Endpoint Security Lessons from the Remote Work Surge

August 2020 marks several months since the shift to remote work began in earnest. One of the biggest takeaways? Endpoint security can no longer rely on legacy tools and assumptions. The devices employees use—from laptops to smartphones—have become critical, risky, and often overlooked components of the security posture.

🔓 Old Perimeters No Longer Apply

Traditional security models focus on data centers, VPNs, and internal networks. But when the workforce operates from home, coffee shops, and mobile connections, the endpoint becomes the first—and often only—line of defense. Antivirus alone doesn’t cut it anymore.

🚨 Common Gaps Discovered Post-Shift

• Unpatched devices due to disconnected update systems
• Weak or missing endpoint encryption
• Loss of asset visibility across personal and BYOD devices
• Inconsistent application controls and DLP enforcement
• Reliance on user vigilance rather than enforced policy

🧩 What Strong Endpoint Security Looks Like Now

Today’s best-practice environments layer multiple controls to secure remote endpoints:

• Endpoint Detection & Response (EDR) with cloud visibility
• Always-on, enforced encryption with tamper protection
• Strong MFA and conditional access integrated with identity tools
• Remote management with patching, locking, and wiping capabilities
• Containerization or VDI for secure access to sensitive workloads

📉 Low-Cost Moves That Make a Big Difference

• Mandate full disk encryption across all devices
• Enable auto-updates and install agents for remote patching
• Deploy MFA on all device and app access
• Use browser isolation or endpoint sandboxing for high-risk users

🧠 Train Users, But Back Them Up with Controls

Security awareness helps, but it isn’t enough. Tools and policies must be in place to catch mistakes and enforce good behavior. Monitoring and alerting need to adapt to remote contexts—where lateral movement may happen between unmanaged devices.

🔐 Make Endpoint Security an Ongoing Discipline

Endpoint security in August 2020 is a moving target. New threats emerge weekly. Devices multiply. Smart organizations make endpoint protection a continuous priority—not a one-off fix. Regular audits, reporting, and cross-department collaboration ensure the risk remains managed long-term.

Eduardo Wnorowski is a Technologist and Director at Virtus Group Ltd.
With over 25 years of experience in IT and consulting, he brings deep expertise in networking, security, infrastructure, and transformation.
Eduardo helps New Zealand businesses navigate change with clarity, security, and trust.
🔗 Connect on LinkedIn