logo
The Security Strategy You Need in Today's Digital Workplace

The Security Strategy You Need in Today's Digital Workplace

Entrepreneur5 days ago
It's time to rethink security through an internal lens. Here's how to secure your business without slowing innovation.
Opinions expressed by Entrepreneur contributors are their own.
For well over a decade, organizations have been grappling with the security, privacy and compliance challenges brought by an increasingly complex digital workplace. The continued rise of decentralized teams, artificial intelligence (AI)-driven tools and the ever-growing stack of "Software as a Service" (SaaS) applications is only exacerbating the problem, and many leaders are still struggling to get the visibility they need.
It's no longer enough to only consider the threat of outside attacks; in today's efficiency-driven environment, modern security must also account for real-time application access, Shadow IT and employee behavior. Especially now, it's mission-critical for business leaders to rethink security through an internal lens.
Related: 50 Things You Need To Know To Optimize Your Company's Approach to Data Privacy and Cybersecurity
Productivity's hidden trade-off
Amid the rapid pace of the modern work environment, employees experience constant pressure to do more with less. Still, tighter timelines and fewer resources don't equal lower expectations from management. When deadlines loom and workloads pile up, workers aren't waiting for IT approval. They're finding the tools that they believe will quickly solve problems and drive business themselves.
That's why SaaS platforms, rising in demand thanks to AI's rapid adoption, have become the go-to solution for modern teams. According to Gartner, global spending on AI software is projected to reach $297.9 billion by 2027. This surge reflects widespread adoption across all business functions as employees increasingly rely on project management apps, file-sharing services and generative AI assistants that promise speed, simplicity and results. The good news? Many of these tools deliver. But these unsanctioned applications are creeping into your business workflows, becoming privy to your data without ever touching your IT department's radar.
This unauthorized adoption of third-party tools is becoming a defining feature of the modern workplace. According to Verizon's 2025 Data Breach Investigations Report, 15% of employees admit to using corporate devices to access generative AI platforms, streamlining workflows and boosting output, but also expanding your organization's attack surface right under your nose.
In this situation, ignorance is not bliss. Without visibility into what tools your employees are using, you're not just risking data breaches; you're operating completely in the dark.
Using visibility to drive security
Security isn't just about firewalls and antivirus software anymore. It's also about visibility, and right now, most leaders don't have it. Verizon notes in its report that, from 2024 to 2025, breaches involving third parties doubled from 15% to 30%. That's not just a trend; that's a dire warning.
In a world where productivity often trumps policy, it's hard to bring the iron fist down on driven employees who are just trying to do more with less (trust me, I understand). Luckily, you don't have to.
Related: 4 Things Your Employees Are Doing Right Now That Are Compromising Your Network
Rewrite the rules with empowerment in mind
When I think of SaaS sprawl, the first thing that comes to mind is Acceptable Use Policies (AUPs) — the guiding document in your company for all things access. While you might be tempted to lay down the law, rethinking your company's AUP can't be guided by fear. Instead, you have to rewrite the rules in a way that provides both security and the much-needed speed to enable productivity.
With this delicate topic in mind, I remember feeling frustrated. I knew the danger SaaS sprawl posed — not just to security, but also to our favorable legal, reputational, and compliance standing — but how was I supposed to make my employees care? In the end, I knew my company had to customize our AUP to meet the needs of our workforce.
To craft effective policies, it's important to:
Acknowledge good intentions: It's understandable that most employees are using SaaS tools to do their jobs better, which is more admirable than malicious. Let that idea shine in your AUP to foster a sense of trust and transparency.
Avoid scare tactics: Instead of cracking down on unfettered SaaS usage, make it clear that you're open to two-way dialogue and constructive compromises. Lay out a clearly defined process that enables access to innovative applications while also making sure that security controls are followed.
Redirection over restriction: Outright bans on productivity tools like AI are unrealistic. Not only will your employees find workarounds, but they'll remember your cruel response when they were just trying to be better workers. If a tool or application needs to be off-limits, suggest a more secure alternative whenever possible.
Make it a team effort: Today, security isn't just IT's job. Employees thrive when they are made to feel important; now is their moment of glory. Trust your employees and use your AUP to empower them to be part of the solution.
Speak their language: Legal jargon doesn't help anyone but a lawyer. Encourage the use of plain language wherever possible to create an AUP that's easy to understand and easy to follow.
Call out common pitfalls: If you know of a risky tool that is frequently used, it's better to name it than hope workers read between the lines. Don't let popularity create confusion, which can lead to costly mistakes.
There's a tool for that
While updating your AUP is a step in the right direction, you might be asking: "How do I make sure these new policies are working?" That's why SaaS monitoring platforms exist to give you the visibility you need.
While features vary depending on which platform you use, these tools offer real-time insights into employee app usage, flag suspicious activity and help enforce access controls. SaaS monitoring platforms also reveal which tools your employees actually rely on daily, helping you streamline subscriptions and refine policies.
Related: The Role of Leadership in Creating a Cybersecurity Culture — How to Foster Awareness and Accountability Across the Organization
Security and innovation can coexist
While SaaS and AI may look like enemies, what business leaders really need to tackle is secrecy around the use of these tools. The real risk lies in what you don't see.
As leaders, we need to help our employees stop thinking of security as an impediment to innovation and instead see it as a potential foundation for it. By increasing visibility across the organization, embracing greater transparency, rewriting the rules and investing in the right tools, we can protect what matters most without slowing down what's next.
Orange background

Try Our AI Features

Explore what Daily8 AI can do for you:

Comments

No comments yet...

Related Articles

US, China to launch new talks on tariff truce extension, easing path for Trump-Xi meeting
US, China to launch new talks on tariff truce extension, easing path for Trump-Xi meeting

Yahoo

timea few seconds ago

  • Yahoo

US, China to launch new talks on tariff truce extension, easing path for Trump-Xi meeting

By David Lawder STOCKHOLM (Reuters) -Top U.S. and Chinese economic officials will resume talks in Stockholm on Monday to try to tackle longstanding economic disputes at the centre of a trade war between the world's top two economies, aiming to extend a truce by three months and keeping sharply higher tariffs at bay. China is facing an August 12 deadline to reach a durable tariff agreement with President Donald Trump's administration, after Beijing and Washington reached preliminary deals in May and June to end weeks of escalating tit-for-tat tariffs and a cut-off of rare earth minerals. Without an agreement, global supply chains could face renewed turmoil from U.S. duties snapping back to triple-digit levels that would amount to a bilateral trade embargo. The Stockholm talks come hot on the heels of Trump's biggest trade deal yet with the European Union on Sunday for a 15% tariff on most EU goods exports to the U.S., including autos. The bloc will also buy $750 billion worth of American energy and make $600 billion worth of U.S. investments in coming years. No similar breakthrough is expected in the U.S.-China talks but trade analysts said that another 90-day extension of a tariff and export control truce struck in mid-May was likely. An extension of that length would prevent further escalation and facilitate planning for a potential meeting between Trump and Chinese President Xi Jinping in late October or early November. A U.S. Treasury spokesperson declined comment on a South China Morning Post report quoting unnamed sources as saying the two sides would refrain from introducing new tariffs or other steps that could escalate the trade war for another 90 days. Trump's administration is poised to impose new sectoral tariffs that will impact China within weeks, including on semiconductors, pharmaceuticals, ship-to-shore cranes and other products. "We're very close to a deal with China. We really sort of made a deal with China, but we'll see how that goes," Trump told reporters on Sunday before European Commission President Ursula von der Leyen struck their tariff deal. DEEPER ISSUES Previous U.S.-China trade talks in Geneva and London in May and June focused on bringing U.S. and Chinese retaliatory tariffs down from triple-digit levels and restoring the flow of rare earth minerals halted by China and Nvidia's H20 AI chips and other goods halted by the United States. So far, the talks have not delved into broader economic issues. They include U.S. complaints that China's state-led, export-driven model is flooding world markets with cheap goods, and Beijing's complaints that U.S. national security export controls on tech goods seek to stunt Chinese growth. "Geneva and London were really just about trying to get the relationship back on track so that they could, at some point, actually negotiate about the issues which animate the disagreement between the countries in the first place," said Scott Kennedy, a China economics expert at the Center for Strategic and International Studies in Washington. "I'd be surprised if there is an early harvest on some of these things but an extension of the ceasefire for another 90 days seems to be the most likely outcome," Kennedy said. U.S. Treasury Secretary Scott Bessent has already flagged a deadline extension and has said he wants China to rebalance its economy away from exports to more domestic consumption -- a decades-long goal for U.S. policymakers. Analysts say the U.S.-China negotiations are far more complex than those with other Asian countries and will require more time. China's grip on the global market for rare earth minerals and magnets, used in everything from military hardware to car windshield wiper motors, has proved to be an effective leverage point on U.S. industries. TRUMP-XI MEETING? In the background of the talks is speculation about a possible meeting between Trump and Xi in late October. Trump has said he will decide soon on a landmark trip to China, and a new flare-up of tariffs and export controls would likely derail planning. Sun Chenghao, a fellow at Tsinghua University's Center for International Security and Strategy in Beijing, said that a Trump-Xi summit would be an opportunity for the U.S. to lower the 20% tariffs on Chinese goods related to fentanyl. In exchange, he said the Chinese side could make good on its 2020 pledge to increase purchases of U.S. farm products and other goods. "The future prospect of the heads of state summit is very beneficial to the negotiations because everyone wants to reach an agreement or pave the way in advance," Sun said. Still, China will likely request a reduction of multi-layered U.S. tariffs totaling 55% on most goods and further easing of U.S. high-tech export controls, analysts said. Beijing has argued that such purchases would help reduce the U.S. trade deficit with China, which reached $295.5 billion in 2024.

Hong Kong's CK Hutchison seeks Chinese investor to join Panama Ports deal
Hong Kong's CK Hutchison seeks Chinese investor to join Panama Ports deal

Yahoo

timea few seconds ago

  • Yahoo

Hong Kong's CK Hutchison seeks Chinese investor to join Panama Ports deal

HONG KONG (AP) — A Hong Kong conglomerate that's selling ports at the Panama Canal said Monday it may seek a Chinese investor to join a consortium of buyers, a move that could please Beijing but bring more U.S. scrutiny to the geopolitically fraught deal. CK Hutchison Holdings' initial plan to sell its port assets to a group that includes U.S. investment firm BlackRock Inc. pleased President Donald Trump, who has alleged that China interferes with the critical shipping lane's operations in Panama. However, they apparently angered Beijing and drew a review from Chinese anti-monopoly authorities. A Beijing-backed newspaper posted scathing commentaries about the deal, with one describing it as a betrayal of all Chinese. Beijing's offices overseeing Hong Kong affairs have reposted some of these commentaries, widely seen as an indication of Chinese leaders' stance. A Hutchison subsidiary has operated ports at both ends of the Panama Canal since 1997. After months of uncertainty brought by tensions between Washington and Beijing, Hutchison said in a statement that the exclusive negotiations period with the consortium has expired. However, it added 'the Group remains in discussions with members of the consortium with a view to inviting major strategic investor from the PRC to join as a significant member of the consortium,' referring to the People's Republic of China. It said they needed to change the membership of the consortium and the structure of the transaction for the deal to be able to pass reviews by 'all relevant authorities." The awkward position Hutchison found itself in for months highlights the challenges Hong Kong business elites face in navigating Beijing's expectations of national loyalty, especially when relations between China and the United States are strained. Hong Kong has overhauled its electoral system to ensure the city is run by 'patriots.' CK Hutchison is owned by the family of Hong Kong's richest man, Li Ka-shing. It announced March 4 that it would sell all its shares in Hutchison Port Holdings and in Hutchison Port Group Holdings to the consortium that also includes BlackRock subsidiary Global Infrastructure Partners and Terminal Investment Limited, a subsidiary of the Mediterranean Shipping Company. In May, Hutchinson co-managing director, Dominic Lai told shareholders that Terminal Investment was the main investor. Its parent company is led by Italian shipping scion Diego Aponte, whose family reportedly has a longstanding relationship with Li's. The initial deal, valued at nearly $23 billion including $5 billion in debt, would have given the consortium control over 43 ports in 23 countries, including the ports of Balboa and Cristobal, located at either end of the canal. That agreement also required approval from Panama's government. The deadline for their exclusive negotiation period ended on July 27. Error while retrieving data Sign in to access your portfolio Error while retrieving data Error while retrieving data Error while retrieving data Error while retrieving data

Gwyneth Paltrow is Astronomer's ‘temporary spokesperson' in new video
Gwyneth Paltrow is Astronomer's ‘temporary spokesperson' in new video

Yahoo

time12 minutes ago

  • Yahoo

Gwyneth Paltrow is Astronomer's ‘temporary spokesperson' in new video

There's a lot of buzz around Astronomer, the data infrastructure company that skyrocketed into public attention after its executives - now former executives - gave us the viral Coldplay 'kiss cam' moment. With all this recent popularity, the business brought on some extra help, hiring a 'temporary spokesperson' with experience in Coldplay internet fame: Gwyneth Paltrow. Subscribe to The Post Most newsletter for the most important and interesting stories from The Washington Post. 'I've been hired on a very temporary basis to speak on behalf of the 300+ employees at Astronomer,' the actress said in the minute-long video posted to social media Friday. 'Astronomer has gotten a lot of questions over the last few days, and they wanted me to answer the most common ones.' The Goop chief executive happens to be the ex-wife of Coldplay lead singer Chris Martin and co-author of the original 'break-the-internet' breakup statement when the pair announced their 'conscious uncoupling' in 2014. If you're searching for answers to the company's real frequently-asked questions, you won't find them in the tongue-in-cheek clip. The questions 'OMG! What the actual f' and 'How is your social media team holding' get comically cut off by Paltrow as she explained the much less juicy details of Astronomer's business. 'We've been thrilled so many people have a newfound interest in data workflow automation,' Paltrow said. Astronomer's chief executive Andy Byron and human resources chief Kristin Cabot both resigned after they were filmed cuddling at a Coldplay concert in Boston earlier this month. They appeared on the arena video board in a 'kiss cam' segment before looking uncomfortable, with Cabot turning around and Byron ducking out of sight as Martin quipped from the stage that the two might be having an affair. Mark Borkowski, a British public relations and crisis consultant, described using Paltrow to front a video parodying the incident as 'utter genius' that shows the company has a sense of humor. 'It's a savvy use of media to create a viral moment,' he told The Washington Post in a phone interview Saturday. 'In a way you're laughing with everybody else.' Astronomer choosing Paltrow will not go unnoticed, Borkowski said. 'Astronomer is a meme now. Owning the ridiculous nature of how it became a meme is far better than apologizing for it.' A representative for Paltrow didn't immediately respond to a request for comment. As for how he advises clients caught in such situations, Borkowski said acting in a dignified way and 'using as few words as possible' is always the best approach. Paltrow's cameo is reminiscent of the scared Peloton wife discourse from 2019. After actress Monica Ruiz's worry-stricken expression in a Peloton holiday commercial became the butt of internet jokes, she laughed it off, later using her horrified face for an Aviation Gin ad. 'We will now be returning to what we do best: delivering game-changing results for our customers,' Paltrow closed out the ad. 'Thank you for your interest in Astronomer.' - - - Tatum Hunter contributed to this report. Related Content Hulk Hogan was a well-known Trump supporter. Their ties go back 40 years. Mendelson reaches deal with Commanders on RFK site amid growing pressure Amy Sherald cancels major Smithsonian show over 'censorship' Solve the daily Crossword

DOWNLOAD THE APP

Get Started Now: Download the App

Ready to dive into a world of global content with local flavor? Download Daily8 app today from your preferred app store and start exploring.
app-storeplay-store