by Grant Evans, SPYRUS CEO
As workers across the globe are being asked to work from home to ensure their health and that of their coworkers, enterprises are again revisiting telecommuting policies. In markets traditionally unable to support remote workers such as financial services, insurance, and healthcare due to government privacy regulations including HIPAA and GDPR, enterprises must invest in appropriate technology and enact stringent security policies to avoid government fines and reputational damage. While securing and managing endpoints with software protection and mandatory VPN usage mitigates this risk, it hinders collaboration of employees.
With the immediate need for workers to remain home to ensure personal safety, how can enterprises protect sensitive information and avoid financial penalties from regulatory fines, loss of business from reduced productivity, and difficulty acquiring future customers due to exposed malpractice? How can teams effectively collaborate on projects if employees and managers are unable to see who made what changes and when to presentations, whitepapers, and contracts?
We believe companies handling sensitive information can support remote workers simply and cost-effectively through managing and securing end point devices—which can be achieved with the SPYRUS Endpoint Management Software (SEMS) and SPYRUS Windows to Go (WTG) Drives. Our government customers have been using these solutions for many years, and now the commercial world is adopting them as well. SEMS is an easy-to-use and scalable endpoint management software allowing IT administrators to manage all devices connected to the company networks. With SEMS, IT administrators can set read / write permissions, view data access logs, and be notified of inappropriate data access attempts from anywhere in the world. When combined with the WTG drives, each endpoint becomes a virtual secure enclave.
With sizes from 32GB to 1TB, SPYRUS Windows To Go live drives provide for booting directly from the Windows To Go device and bypassing the host machine, while safeguarding the operating environments necessary with today’s mobile workforce. Drives are FIPS 140-2 Level 3 certified, ensuring cybersecurity with 512-bit encryption and physical security with a tamperproof design. The telecommuter can plug the drive into their computer—confident that no information can be transmitted or lost through potential malware attacks. When WTG drives are integrated with the SEMS platform for a complete solution, IT administrators can remotely “kill” a drive that becomes infected or rogue, rendering all data on the drive useless.
NcryptNshare is a solution developed by SPYRUS to operate on SPYRUS Rosetta Hardware Roots of Trust. Rosetta is a FIPS 140-2 Level 3 validated security controller chip embedded in all SPYRUS devices. In addition to being tamper-proof, Rosetta offers a comprehensive list of cryptographic functions, including RSA and elliptic curve algorithms. When combined with the SEMS platform, each endpoint can be remotely managed by an IT department anywhere in the world to apply policy restrictions and updates, and even “kill” access to the device and the data it protects. By leveraging the key protection of the Rosetta Hardware Roots of Trust, NcryptNshare allows users to dynamically assign access to encrypted objects only to the security tokens of know collaborators; and, by applying multi-factor authentication, ensures that only the right user(s) have access to the information being shared. NcryptNshare provides the highest level of object encryption and controlled access so that cloud or other unsecured communication paths can be used with the highest levels of confidence. The SPYRUS patented “seal” of the encrypted file detects if a file has been tampered with (for instance by malware), and by owning the key, the tampered file will not decrypt.
While rare, black swan events like we are seeing with COVID-19 today will likely happen again, and enterprises must be prepared to “keep calm and carry on.” CIOs must have the technology available to manage large swaths of workers remotely and be confident all data is protected at rest, in transit, and in use. SPYRUS is committed to arming enterprises with the solutions required to meet the cyber threats of today and tomorrow, enabling collaboration while complying with government regulations.
Learn more at https://www.spyrus.com/teleworkers/