of the wider security threat.
Mobile workers may not have consistent access to secure networks, but will always have important tasks to complete that require on-the-go connectivity. Whether it is using either a personal or a corporate-issued device, users will find a way to get connected. Businesses need to have company-wide procedures in place to enable this to happen without risking security breaches.
Employees aren’t always using VPNs
One way that businesses can strike this delicate balance is by encouraging employees to use corporate VPNs when they work remotely. VPN services can provide businesses with a protective bubble that helps secure the mobile workforce when using public Wi-Fi, regardless of location or device. The benefits of this are clear, as VPNs can help to overcome the issue of using Wi-Fi hotspots in vulnerable public locations, extending a private network over the unsecured internet connections offered in cafés and hotels.
Though VPN use is on the rise, less than half of CIOs are fully confident that mobile workers use a VPN every time they go online, calling into question the protection that they deliver. One of the issues holding back widespread use of VPNs is, thankfully, rectifiable. Businesses looking to increase the numbers of mobile workers using VPNs when they go online need to properly educate staff on the potentially detrimental impact not using them can have on the business, making sure that their implementation and use is as seamless for the end user as possible.
Mobility and security can go hand-in-hand
The decision by some companies to ban the use of public Wi-Fi hotspots is an extremely short-sighted one. It does not address the wider business implications of reduced employee mobility, nor the simple fact that many employees do not want to feel restricted by IT policies.
So, what can be done? A multi-pronged approach is the most effective way to strike a balance between security and mobility; rather than blocking Wi-Fi access at popular remote working venues such as cafés, airports and hotels, enterprises need to educate their workforces on the various threats to their business from open Wi-Fi networks. Only then can users be taught how to identify risky networks and learn best practices to avoid them in the first place. From a technology standpoint, businesses need to protect their mobile workers as they would any other key asset. This means developing an appropriate data and identity security strategy that does not drive their users to alternative, less manageable and certainly less productive methods of handling corporate data. The tools to achieve this are already available.
In today’s digital information economy, banning the use of Wi-Fi is simply not a practical means to protect mobile workers, user identities and corporate data. Wireless connectivity is essential to employee productivity and is a cost-effective means to keep mobile workers productive both at home and abroad. Companies should combine employee education and secure connectivity technologies to ensure their workforce is both productive and secure, regardless of their physical location.
Mato Petrusic, Vice President EMEA, iPass
Harnessing APIs to unlock and operationalise your data
Data is the fuel that powers modern businesses. It’s widely accepted that unlocking insight from data is key to driving successful digital transformation and competitive advantage. Yet the gap between understanding the importance of data-driven insight and being able to achieve it remains stubbornly wide, as critical information remains locked away in silos. To overcome these challenges, businesses must try a new approach. API-led connectivity offers a reusable, standardised way to integrate data across multiple platforms, systems, and applications. When done right, it can be the fast-track to IT and business teams productivity, innovation, and growth.
A data explosion
The past decade has seen a data explosion. Analyst firm IDC predicted that over 59 zettabytes (ZBs) of data would be “created, captured, copied, and consumed” in the world last year alone. In the next three years it’s predicted to continue growing at a CAGR of 26%, during which time more data will have been created than during the past 30 years. At the top of any CIO or business leader’s wish-list is the ability to extract insight from these vast troves of information in order to make more effective decisions. According to McKinsey, data-driven companies are 1.5 times more likely to report revenue growth of greater than 10%.
Unfortunately, just like much of the population for much of the last 12 months, data is locked down and isolated. MuleSoft’s 2021 Connectivity Benchmark report reveals that data silos and existing IT infrastructure are making it difficult for most firms to integrate new technologies and make changes to IT systems and applications. In fact, currently less than third of enterprise applications on average are integrated, so there is still significant room for improvement. Those organisations that are able to connect the dots between their data stand to realise increased customer engagement, business transformation and innovation benefits.
Journey towards API-led integration
Legacy custom code point-to-point integration may have been fine a decade ago when enterprises ran relatively few applications. But today’s businesses need something altogether more agile. Point-to-point can be expensive and complex, which means IT ends up spending too much of its time on maintenance and not enough on innovation.
This is where APIs come in, offering a more seamless and cost-effective way to drive integration through discoverability, self-service, and reuse. Rather than building the same point-to-point integration for use in 10 different projects, which requires each to be maintained individually as unique sets of code, a single API can be developed to be reused across them all. An API-led approach therefore means companies only have to unlock each data set just once to empower business teams across the organisation to use that data in their own projects.
The value of this approach can be extended even further with today’s low-code tools, which support drag-and-drop integrations. This can help to ease the burden on IT teams and empower business users to deliver their own integration projects.
The LendingTree experience
One company that has driven major improvements through reusable APIs is online loans marketplace LendingTree. Originally its 16 different business units were operating with siloed, incomplete data, meaning 360-degree customer insight was impossible—affecting sales and the end-user experience. The firm was not able to capture or analyse call centre data, limiting its ability to improve experiences for its customers.
Using APIs to draw in data from multiple systems and databases in real-time, LendingTree was able to consolidate its customer data on Salesforce to create a single source of truth for cross-departmental teams. This approach empowers service agents by giving them access to individuals’ loan application history from a single console, drastically reducing the time it takes them to consolidate various sources of customer data. As such, its API-led integration approach has allowed LendingTree to free up time and resources to launch new capabilities faster.
The future’s digital
Organisations have been affected in many different ways by the COVID-19 pandemic. But across the board, the desire among business leaders over the coming months will be to emerge from the crisis stronger than ever. Data-driven insight will be vital to this achievement, as businesses push ahead with digital innovation. API-led integration can help them to ensure that data strategies are long-lasting and sustainable, paving the way for long-term success and a brighter digital future.