(US and Canada) A whopping 33% of companies need to provide cybersecurity awareness training to remote employees, says a report by cybersecurity provider Hornetsecurity. The study also reveals that 74% of remote staff have access to critical data, creating more risk for companies in the hybrid work environment.

“The popularity of hybrid work and its associated risks mean that companies must prioritize training and education to make remote working safer,” says Daniel Hofmann, Hornetsecurity CEO. “Traditional methods of controlling and securing company data aren’t as effective when employees work in remote locations, and greater responsibility falls on the individual.”

The research highlights two core problems causing risk:

• Employees having access to critical data

• Not enough cybersecurity and risk-reduction training provided

“Increasing remote working cybersecurity measures is particularly important in the current climate, as cybercriminals are becoming smarter and using remote working to their advantage,” Hoffman adds. “We’ve seen an increase in smartphone attacks as hackers understand that both personal and professional data can likely be accessed as people can, and often do, carry out work on personal devices.”

While companies have adapted to new ways of working, cybersecurity risks linked to remote working still need to be addressed. Nearly a fifth of IT professionals say workers need to be more secure when working remotely, but almost three-quarters of employees have access to critical data. Unsurprisingly, 14% of respondents said their organization suffered a cybersecurity incident related to remote working.

The study also highlights a need for more understanding, confidence, and knowledge around cybersecurity among remote employees. Nearly half of IT professionals rate their confidence in remote security measures as “moderate” or worse. The survey also found that “uncontrolled file sharing” is a common source of cybersecurity incidents.